10 Jobs für It Compliance in Schweiz

• Develop and update IT risk governance documentation; follow-up on IT and cyber KRIs;
• Prepare reports for executive and risk committees;
• Support regulatory IT audits; follow up on recommendations and access reviews;
• Collaborate with vendors on security incidents, testing, and BCP implementation;
• Maintain outsourcing records; and perform tests of controls and ensure compliance with regulatory framework;
• Extract IT and core banking system data, automate risk and performance reports;
• Analyse business process data with a compliance and security focus.
• Participate in IT projects; ensure security requirements are met and risks documented.

,

• 4-7 years of experience in a banking environment in risk, IT audit or data analysis;
• Strong knowledge of the Swiss regulatory framework (FINMA, ISAE, .);
• Excellent knowledge of data analysis tools like Excel, SQL or Power BI;
• Fluent in French and English
• Swiss residency

,

You will join a human-sized team and have a versatile role, collaborating with several stakeholders.

Moreover you will be based in a central location.

Adecco

Sei in possesso di Laurea in Chimica/Chimica Farmaceutica e hai maturato esperienza in ambito regolatorio e compliance in un'azienda strutturata del settore chimico?

Conosci le normative europee e svizzere applicabili alle sostanze/miscele?

Se sì, questa posizione potrebbe fare al caso tuo!

Responsabilità

• Completa gestione dei processi regolatori per sostanze/miscele: registrazioni, notifiche e 

  autorizzazioni presso le autorità competenti (UE/CH)
• Garanzia della conformità normativa a supporto delle attività commerciali e logistiche (import/export, supply chain, tracciabilità)
• Implementazione, mantenimento e monitoraggio di sistemi di compliance e controlli interni
• Traduzione dei requisiti regolatori in procedure operative (SOP), istruendo team interni e supportando i clienti
• Collaborazione alla gestione documentale e tracciabilità del Quality Management System aziendale
• Collaborazione ad audit/ispezioni e con funzioni trasversali (Operations, Vendite, Logistica, HSE)

Il tuo profilo

• Laurea In Chimica, Chimica Farmaceutica o discipline affini

• Esperienza pregressa di almeno 5 anni in ambito regolatorio e compliance per sostanze chimiche in contesti industriali
• Comprovata esperienza nei processi di registrazione, notifica e autorizzazione presso autorità europee e svizzere
• Esperienza nell'implementazione e nel monitoraggio di sistemi di compliance a supporto di attività commerciali e logistiche
• Conoscenza specialistica delle normative europee e svizzere applicabili alle sostanze/miscele
• Preferibile conoscenza dei regolamenti CLP e REACH, e delle normative riferite a sostanze controllate e precursori chimici
• Conoscenza dei principi di Quality Management System (QMS), tracciabilità e gestione Documentale
• Buona conoscenza della lingua inglese; la conoscenza del tedesco costituirà un plus
• Capacità di semplificare requisiti normativi complessi in procedure chiare e applicabili; attitudine al supporto a team interni e clienti
• Familiarità con schemi di certificazione di settore (es. ISO, ecc.)
• Precisione, autonomia e approccio risk-based
• Eccellenti doti organizzative e di comunicazione
• Orientamento al risultato e al lavoro cross-funzionale

Vantaggi

• Ruolo operativo in contesto internazionale
• Innovazione continua in un ambiente dinamico
• Crescita professionale con programmi di formazione continua
• Ambiente di lavoro collaborativo ed inclusivo
• Attenzione all'equilibrio tra vita privata e lavoro con opzioni di lavoro flessibili

Contatto

Interessato? Se le tue qualifiche ed esperienze corrispondono al profilo cercato, ti preghiamo di candidarti direttamente online

JN -082025-843661

Chi siamo

Adecco è leader di mercato per le soluzioni di staffing in Svizzera e nel mondo. Ogni giorno, i nostri team nelle nostre circa 50 sedi in tutta la Svizzera assicurano il miglior incontro tra candidati e clienti in diversi ambiti professionali e settori. Il Adecco Svizzera è una società del Gruppo Adecco, leader a livello globale per Talent Advisory e Solutions. Siamo profondamente convinti di poter far sì che tutti siano in forma per il futuro e impieghiamo più di 3,5 milioni di persone quotidianamente. Reclutiamo, sviluppiamo e creiamo talenti in 60 Paesi, permettendo alle organizzazioni di contribuire a plasmare il futuro del lavoro. In quanto società Fortune Global 500, fungiamo da esempio, generando un valore condiviso che stimola l'economia e contribuisce a una società migliore. Il Gruppo Adecco ha la sua sede principale a Zurigo, in Svizzera, (ISIN: CH0012138605) ed è quotato alla SIX Swiss Exchange (ADEN).



