Overview
Ensure and enforce compliance with applicable regulations in ICT governance, ICT security, and information protection. Assess the effectiveness of implemented safeguards and initiate additional measures to enhance ICT security and reduce risks. Analyze security-related events and their potential impact on ICT systems. Coordinate the prevention and resolution of security-threatening incidents in collaboration with managers and security specialists. Implement appropriate protective measures in the event of security incidents. Collaborate in developing proposed solutions and decision-making criteria based on security requirements and needs. Contribute to the evaluation and acquisition of security systems and tools. Participate in planning and executing internal and external audits. Coordinate and ensure the resolution of audit findings and penetration testing results.
Responsibilities
* Ensure and enforce compliance with applicable regulations in ICT governance, ICT security, and information protection.
* Assess the effectiveness of implemented safeguards and initiate additional measures to enhance ICT security and reduce risks.
* Analyze security-related events and their potential impact on ICT systems.
* Coordinate the prevention and resolution of security-threatening incidents in collaboration with managers and security specialists.
* Implement appropriate protective measures in the event of security incidents.
* Collaborate in developing proposed solutions and decision-making criteria based on security requirements and needs.
* Contribute to the evaluation and acquisition of security systems and tools.
* Participate in planning and executing internal and external audits.
* Coordinate and ensure the resolution of audit findings and penetration testing results.
Qualifications
* Completion of a professional ICT specialist training (EFZ) and advanced specialization focused on ICT security (university of applied sciences, technical institute, university) or equivalent professional experience.
* Additional training and qualified knowledge in areas such as ICT security (e.g., CISSP, CISA, CISM, CAS/MAS Information Security), ISO/NIST certifications, etc., is an asset.
* Experience in vulnerability management.
* Strong analytical and conceptual thinking skills.
* “Think differently” mindset with a fundamentally positive attitude.
* Strong customer service orientation and excellent advisory skills.
* Proactive team player.
* Native German speaker with good English skills, both written and spoken.
* Experience liaising with authorities and administrative bodies.
#J-18808-Ljbffr