Cyber Risk & Compliance Manager

Your team

The Pictet Tech division specialises in designing and integrating cutting-edge software applications, including advanced portfolio management systems, sophisticated trading platforms and comprehensive banking and corporate solutions. As a key contributor to the Group’s strategic advancements, the Pictet Tech division plays a vital role in driving transformative innovations that enhance our services and deliver exceptional value to our clients.
As a Cyber Risk & Compliance Manager within Pictet Tech, you will be part of a dynamic Tech & Cyber Risk Management department based in Geneva. You will be responsible for maintaining and enhancing the Internal Control System for cybersecurity processes for the Pictet Tech division. In this pivotal role, you will assess the design and performance of cybersecurity controls and conduct risk analyses to evaluate the impact of cyber threats. Your mission will also include overseeing the development and alignment of cybersecurity documentation and practices with regulatory requirements.

Your role

• Maintain the Internal Control System in relation to cybersecurity processes at the Tech level, in order to manage cyber risk in an effective manner.


• Assess the design and performance of 1st level cybersecurity controls carried out by Tech teams, and support the annual risk & control self assessments.


• Perform risk analyses and contribute to assessing the impact of emerging cyber threats on Pictet’s Tech landscape.


• Oversee the development, maintenance and review of cybersecurity documentation, including policies, standards and procedures. Ensure these are aligned with regulatory requirements.


• Serve as the principal point of contact for regulatory reviews and external audits related to cybersecurity.


• Perform regular 2nd level controls (e.g. shadow cloud, access bypass, etc.).


• Play an active role within the Risk & Compliance team, contributing to KPI & KRI documentation, providing cybersecurity support to IT projects and leading follow-up on improvement actions resulting from incidents, assessments or audits.

Your profile

• Bachelor’s or Master’s degree in Computer Science, Information Technology, Information Security, or a related field.


• 3-5 years of experience in cybersecurity risk management, consulting or audit, with a strong foundation in technical concepts and practices.


• Proven expertise in Identity and Access Management and Privileged Access Management solutions, with successful track records in implementation, monitoring, and optimisation.


• Strong grasp of cyber hygiene best practices, including experience with CIS baseline controls across endpoints, databases and servers. Ability to design and enforce IT infrastructure security policies.


• Familiarity with financial sector cyber related regulations (FINMA, BaFin, MAS, HKMA, DORA, etc).


• Relevant professional certifications (e.g., CISSP, CISM or equivalent) is a plus.


• Self-driven, proactive and solution-oriented mindset with excellent problem-solving skills.


• Fluency in both French and English, with strong communication and interpersonal skills.


• Residency in Switzerland or willingness to relocate.

Ref. CR&CM/CRO/RB

Note

Diversity & Inclusion

Pictet is an equal opportunity employer and is committed to creating a diverse environment. We respect all individuals and seek their inclusion in the workplace.