Key skills
CloudCyber SecurityRisk ManagementOWASPNetwork SecurityCloud Security
About this role
Role Overview
- Cyber risk management and compliance with IT GRC requirements
- Conducting cyber risk assessments and designing measures to mitigate risks
- Increasing security awareness across the organization
- Evaluating the effectiveness of security measures by regularly defining and conducting security tests
- Regularly reviewing existing platforms with respect to best practices and internal policies and guidelines
- Analyzing the impact of the security architecture on security and compliance and continuously enhancing it
- Supporting and closely engaging in application projects to implement a “secure-by-design” strategy
Requirements
- Completed Master’s, Bachelor’s, HF or EFZ degree in Cyber Security, IT/Computer Science, or Business Informatics
- Several years of experience developing security concepts and policies as well as IT risk management and assessments (ISO 27005 / ISO 31000)
- Familiarity with information security standards such as ISO 27001, NIST, BSI IT-Grundschutz, internal control systems (IKS) and/or OWASP SAMM
- Ability to understand attacker behavior and proactively identify vulnerabilities
- Experience in network security, cloud security, and application security — able to contribute knowledgeably at an engineering level and embed the “security by design” approach from the outset
- Experience in OT or energy-related environments is an advantage
- Business-fluent German and fluent English — French is a plus
Tech Stack
- Cloud
- Cyber Security
Benefits
- Flexible working conditions
- A modern, state-of-the-art working environment
- Generous vacation allowance
- Support for your personal development
- An attractive compensation package