Cybersecurity Engineer

CLIENT: 

Our client is a global digital agency delivering innovative digital and creative solutions with technology delivery centers in Switzerland and other countries.

JOB DESCRIPTION

  • Act as key member for Information Security to implement, report and follow up on risk reduction activities with projects and BAU; and work together with key partners to lead all aspects of security improvement activities.

  • Engages with business partners from the Product function on projects and activities that require Information Security expertise and advice.

  • Engage with business and IT platform peers throughout system lifecycle on “security-by-design” and “privacy-by-design” concepts, methods and tools.

  • Perform active governance on key security metrics for systems under his/her responsibility.

  • Perform or take accountability for general IT control activities in scope of the solutions including evaluating 3rd party cyber maturity and performing ongoing vendor risk governance.

  • Lead security awareness trainings and provide coaching, trainings, promoting webinar attendance or similar activities to raise the security awareness of the function

  • Take accountability or responsibilities of tasks required for the resolution of cyber incidents in impacting solutions under his/her responsibility, from identification to eradication, working closely with central/platform IT teams and InfoSec (e.g. SOC and IRM)

  • Perform risk assessments and vulnerability management activities for functional support areas. Manage, monitor, and report on the full lifecycle of risk management at the system or platform level, from identification to closure.

  • Drives cybersecurity resilience activities in the assigned functional domain (e.g. back-up, restored, Disaster Recovery)

  • Support during internal or external audits.Support the Qualification and Validation activities required for GxP systems

  • Ensure information security standards are applied to Laboratory Systems and instruments

JOB QUALIFICATION

  • Sound experience in an information security, IT risk management or IT audit function within a large organization

  • Proven track record in supporting development teams throughout all phases of secure systems development life cycle (design, development, maintenance)

  • Good knowledge of typical application design patterns (e.g., web, mobile, thick client, etc.)

  • Good understanding of cloud computing architectures (e.g., SaaS, IaaS, PaaS, FaaS) and their corresponding characteristics in terms of information security

  • Good understanding of modern technologies such as IoT, Machine learning, automation.

  • Knowledge of basic identity and access management concepts (e.g. single-sign on, identity federation) and standards (e.g. SAML, OAuth 2.0, OpenID)

  • Familiarity with most common web application security issues (e.g. OWASP top 10)
    General understanding of regulatory requirements (e.g., GxP, FDA) and their impact on systems.

ACTIVE DATES
Urgent Hiring!

btnapplynow

More Job Openings

Don’t miss great job opportunities!

You can get notified of job openings before they are advertised by subscribing to our executive search newsletter.