Information Security Officer

01 June | Employee | 100%

Information Security Officer

The company

The Swatch Group Services Ltd is a dynamic company of the Swatch Group providing high quality services to the Group organizations worldwide in the fields of Logistics, Information Technology, Customer Service and Real Estate. The company belongs to the Swatch Group, the world's largest watch maker with a portfolio of 18 brands of which Omega, Longines, Tissot and Swatch. For our Information Security division, we are looking for a motivated:

Information Security Officer

 

Job description

  • Your responsibilities

    • Ensure cyber security as integral part of the information security processes within the Swatch Group companies.
    • Assist Swatch Group companies to achieve compliance with group directives and rules.
    • Collaboration in the development and enhancement of information security, compliance requirements, application security and information security risk management. Ability to work directly with IT, digital and production departments through the process of understanding and assessing their cyber risk and mitigation during acquisition and development projects.
    • Conduct technical cyber risk assessments in various operational environments (IT, digital and production), including but not limited to: threat modelling, architecture and design reviews, code reviews, vulnerability assessments, application security testing and penetration tests.
    • Assessing third-party vendors in their ability to build and deliver secure applications and systems.
    • Follow, assess and advise company stakeholders on new and emerging cyber threats.
    • Be actively involved in cyber security awareness campaigns and initiatives.
    • Provide 2^nd and 3^rd level cyber security incident response assistance to companies.

Profile

  • Your profile

    • Bachelor Degree in information security or related discipline.
    • Profound knowledge of cyber security concepts with the focus on application architecture, cloud computing, development standards
    • In-depth knowledge in the areas of information security, risk management and compliance.
    • Certified as OSCP, ECSA, CSXP, CASP, CISSP as advantage.
    • Good knowledge of application-layer threats and countermeasures, including tools and methodologies for hardening the software development lifecycle (e.g. OWASP ASVS/SAMM, PCI SSF, NIST SSDF, etc.).
    • Good knowledge in the field of computer vulnerabilities, hacking methodologies and techniques, and of the current cyber security frameworks and standards (e.g. ISO, NIST, OWASP, etc.).
    • Experienced in conducting technical risk and vulnerability assessments, application security testing, source code review and penetration testing at various layers (networks, systems and applications).
    • Ability to understand concepts and tools to identify and protect information assets in large organizations.
    • You communicate in English and French or German

Professional requirements

  • Minimum of 3 years of experience in a similar or related position.

Languages

  • You communicate in English and French or German

Company address

Contact

Info

01 June
Employee, 100%

Contact

Swatch Group Services


The Swatch Group Services LTD

Ch. du Long-Champ 119Bienne

Industry

Services

Labels (1)

Training Company
Training Company
Salary

Salary Check

Take advantage of the jobup.ch service to find out how if you get paid what you deserve.