- Acts as the interface between the technical disciplines and the business to carry out technically orientated security assessments, setting security requirements for new products and services, and assessing compliance and risk.
- Provides security design and architecture guidance as well as general security consultancy across the business.
- Acts as cyber coach to projects and programme teams to ensure that future infrastructures and products are secure.
- Scopes and coordinates security penetration testing prior to product launch.
- Defines, communicates and ensures that suppliers and third parties understand and comply with security standards
- Ensures recurring vulnerability and compliance scanning, reporting and driving remediation for every digital asset on the network and managed cloud environments..
- Track and follow with IT teams the key cybersecurity indicators like: cybersecurity tools deployment, status of vulnerabilities, compliance against hardening guides, configuration issues, etc.
- Reviews and approves new firewall rules requests and performs periodic FW rules review
- Defines rules and standards for secure development and tracks the implementation through the development projects.
- BS or MA in computer science, cybersecurity or a related field
- [5+] years of experience in cybersecurity, especially in a security engineering and architecture role
- Knowledge of SecDevOps
- Knowledge of vulnerability management and pentesting (Qualys)
- Knowledge of general and industry applicable regulation and standards (GDPR, Sarbanes-Oxley Act, National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF), etc.)
- Certified information systems security professional (CISSP)
- Technical expertise in full-stack knowledge of IT infrastructure
- Proficiency with at least one scripting language (e.g., Perl, Python and PowerShell)
- Understands business needs and has a commitment to delivering high-quality, prompt and efficient service to the business
- Understands organizational mission, values, and goals and consistently applies this knowledge
- Experience reviewing application code for security vulnerabilities
- Direct, hands-on experience using vulnerability management tools
- Documented experience and a strong working knowledge of the methodologies to conduct threat-modeling exercises on new applications and services
- Knowledge of concepts, applications, technologies of cloud computing; ability to design and develop systems architectures that fulfill the cloud computing services
- Knowledge of the tools and techniques used for creating software, hardware, networking and application infrastructure; ability to meet information security objectives while using these.
- Knowledge of tools, techniques, approaches and processes of cybersecurity risk management; ability to ensure organizational network operation and minimize negative effect by cybersecurity risks.
- Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one
- Strong problem-solving and trouble-shooting skills
- English
- Spanish
- French
-
Cybersecurity Architect
vor 1 Woche
Santander Geneve, SchweizCybersecurity Architect · Country: Switzerland · **Job mission** · Ensures that all products, services, and infrastructure for Banco Santander International SA customers, or those being used internally are secure by design and will meet an appropriate technology security level an ...
-
ELCA Informatique SA Geneve, SchweizJob number · 1455 · Date posted Jan 23, 2024 · Job category SharePoint / M365 Level of experience 10+ years · Job type Internal Employment type · Full-time · Work site Geneva Company · About ELCA · We are ELCA, one of the largest Swiss IT tribe with over 2,000 experts. We are mul ...
-
ELCA Security Geneve, SchweizJob number · 1455 · - Date posted · - Jan 23, 2024 · - Job category · - SharePoint / M365 · - Level of experience · - 10+ years · - Job type · - Internal · - Employment type · Full-time · - Work site · - Geneva · - Company · ELCA Informatique · **About ELCA**: · We are ELCA, one ...
-
Legal Intern
vor 1 Woche
ELCA Security Geneve, SchweizJob number · 1340 · - Date posted · - Aug 04, 2023 · - Job category · - Finance / Legal · - Level of experience · - 1 to 3 years · - Job type · - Full time · - Employment type · Internship · - Work site · - Geneva · - Company · - job benefitsPleasant work environment · Learning a ...
-
Video Production Trainee
vor 1 Woche
ELCA Security Geneve, SchweizJob number · 1333 · - Date posted · - Jul 21, 2023 · - Job category · - Human Resources · - Level of experience · - Job type · - Full time · - Employment type · Internship · - Work site · - Geneva · - Company · - job benefitsPleasant work environment · Learning and development · ...
-
M365 Sharepoint Architect
vor 1 Woche
ELCA Security Geneve, SchweizJob number · 1527 · - Date posted · - Apr 12, 2024 · - Job category · - SharePoint / M365 · - Level of experience · - 6 to 10 years · - Job type · - Full time · - Employment type · Full-time · - Work site · - Geneva · - Company · ELCA Informatique · **About ELCA**: · We are ELCA, ...
-
Application Security Engineer
vor 6 Tagen
Epam Geneva, SchweizDescription · About the role · EPAM is looking for an experienced Application Security Engineer to ensure the architectonic safety of our digital portfolio. You will work hand-in-hand with our Security Architect to implement secure coding guidelines, conduct thorough code revie ...
-
ELCA Informatique SA Geneva, Schweiz GanztagsAbout ELCA · We are ELCA, one of the largest Swiss IT tribe with over 2,200 experts. We are multicultural with offices in Switzerland, Spain, Italy, France, Vietnam and Mauritius. Since 1968, our team of engineers, business analysts, software architects, designers and consultants ...
-
Director of Technology
vor 1 Tag
Venture Search Geneva, SchweizAs the Technical Director within our hedge fund, your role is pivotal in shaping and spearheading the technological strategy essential to support our sophisticated trading operations. Leveraging your expertise, you will drive the development and refinement of our trading platform ...
-
Enterprise Information Security Architect
vor 1 Woche
Givaudan SA CH- Vernier, Schweiz GanztagsJoin us and celebrate the beauty · of human experience. · Step into our world of creativity and joy · Discover your potential · by embracing our culture of learning. · Find out more about · your recruitment journey with us. · Givaudan is the global leader in the creation of fl ...
-
Senior ICT Services Manager
vor 1 Woche
Michael Page Nyon, Schweiz GanztagsThe Senior ICT Services Manager will be responsible for establishing, and managing, a smooth and efficient ICT operation within a rapidly expanding organization. Change management will be a key part of the role, from the perspectives of technology, processes, people and culture. ...
-
Senior ICT Services Manager
vor 1 Woche
Michael Page Nyon, SchweizThe Senior ICT Services Manager will be responsible for establishing, and managing, a smooth and efficient ICT operation within a rapidly expanding organization. Change management will be a key part of the role, from the perspectives of technology, processes, people and culture. ...
Cybersecurity Architect - Geneva, Schweiz - Santander
Beschreibung
Cybersecurity Architect
Country: Switzerland
Job mission
Ensures that all products, services, and infrastructure for Banco Santander International SA customers, or those being used internally are secure by design and will meet an appropriate technology security level and demonstrate that all potential risks are being mitigated to an acceptable level to assure the confidentiality, integrity and availability of systems and data, according to relevant Santander and industry standards.
Leads in the design and development of enterprise-wide programs for information security. Optimizes the processes and standards of systems and network defence implementation to strength the attack surface and reduce risk. Establishes metrics and reporting capabilities for compliance to policies. Properly monitor and verify that technology teams implement proper security controls, fix misconfiguration and/or vulnerabilities and follow security recommendations.
Duties and responsibilities
Key responsibilities include:
RISK ASSURANCE & ARCHITECTURE
ATTACK SURFACE MANAGEMENT
NETWORK SECURITY
SSDLC
Experience and Qualifications
Desired, but not required:
Technical and Business Experience
Knowledge and skills
Languages required:
Languages desired, but not required: