8 days ago

Senior Security Officer / Business Unit Security Partner

SIX Group AG

  • Work region
  • Sector
  • Employment type
  • Position

SIX operates the infrastructure underpinning the Swiss financial sector and offers a comprehensive range of services around the world in the fields of securities trading and settlement, financial information and payment transactions.

Senior Security Officer / Business Unit Security Partner

Corporate Security and its company-wide sphere of activity has the responsibility to ensure the adherence of compliance regarding information security from the perspective of 2nd line of defense (LOD2) in order to assess and enforce compliance regarding the SIX policies, Swiss regulations and EU GDPR. The Security Partner acts as central contact to the business unit to bidirectional connect and exchange information security related matter between the IT and the business unit. He supports the business unit in projects, they identify and assess information security related risks and suggest adequate counter measures to keep the right balance and to finally ensure efficient and stable operations.

  • Be responsible for ensuring the correct functional and technical implementation of information security and security requirements, methods and processes, as well as for the management of information security risks for the division Securities Services and Swiss Exchange
  • Control and enforce checks on implementation and compliance with security regulations, measures and processes
  • Perform functional and technical security , IT risk and IT compliance reviews and approve IT risk assessment, security concept plans and solutions that address exclusively division and country/location specific issues
  • Analyze designs of application/infrastructure components in order to identify and manage IT risks within division. Perform assessments considering the business impact, criticality of components, and associated threats and vulnerabilities in order to recommend controls to mitigate risks to an acceptable level
  • Initiate and track tasks/mitigating measures arising within division and its locations that are needed to ensure IT compliance
  • Accompany critical projects, conduct IT risks and IT compliance assessments or support project managers to identify, analyze impact and probability of IT risks and to determine mitigation measures
  • University degree (or FH) in IT or economic & IT plus further education in the Security domains (i.e. CISSP, CISA, CISM, CRISC, MAS IT Security)
  • Several years of working experience in consulting in Information Security and Information Risk Management and working in IT security projects
  • Profound skill in Information security topics in the domains of governance, architecture, processes and technology including questions around IT Compliance
  • Skills in Information security standards ISF, ISO, NIST would be preferred
  • Analytical and conceptual thinking on strategic level
  • Very good communication and presentation skills in contact with the stakeholders and senior management
  • Very good German and English skills (speaking and writing)
Judith Gubser
Human Resources
+ 41 058 399 24 79