PERM
Recht, Compliance & Steuern

Branche: Anderes

Funktion: Anderes

**BU Animal Nutrition & Health**
Location: Kaiseraugst, Switzerland; Madrid area, Spain; Maastricht, Netherlands; Getzersdorf, Austria
Join Our Team as Chief Information Security Officer (CISO)!
Are you passionate about safeguarding digital assets and leading the charge against cyber threats? At ANH-D&T, we're seeking a visionary CISO to protect our company's information assets and ensure a cyber-resilient organization. You'll drive our cyber, information security, digital risk, and compliance strategies, policies, and programs, aligning them with our business objectives and risk appetite. With our Infrastructure & Cyber Security unit's robust capabilities, you'll identify, detect, and respond to digital threats, ensuring a holistic approach to emerging risks. Be the strategic leader we need to navigate the complexities of today's digital landscape!
At dsm-firmenich ANH, being a force for good is not optional. Diversity, Equity & Inclusion is a shared responsibility woven into our daily work, benefiting to our People, Customers & Communities and driving business value. Equal access to opportunities is a given, belonging is a shared feeling, authenticity is celebrated
**Your key responsibilities**
**Impact on Strategy & Contribution:**
+ Provide strategic leadership for the definition and company-wide adoption of the cyber & digital information security vision, strategy, and policies that are aligned with business objectives and risk appetite.
+ Drive the definition and execution of the company's multi-year cyber, information security strategy and ownership of the related improvement programs and investment roadmap (which includes cyber, information security awareness and behavior program for all employees and contractors)
+ Ensure that effective company-wide cyber, information security organization and governance is established and maintained.
+ Orchestrate the identify, detect & response capabilities (incl. coordination of major CS incidents), engage in cyber attack simulations.
+ Achieve insights in current and future cyber, information security risks and (design) appropriate risk response.
+ Validate existence, effectiveness and efficiency of cyber, information security controls and intervenes or provides active advice to stay compliant.
**Innovation & Complexity:**
+ The cyber, information security threat landscape continues to evolve, and the business dependency on information and digital technologies is growing dramatically.
+ Operates on the highest strategic level in the field of cyber and information security, setting company-wide the direction for cyber and information security on all levels within the organization.
+ Works in a continuous and rapidly evolving domain with an increasing level and complexity of cyber, information threats that represent high-impact risk to the company information assets and operational sustainability.
+ Needs to be able to deal with the high-level complexity of an international and multi-cultural environment and can communicate information security and risk-related concepts to technical and non-technical audiences at various hierarchical levels, ranging from executive level to technical specialists.
+ Must strike the balance between achieving 100% protection and required investment by taking a risk-based approach considering the risk appetite of the company.
**We bring**
+ A promising future as we, d-f ANH, are the number one provider of vitamins, advanced feed additives, and premixes, supercharged by AI-driven precision services
+ An eagerness to go above and beyond customer needs, driven by a vital purpose: making animal farming more sustainable
+ Collaboration with experts in animal health and nutrition, to drive progress
+ A flexible work environment that empowers people to take accountability for their work and own the outcome
+ Recognition and celebration of your efforts and accomplishments
+ Opportunities for growth and advancement for those who embrace innovation and take initiative
**You bring**
+ Master's degree level education, professional security management certification is desirable, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or other similar credentials.
+ At least 10 years of experience in cyber security, risk management and IT-related jobs, at least five of which in a leadership role. Proven track record and experience in developing Cyber and Information Security vision, strategy, policies and procedures, as well as successfully providing ownership for major improvement programs.
+ Experience on the NIST framework and the IEC-62443 standard
+ Proven experience and a successful track record in managing (outsourced) cyber security services
+ Strong communication skills, with the ability to interact, influence, and energize stakeholders and team members within the organization, even without formal hierarchical authority
+ Excellent storytelling skills, capable of effectively presenting cyber and risk-related concepts to audiences at all levels, including internal and external third parties
**Our application process**
Please apply online only via our careers portal by sending in your resume in ENGLISH.
Recruiter: Claudia Huber-Newman
The salary for this position is competitive and aligned with market standards. Given that the role can be in various countries globally, the specific salary details will be discussed during the interview with the recruiter.
**About ANH**
ANH, in the process of separating from dsm-firmenich, is a global leader in animal nutrition and health, as well as vitamins, carotenoids, and aroma ingredients - driven by its strong purpose: feeding the planet without costing the earth. Together, we make it possible. is fully dedicated to inclusion because when people feel engaged and empowered, their creativity and innovation drives unprecedented progress. We aim to build a workplace where opportunity really is equal, so everyone can thrive. We do not discriminate: (here,) there's a place for everyone with us. dsm-firmenich is an Equal Opportunity and Affirmative Action Employer. Our people are as diverse as our customers. For us that includes a commitment to ensuring equal employment opportunities for all job applicants and employees.
Employment decisions are based upon job-related reasons regardless of an applicant's race, color, religion, sex, sexual orientation, gender identity, age, national origin, disability, marital status, genetic information, protected veteran status, or any other status protected by law. We are committed to providing reasonable support for disabled applicants in our recruiting process. Should you need assistance, and are comfortable to share this, please let us know.
As innovators in nutrition, health, and beauty, dsm-firmenich reinvents, manufactures, and combines vital nutrients, flavors, and fragrances for the world's growing population to thrive. With our comprehensive range of solutions, with natural and renewable ingredients and renowned science and technology capabilities, we work to create what is essential for life, desirable for consumers, and more sustainable for the planet. dsm-firmenich is a Swiss-Dutch company, listed on the Euronext Amsterdam, with operations in almost 60 countries and revenues of more than 12 billion. With a diverse, worldwide team of nearly 30,000 employees, we bring progress to life every day, everywhere, for billions of people. note this is a direct search led by dsm-firmenich. We only accept applications from candidates, not from agencies nor subject to agency's fees, percentages or similar.

