Job DescriptionAs a Security Engineer, you ensure that technical solutions across our environment are designed, implemented, andoperatedin line with our security requirements. Your main tasks include:Research,designand implement security solutions for all managed components within LGT Capital Partners' on-premises and cloud infrastructure; Ensure that security is integrated into the evaluation, selection, deployment and configuration of hardware,softwareand cloud services; Identifyand define system security requirements thatcomply withall applicable security policies, regulatoryrequirementsand industry best practices; Develop technical solutions to mitigate security vulnerabilities and automate repeatable security processes; Operate and improve the vulnerability management process, including assessment of findings,prioritizationand coordination of remediation activities with responsible teams; Closely collaborate with ourexternal Security OperationsCenter(SOC) to enhance detection use cases, improverunbooksandoptimizeincident workflows; Assistinresponding to security incidents, penetration tests, red-team exercises and audits; Analyzeinfrastructure,cloudand security logs toidentifytrends,deviationsand potential security incidents; Support the review and update of cyber security policies, architectures,standardsand guidelines; Act as aSubject Matter Expert within virtual teams such as the CSIRT or the Security Team; Take over service ownership of security-related products such as endpoint and identity security solutions; Prepare clear and concise technical documentation.RequirementsThorough understanding of modern security principles, Zero Trust concepts, threat detectiontechniquesand current attack vectors; Proven experience with Microsoft technologies (Active Directory, Group Policy Management, Entra ID / Azure AD, Conditional Access, Identity Protection); Proven experience with Microsoft Cloud Security Solutions (Microsoft 365 Defender, Defender for Endpoint, Defender for Office 365, Defender for Identity, Defender for Cloud Apps, Microsoft Sentinel); Hands-onexperiencedeploying,configuring,andadministeringMicrosoft Sentinel inenterpriseenvironments,includingworkspacesetup,dataconnectoronboarding,andcost/retentionmanagement; Strong command of Kusto Query Language (KQL) for threat hunting, log analysis, and building complex, multi-table queries; Experience connecting data sources via nativeconnectors,third-party connectors (CEF, Syslog, REST API, custom parsers)andwithASIM (Advanced Security Information Model) normalization schemas and parser development; Knowledge of cost optimization strategies: auxiliary log tiers, ingestion-time filtering, and analytics vs. basic log strategies; Hands-onexperience collaborating with cross-functional teams ( Cloud, DevOps, Endpointetc) to triage, prioritize, and remediate security findings and misconfigurations surfaced through Microsoft security tooling, including Secure Score, Exposure Score, Defender for Cloudetcmanaging recommendations across identity, cloud, and device workloads through to closure; Experience with vulnerability scanning, risk assessment, exploitationtechniquesand remediation processes; Strong automation and scripting skills (, PowerShell, Python) and the ability to build repeatable and scalable security controls; Solid problem-solving and troubleshooting skills with the ability toanalyzecomplex environments; Ability tointerface withand earn the trust of stakeholders at all levels of the company; Demonstrated judgment, sense of urgency, and commitment tohigh standardsof ethics, compliance, customerserviceand business integrity.What you can expectWe provide modern working conditions, including work-from-home options, flexible hours and a home office allowance to ensure staff members have a work environment equipped with the latest technology; A diverse culture founded on mutual respect, teamwork and appreciation awaits you at LGT Capital Partners. We go the extra mile to generate impact; We empower and invest in you: your professional development j4id10225219a j4it0623a j4iy26a