ODDO BHF is a Franco-German-Swiss financial group with French and German roots dating back to over 150 years and Swiss roots originating in 1780. It is owned by Philippe Oddo and his family, by employees and by long term partners.
With 3,200 employees and more than EUR150 billion in client assets, ODDO BHF has three main business lines, based on a strong investment in market expertise: private banking, asset management and corporate and investment banking.
In addition, ODDO BHF has strengthened its presence in Switzerland in 2021 with the acquisition of Landolt & Cie SA, increasing its presence in French speaking Switzerland.
ODDO BHF Switzerland is developing quickly and has the ambition to attract the best talents in order to contribute significantly to the Group's growth.
YOUR TEAM AND YOUR ENVIRONMENT
The Information Security Management (ISM) of ODDO BHF has the task to protect the business and their customers against Cybercrime and enable digital innovation in a safe IT environment.
ISM Switzerland works in close collaboration and alignment with the Group’s ISM organization based in Paris, Frankfurt and Tunis.
In the context of increasing cybersecurity maturity, an Information Security Specialist is needed to strengthen the ISM.
THE SKILLS YOU WILL DEVELOP
- The Information Security Specialist reports to the Chief Information Security Officer (CISO) and will support him by:
- Reviewing, maintaining, and promoting the cybersecurity policy framework in compliance with the Group security baseline and regulatory requirements (Finma, SWIFT CSP, SIC…)
- Manage business impact assessments and security due diligence for current and new vendors/tools.
- Coordinating penetration tests, audits and assessments and synchronizing with service providers, Information security teams, Internal Audit department and IT teams
- Following up and managing deliverables regarding cybersecurity findings (regulatory, audits, pentest…) in coordination with relevant stakeholders
- Developing and coordinating the reporting capabilities (monthly indicators, information Security risks and treatment, threat landscape, projects evolution…) in Cybersecurity to the intention of relevant Bodies and Boards
- Organizing and steering the cybersecurity awareness plan (cyber security exercises, in-face trainings…)
- Implementing cybersecurity measures in accordance with Group requirements
- Responding to cybersecurity assessments from Clients and partners
YOUR REMUNERATION
We offer you a remuneration package tailored to your profile and skills. This remuneration is based on a fixed salary, a discretionary bonus that is subject to individual arbitration at the end of each year and the possibility of becoming a shareholder.
Our ambition is to attract and develop the best talent by offering them the opportunity to become shareholders in the Group alongside the Oddo family, who together hold 90% of the capital. We are committed to aligning our interests and values with our clients and partners.
REQUIRED SKILLS
A bachelor’s or a master’s degree in computing science, ideally in information security
2-3 years in information security in a challenging environment, ideally in financial services
- A successful first experience in the financial sector
- Relevant IT skills (knowledge of IT assets in a professional context, ability to read and understand an architecture diagram)
- Understanding of cybersecurity concepts and technologies, and knowledge of cybersecurity regulatory requirements
- Experience with an international security framework such as ISO 27001-2 / NIST / EBIOS RM and SWIFT CSP
- Ideally, holder of a Certified Information Security Manager certificate (CISM) or equivalent
- Skills in project management
- Excellent communication skills
- Business-fluent English and French language skills; German is a plus.
Based on your knowledge and experience we are eager to grow the fields of your responsibilities over time. Our motto, “Make Everyday an Opportunity” applies fully to this function.
We are committed to ensuring equal opportunities. Diversity is one of the keys to our past and future success and we fully support it.
We do not accept applications from employment agencies.