Information Security Specialist IT

m/f/d, Solothurn

Our client is a globally active industrial company headquartered in Switzerland. Since its foundation, it has grown into an international player with a strong multicultural mindset. With modern technologies, innovative solutions, and the highest standards of quality, the company sets benchmarks worldwide. Teamwork here is more than just a buzzword - it is a lived corporate culture. Employees benefit from a respectful, motivating, and friendly environment that fosters professional and personal growth.

For the head office in Solothurn (CH), we are seeking an experienced Information Security Specialist IT to strengthen the Information Security Management System (ISMS). In this key position, you will apply international standards, regulatory requirements, and customer-specific guidelines to ensure robust, group-wide IT security. Your expertise will directly contribute to risk mitigation, compliance, and operational continuity. By identifying vulnerabilities and preventing incidents, you will help drive the maturity and sustainability of the cybersecurity landscape.

Your Responsibilities:

• Develop, implement, and maintain cybersecurity policies, standards, and procedures
• Conduct risk assessments, threat modeling, and vulnerability assessments, including technical security audits and penetration testing
• Prepare and support internal/external audits and certifications (e.g., TISAX, IATF 16949, ISO/IEC 27001, ISO 31000)
• Monitor and investigate security alerts, respond to incidents, and manage follow-up actions
• Lead improvements in detection and response workflows with SOC and IT stakeholders
• Organize, manage, and evaluate external penetration testing and vulnerability scans
• Operate and improve security infrastructure such as SIEM, EDR, IDS/IPS, firewalls, etc.
• Supervise vulnerability remediation, patch cycles, and endpoint protection strategies
• Plan and deliver cybersecurity awareness campaigns, simulations, and targeted training

Your Profile:

• Degree in information security, computer science, or a related technical discipline
• Further training or certifications in cybersecurity or ethical hacking preferred
• Professional credentials such as ISO/IEC 27001, CISSP, or TISAX auditor are an asset
• Minimum of 3 years' experience in a similar role, ideally in an international company
• At least 5 years of technical experience implementing security concepts and controls
• Familiarity with SOC/CSIRT operations and experience handling major security incidents
• Proficient with Microsoft 365 administration, network security, and layered IT architectures
• Strong knowledge of security management tools for vulnerabilities, assets, and services
• Fluent in English (spoken and written); German or additional languages are a plus
• Willingness to travel internationally on occasion

What we offer:

• A challenging environment in a global industry-leading company
• Possibility of some remote work, while regular on-site presence is encouraged
• Attractive employment conditions, professional development, and career growth opportunities
• A collaborative and forward-thinking team culture

Jetzt bewerben

Sounds like a great job?
Then we look forward to receiving your complete application documents through our online application form.

