Print this page

InfoSec Officer 

Job content

We are looking for an experienced Information Security Officer to join our growing IT Governance and Risk Management team in a 2nd-line of defense role. The mission is to ensure cyber and information security risk-management across the firm. The role will report to the Corporate Security Officer.

Your activities:

  • Development, maintenance, and improvement of the Information Security Management System (ISMS) according to best practices / standards and managing of security related projects to achieve the information and cyber security strategy;
  • Review and monitor the organizational security compliance against frameworks and regulatory environments as a global firm;
  • Development and management of security related frameworks, processes, tools, and consultancy necessary to properly manage risks and to make risk-based assessments related to security activities;
  • Collaboration and strong partnership with various stakeholders (Business, IT, Compliance, Risk Management, Internal/external Audit, Legal and Procurement) as a security expert;
  • Monitor the external threat environment for emerging threats;
  • Subject matter expert within teams like the CSIRT or Corporate Security Team;
  • Supporting of Business Continuity Management and Swift Customer Security Programme (CSP) initiatives and processes;
  • Providing regular reporting on the status of the information and cybersecurity program;
  • Development and managing of training and security awareness programs;
  • Supporting the business by conducting Operational-Due-Diligence exercises for IT / cyber security related topics;
  • Deputy of the Corporate Security Officer.

Requirements

  • Bachelors / Master’s degree in Computer Science or similar;
  • Further education MAS/CAS Information Security, ICT-Security Expert are a plus;
  • 3-6 years’ experience in cyber and information security of which at least 2 years in a similar role;
  • Fluent in English, any additional languages (e.g. German) are a plus;
  • Solid knowledge of IT processes and controls and strong understanding of risk and control frameworks such as (ISO, CoBIT, NIST, ITIL, PCI) and regulatory environments globally;
  • Professional certifications such as CISM, CRISC, CISSP or similar are a bonus;
  • Experienced with Cloud Security Solutions;
  • Thorough understanding of the latest security principles, techniques, and protocols.

Location: Nearby Zurich area, Switzerland (Approx. 35 minutes from Zurich HB)

Capacity: 80 – 100%, Employment

Additional Info

  • Job Type: Part Time
  • Country: Switzerland
  • Salary: TBD
  • City: Zurich
Published in Finance & Banking