Security Compliance Specialist (f/m/d) 100%Originalinserat

As a Security Compliance Specialist within our Security Compliance Competence Centre, you will play a vital role in protecting Bank Julius Baer infrastructure from cyber threats. This position offers possibilities to transition to a permanent internal employment, based on the performance.

• Vulnerability Management: Assessing vulnerabilities identified by our Nexpose scanner across a diverse infrastructure landscape, including Windows Server, Linux, and Azure cloud environments. This includes analyzing vulnerability findings to review criticality and correlating them with other security data from our Splunk SIEM to prioritize remediation efforts.
• Security Baseline Compliance: Ensuring that our infrastructure assets adhere to defined security baselines and configurations. You will conduct regular audits, identify deviations, and track remediation progress.
• Remediation Coordination: Working collaboratively with infrastructure owners across Network Operations, Server Administration, DevOps Engineers, and Application Development teams to develop and implement Remediation Tasks for identified vulnerabilities and compliance gaps. This requires strong communication and negotiation skills to ensure timely and effective remediation.
• Reporting and Escalation: Providing regular updates on vulnerability status, compliance progress, key risks, and escalating critical issues to the appropriate management levels.
• Process Improvement: Contributing to the continuous improvement of our vulnerability management and security compliance processes.

Necessary Requirements:

• Bachelor's degree in Computer Science, Information Security, or a related field.
• 3+ years of experience in a technical security role, with a strong focus on vulnerability management and security compliance.
• Hands-on experience with vulnerability scanning tools.
• Solid understanding of operating system security (Windows Server, Linux).
• Experience with virtualization technologies.
• Familiarity with cloud security concepts (Azure experience is a plus).
• Working knowledge of network security principles and devices (Cisco experience is a plus).
• Strong understanding of security frameworks and regulations.
• Excellent communication, negotiation, and interpersonal skills.
• Ability to explain complex technical information clearly and concisely to both technical and non-technical audiences.
• Proactive, self-starter with the ability to work independently and as part of a team.
• Fluency in English (written and spoken).
• Eligible to work in Switzerland (or eligible for sponsorship).

Optional Requirements (Considered a Plus):

• Experience with Splunk or other SIEM platforms.
• Relevant security certifications (e.g., CISSP, CISM, Security+, CEH, OSCP).
• Experience in the financial services industry.
• German language.