When applying by email, the sender agrees that his or her data will be used in accordance with our data privacy policy.

Find more vacancies at: coopers.ch

Information Security Specialist OT

m/f/d, Solothurn

Our client is a globally active industrial company headquartered in Switzerland. Since its foundation, it has developed into an international player with a strong multicultural mindset. With cutting-edge technology, innovative solutions, and the highest standards of quality, the company sets benchmarks worldwide. Collaboration and teamwork are not just empty words but part of the lived corporate culture. Employees thrive in a respectful, motivating, and friendly environment that fosters professional and personal growth.

To strengthen industrial control system security and ensure resilient manufacturing environments, we are looking for an Information Security Specialist OT to join the head office in Solothurn (CH). In this vital role, you will contribute directly to business continuity, product quality, and customer trust across global operations. You will analyze and assess the security posture of OT systems and industrial networks (SCADA, PLCs, DCS) and drive initiatives to enhance OT security maturity.

Your responsibilities:

• Analyze and assess the security posture of OT systems and industrial networks (SCADA, PLCs, DCS)
• Drive implementation of scalable and resilient OT security architectures aligned with policies
• Develop, implement, and maintain OT-specific security policies and standards
• Conduct threat analyses, risk and vulnerability assessments, and penetration testing
• Collaborate with OT operations, engineering teams, and vendors to promote security culture
• Design and deliver OT security awareness programs and practical training sessions
• Support TISAX assessments and IATF 16949 security compliance requirements
• Assist with audits, regulatory compliance, and implementation of industry standards (IEC 62443, ISO 27001)
• Lead or participate in projects to improve OT security maturity and resilience

Your Profile:

• Higher education in information security, industrial automation, or manufacturing engineering
• Certifications or training in OT security or IACS topics are preferred
• 3+ years of cybersecurity experience with focus on industrial manufacturing/OT environments
• Proven experience with OT security architectures, network security, and segmentation
• Solid knowledge of industrial protocols (e.g., OPC UA, Modbus, Profibus, PROFINET, DNP3)
• Familiarity with standards such as IEC 62443, ISO/IEC 27000 series, and IATF 16949
• Experience with SCADA/ICS/PLC systems and industrial firewalls is an advantage
• Ability to conduct vulnerability scans, risk assessments, and penetration testing in OT
• Willingness to travel approximately 10-20%

What we offer:

• A challenging environment in a global industry-leading company
• Possibility of some remote work, while regular on-site presence is encouraged
• Attractive employment conditions, professional development, and career growth opportunities
• A collaborative and forward-thinking team culture

Jetzt bewerben

Sounds like a great job?
Then we look forward to receiving your complete application documents through our online application form.

When applying by email, the sender agrees that his or her data will be used in accordance with our data privacy policy.

