Your team

Technology & Operations design and integrate software applications ranging from portfolio management systems and trading platforms to banking and corporate solutions. The division is responsible for some of the Group’s key innovations as well as sustaining business operations and developing custodian and fund administration services.

Pictet’s Cybersecurity unit is looking for a motivated, skilled, self-starting Third-Party Cyber Risk Manager  to join a team of cybersecurity professionals. You will join the Tech&Ops Division and work in a challenging department where cybersecurity is of prime importance. As a third-party cyber risk manager, you will be able to make a strong contribution towards improving organisational robustness and resilience. This position offers a great opportunity to perform a large variety of tasks and take part in interesting projects.

Your mission will be to develop and implement a third-party cyber risk management programme focused on effective controls and actionable outcomes. This will be instrumental in enabling the overall third-party risk management programme of the Group. Moreover, as part of the Cybersecurity unit, you will be supporting the team’s effort around general cyber risk management and controls.
 

Your role

• In line with the Group third-party risk management programme and Tech&Ops internal control system, develop and operate the control framework for third-party and supply-chain cyber risks.


• Proactively engage with key technology and security providers to ensure their cybersecurity maturity model meets Pictet’s expectations.


• Support the third-party risk programme from a cybersecurity angle, including due diligence and outsourcing risk assessments.


• Oversee vulnerability management of third-party products installed or used by Pictet.


• Perform ad-hoc reviews of third-party providers in cases of wide-reaching cyber threats (e.g. critical vulnerability affecting a general component).


• Contribute to the Cybersecurity team’s overall activities, such as reviewing cyber risks of internal solutions or projects, consulting internal technology teams on security issues, or developing and maintaining security standards. 
   

Your profile

• Higher education in information technology, cybersecurity or business. 


• At least five years’ experience in cybersecurity or information risk management, including third-party risk management.


• Certification such as CISSP, CISA or CRISC a plus.


• Analytical mindset with a keen eye for details.


• Ability to speak clearly with various stakeholders, senior executives as well as technical experts.


• Autonomous self-starter.


• Working proficiency in French and English.


• Must be resident in Switzerland.

 

CRM/FW/RH

Note

CRM/FW/RH

 

We will not accept any CVs via agencies

Diversity & Inclusion

Pictet is an equal opportunity employer and is committed to creating a diverse environment. We respect all individuals and seek their inclusion in the workplace.