Zürich

Full time

Responsibilities

• Lead the improvement of key domains of the CISO Office program such as Identity and Access Management (IAM) and Cyber Threat Intelligence (CTI).
• Lead the improvements of information security risk management processes ensuring consistency across business units.
• Lead the improvement of the security incident reporting process to ensure security incidents are adequately assessed, documented and reported to relevant stakeholders.
• Contribute to the development and ongoing maintenance of information security policies and frameworks, ensuring they are aligned with regulatory requirements and industry standards.
• Advise on information security risk matters during business and IT initiatives.
• Stay updated with emerging cybersecurity threats and regulatory developments.
• Promote a security-risk-aware culture throughout the organisation.

Experience

• Master's degree in cyber or information security, computer science, business information technology, or a related field.
• Minimum of 5+ years of working experience in an information security officer or technology risk role preferably in a financial institution or a consulting firm.
• Experience in applying international frameworks such as NIST, CIS or ISO 27001/2
• Experience in information security risk management including performing risk assessments, assessing control effectiveness and providing recommendations for improvement.
• Fluency in English (spoken and written); German is an advantage.
• Relevant certifications such as CISM, CISSP or CCSP are an advantage
• Client focused with an entrepreneurial mindset.
• Goal oriented, pragmatic with high work quality standards.
• Being able to work independently with minimum supervision.