Find more vacancies at: coopers.ch

**Who We Are**
At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward - always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities.
**The Role**
Are you ready to start your career in technology consulting with a global market leader? Kyndryl is a great place to embark on your career journey.
**The Kyndryl Graduate Program** **& beyond**
Your journey as an **IT Strategy Consultant** will start with an immersive learning program, focused on building a core set of business and consulting skills which you will use working on exciting projects with our flagship clients. We will support you in kickstarting your career by offering rotation, shadowing and specialization opportunities during the 2-years program. Afterward, you'll have the chance to work in either a Delivery or Go to Market role based on your potential and skills.
Joining us as part of our consult team **as** an **IT Strategy Consultant** you will become the trusted advisor accountable for delivering highly complex, multi-disciplined consulting engagements that provide lasting and measurable value to our esteemed customers.
Join our team and gain hands-on experience across diverse IT domains, including Cloud, Security, Digital Workplace Services, Applications, Data, Network, and Mainframe.
The official start date of the program is **1st September 2025.**
**Your Role:**
+ Provide consulting services by developing technology solutions and offering IT strategy insights based on understanding the client's business objectives and IT requirements
+ Advise, analyze, and define client IT strategy to increase business value and improve service delivery, including adopting modern techniques and a modern operating model
+ Apply issue-based consulting methods
+ Analyze and optimize client's IT processes and governance
+ Provide strategies, assessments, recommendations, and plans analytically
+ Design and implement enterprise operating models and governance structures, and identify new ways of work
**Life at Kyndryl**
You will contribute to our business from day one and have access to incredible learning opportunities to build your skills for the future. You will collaborate with global teams and receive mentorship guidance. Additionally, you will:
+ Gain broad exposure to different IT consulting focus areas through job rotations
+ Build expertise in diverse client scenarios, industries, and technologies
+ Be part of a global IT service provider offering a world-class platform for career growth
+ Get certified and hands-on experience with the latest technologies, such as MSFT Azure, AWS, Google, and other Kyndryl Alliance Partners
All of this will take place in a dynamic, inclusive, and flexible startup atmosphere filled with industry experts. If this sounds like a good fit for you, then come and start your career at Kyndryl.
**Who You Are**
You're good at what you do and possess the required experience to prove it. However, equally as important - you have a growth mindset; keen to drive your own personal and professional development. You are customer-focused - someone who prioritizes customer success in their work. And finally, you're open and borderless - naturally inclusive in how you work with others.
**Required Technical and Professional Experience**
+ Bachelor's or Master's degree in Computer Science, Data Science or related field. Recent graduate with up to two years of work experience.
+ Basic understanding of core services offered by established cloud hyperscalers (e.g. Microsoft, AWS, Google Cloud etc.).
+ Familiarity with IT management consulting methods.
+ Understanding of IT operations and IT service management frameworks (e.g., ITIL, COBIT).
+ Strong team player with excellent collaboration skills in diverse environments.
+ Familiar with New Ways of Working, e.g. Agile, Scrum
+ Excellent communication and presentation skills, with the ability to convey technical insights to both technical and non-technical audiences
+ Strong communication skills in English and German
+ Willingness to travel
**Preferred Technical and Professional Experience**
+ Previous experience in consulting is a plus
+ Experience in project management disciplines
+ Experience with various IT Operating Models and building organizations to deploy and support key technologies
+ Certification on key technologies within your platform or area of expertise
+ Ability to articulate key technologies' impact on security, availability, cost, capacity, etc.
+ Applied experience in Agile (Kanban, SAFe, and Scrum)
**Being You**
Diversity is a whole lot more than what we look like or where we come from, it's how we think and who we are. We welcome people of all cultures, backgrounds, and experiences. But we're not doing it single-handily: Our Kyndryl Inclusion Networks are only one of many ways we create a workplace where all Kyndryls can find and provide support and advice. This dedication to welcoming everyone into our company means that Kyndryl gives you - and everyone next to you - the ability to bring your whole self to work, individually and collectively, and support the activation of our equitable culture. That's the Kyndryl Way.
**What You Can Expect**
With state-of-the-art resources and Fortune 100 clients, every day is an opportunity to innovate, build new capabilities, new relationships, new processes, and new value. Kyndryl cares about your well-being and prides itself on offering benefits that give you choice, reflect the diversity of our employees and support you and your family through the moments that matter - wherever you are in your life journey. Our employee learning programs give you access to the best learning in the industry to receive certifications, including Microsoft, Google, Amazon, Skillsoft, and many more. Through our company-wide volunteering and giving platform, you can donate, start fundraisers, volunteer, and search over 2 million non-profit organizations. At Kyndryl, we invest heavily in you, we want you to succeed so that together, we will all succeed.
**Get Referred!**
If you know someone that works at Kyndryl, when asked 'How Did You Hear About Us' during the application process, select 'Employee Referral' and enter your contact's Kyndryl email address.
Kyndryl is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, pregnancy, disability, age, veteran status, or other characteristics. Kyndryl is also committed to compliance with all fair employment practices regarding citizenship and immigration status.

Unser Kunde ist ein führender Schweizer Anbieter von sicheren Hosting- und Managed Services. In hochverfügbaren Rechenzentren in der Schweiz betreibt er geschäftskritische IT-Systeme und Applikationen für Kunden aus Finanzwesen, Verwaltung, Wirtschaft und Wissenschaft. Zur Verstärkung des Teams suchen wir exklusiv eine erfahrene Fachkraft im Bereich Informationssicherheit.

Ihre Aufgaben:
In dieser verantwortungsvollen Rolle sorgen Sie für die Sicherheit und Integrität moderner IT-Infrastrukturen.

Weiterentwicklung und Umsetzung der unternehmensweiten Sicherheitsstrategie
Durchführung von Security-Audits und Zertifizierungen sowie Pflege des Regelwerks
Erstellen von Risikoanalysen
Gesamtverantwortung über das Vulnerability Management und Security Incident Handling
Beratung interner Fachbereiche zu Sicherheitsfragen
Mitwirkung an der Weiterentwicklung der SIEM-/SOC-Infrastruktur
Planung und Durchführung von Security-Awareness-Programmen


Ihr Profil:

Abschluss in Informatik (FH/ETH/TS) oder gleichwertige praktische Erfahrung
Mehrjährige Berufserfahrung im Bereich IT-Security, idealerweise als Security Officer oder -Engineer
fundierte Kenntnisse relevanter Standards (ISO 27001:2022, SOC2, FINMA)
Idealerweise Weiterbildung im Sicherheitsbereich (z. B. CISSP, CGRC, ISSMP)
Analytische Denkweise, hohe Eigenverantwortung und ausgeprägte Kommunikationsfähigkeit
Sehr gute Deutsch- sowie gute Englischkenntnisse


Das erwartet Sie:
Ein technologisch spannendes Umfeld mit Gestaltungsspielraum, kollegiales Arbeitsklima, flexible Arbeitsbedingungen und die Chance, die Sicherheitsstrategie eines etablierten Schweizer IT-Dienstleisters aktiv mitzugestalten.
Sind Sie interessiert? Wenn ja, dann freuen wir uns auf Ihre Bewerbungsunterlagen. Bei Fragen steht Ihnen Herr Martin Werffeli gerne jederzeit unter der Tel.-Nr. 044 533 06 35 zur Verfügung. About Nordwand Group The Nordwand Group AG in Zurich specialise in providing IT jobs and finance jobs on a permanent, contracting and interim management basis. We also offer executive search services across a broader range of functions. More about Nordwand Group

Standort: Zürich, Schweiz

Bist du bereit, deine Fähigkeiten im Bereich IT-Sicherheit auf die nächste Stufe zu heben? Bei der CONVOTIS Swiss Cloud AG suchen wir einen engagierten und erfahrenen Security Officer. Als führender Schweizer Anbieter von sicheren Hosting- und Managed Services für geschäftskritische IT-Anwendungen, bieten wir dir die Möglichkeit, in einem dynamischen und innovativen Umfeld zu arbeiten. Unsere Experten planen und entwickeln spezialisierte Lösungen und betreiben komplexe Systeme in hochsicheren Schweizer Rechenzentren. Du wirst Teil eines Teams, das sich seit über zwei Jahrzehnten für höchste Servicequalität in den Bereichen Finanzen, Wirtschaft, Verwaltung und Wissenschaft einsetzt. Wenn du in einem Unternehmen arbeiten möchtest, das höchsten internationalen Standards für Prozess- und Datensicherheit gerecht wird und dabei Werte wie Vertrauen, Fairness und Innovation lebt, dann bist du bei uns genau richtig!

Senior Information Security Officer (m/w/d) 80-100%

In der Position als Senior Security Officer bist Du für die Sicherheit komplexer IT-Infrastrukturen und Business-Applikationen verantwortlich.

• Verantwortlich für Sicherheitsstrategie des Unternehmens.

• Unterstützung des CISO bei der Erstellung und Pflege des Regelwerks, der Audits und den Zertifizierungen (Bereitstellung Evidenzen)

• Führt interne Audits zur Überprüfung der Sicherheitsstandards durch.

• Gesamtverantwortung für Vulnerability Management

• Überwachung und Analyse von Sicherheitsvorfällen sowie Entwicklung von Strategien zur Risikominderung. (Security Incident Management)

• Third Party Risk Assessments.

• Entwickelt und dokumentiert Pläne zur Reaktion auf Sicherheitsvorfälle.

• Beantwortet Fragen und bietet Beratung zu Sicherheitsfragen.

• Unterstützung Infrastruktur SIEM/SOC.

• Verantwortlich für die Planung und Durchführung von Schulungen und Awareness-Programmen.

For our client, a company in the pharmaceutical manufacturing industry based in Lugano (Switzerland), we are looking for a Senior Information Security Specialist for a permanent role.

Your responsibilities:

• Execute and coordinate activities identified by the Cyber Security roadmap, such as the delivery of essential security services to the company
• Support in ensuring business continuity and security of systems
• Guide and coordinate with the external and internal personnel during the execution of activities

Tied to the Cyber Security roadmap, you will have a particular focus on the following activities and still collaborate with the rest of the group:

• Security operations management and incident response, including monitoring, identifying and analyzing potential threats to respond to potential incidents on time
• Improving security event generation and tracking, ensuring timely detection capability
• Monitoring and governance of the relationship with vendors of implemented security solutions
• Managing the technical aspects of data classification according to the internal model, ensuring that the solution is active and configured correctly on all data types at the perimeter
• Life cycle management of the company's security devices and software according to SSDLC (Secure System Development Life Cycle) principles
• Managing internal network management issues
• Managing and continuously improving the model for identifying minimum Cyber Security requirements for relevant projects
• Assessment of Cyber Security implications for release activities or changes to existing and new application components
• Proposal and implementation of new cybersecurity tools to improve the resilience of the IT infrastructure
• Support in ongoing training of junior security team, providing guidance and mentoring to improve their technical and governance skills
• Developing and implementing a cyber risk management methodology to verify that all aspects of Cyber Security, group-wide, have been assessed, adhered to, and managed
• Regular execution of security assessments to assess, mitigate and monitor cyber risks, following regulations and corporate standards
• Continuously updating regarding the latest security trends, vulnerabilities and mitigation strategies

Your qualifications:

• Master's degree and/or technical degree in IT disciplines
• At least 7 years of experience in security, systems and networks. Possible experience as a consultant in IT security or related fields will be considered a plus.
• Excellent English speaking, writing and reading skills. The position involves constant contact with Group personnel located in various countries.
• Ability to work effectively both independently and as part of a team, with excellent communication and consulting skills.
• Due to Swiss work permit restrictions, we can only consider applications from Swiss nationals, EU citizens as well as current work-permit holders for Switzerland.

Extensive experience and knowledge, gained in complex hybrid environments, on issues of:

• Hybrid Identity (Active Directory, Azure Active Directory, MFA, Certification Authority)
• Endpoint security (Antivirus, EDR, web protection tools)
• Threat management (spam filters, attack surface management tools, vulnerability assessment, penetration testing, threat intelligence)
• Infrastructure security and management (patch management, hardening, security monitoring activation, routine and non-routine maintenance, policy management, secure publishing)
• Knowledge of cloud environments and architectures preferably Microsoft Azure
• Cloud security (Microsoft Defender suite, CASB, CSPM, Azure security)
• Security and networking in pharmaceutical manufacturing plants and remote locations
• Thorough knowledge of Windows and Linux operating systems
• Knowledge of encryption, authentication and 802.1x solutions
• Knowledge of networking issues (TCP/IP, DNS, Wi-Fi, remote desktop, VNC)
• Knowledge of network protection tools (e.g., NDR, NGFW, IPS/IDS, SWG)
• Knowledge of the principles of Security by Design and Secure System Development Life Cycle (SSDLC)
• Knowledge of more advanced network protection solutions (e.g., ZTNA, SASE) and more canonical ones (e.g., VPN, bastion host)
• Knowledge of major data classification systems) and data loss prevention
• Knowledge of GRC tools and issues related to cyber risk management

Preferred Technical Skills

• Certifications in cyber security (e.g., CISSP, GIAC, etc.).
• Ability to design and implement software solutions suitable for articulated or large IT systems

Your application

Please apply online. For further information about the position, please contact your Gi Group recruiter, Mrs. Anh Nguyen (+41 76 586 02 13).

About Gi Group

Gi Group is part of Gi Group Holding, a global ecosystem of HR services and consulting that supports the development of the labour market and helps to change people's lives in 37 countries around the world.

In Switzerland we operate with the brands Gi Group, Grafton, BauTech, Gi Life Sciences and former Kelly Services. We are active in temporary, permanent and professional staffing as well as in a variety of complementary HR Services. With a direct presence in 35 locations across Switzerland and over 250 employees, we are one of the leading staffing companies in the Swiss recruitment market.

Gi Group is specialist for Temporary and Permanent staffing and your valuable partner for many other HR Solutions. We are changing lives by connecting candidates with companies, and we work every day to create value. Your Job, Our Work.

Branche: Pharma-Industrie

Funktion: Technologie/EDV

Anstellungsart: Festanstellung