Security Specialist

Title: Security Specialist

Start date: ASAP

Latest start date: May 2025

End date: 12 months contract (extension TBC)

Work location: Basel

Workload: 100%

Team: Governance & Assurance

Department: Corporate Security (Governance & Assurance team)

Background:

We are looking for a professional Security Specialist to join our Corporate Security team to support in our strategic and governance security environment. This would be an operational role running on going corporate security work-packages, also supporting various deliverables for projects. The team is made up of around 6 other members, and they focus on security assessments, technical reviews, security advisory, security process enhancement and automation, controls testing, and creation of Security standards following industry best practices.

Perfect candidate:

Security Specialist with an ability to perform cyber/technology risk assessments, technical security controls reviews across multiple platforms which include Cloud applications/environments, operating systems, container orchestration environments, CI/CD pipelines and network infrastructure.

The candidate should be able to assess technical controls, develop security policies and compliance standards, and enhance existing manual compliance checks processes. The candidate should have a very good technical understanding and ownership mindset. Also very dynamic, results oriented and comfortable with reporting.

Tasks & Responsibilities:

Provide expert advice and operational experience on information security risk and control matters throughout the organisation. This includes:

Conduct technical control assessments/tests on applications and infrastructure components

Integrating security into DevOps

Enhance manual compliance review processes by leveraging automation

Conduct compliance reviews/audits of the organization's information assets.

Review of existing security standards/baselines and creation of new ones

Review and advise on the security measures to protect the confidentiality, integrity and availability of the Bank's information assets and critical services.

Perform risk assessments and contribute to reviews of the assessment methodology

Contribute to the implementation of industry-recognised key critical controls and contribute to Corporate Security compliance mandate

Support the team on technical security projects, in particular to develop and enhance the security policies and procedures. Participate in the gathering and analysis of information from security-related sources

Must haves:

Certification in security-related disciplines and technologies would be an advantage (accreditation such as OSCE, OSCP, OSEP, GPEN, GMOB, GXPN, OSWE, CISSP) (*)

experience with some of the following: (*)

o Scripting and automation/Software Engineering (Basic to Intermediate)

o Enhancements of manual compliance reviews

Security knowledge in cloud technology, operating system, application security, penetration testing and sound knowledge of cyber governance risk management practices (*)

Familiarity with industry-recognized frameworks and controls (eg, NIST CSF, CIS, OWASP, SANS, SWIFT CSP etc ). We are looking for experience in implementing these frameworks. (*)

experience with documenting and communicating results that may be consumed by both developers and management-level audiences. (*)

Interpersonal skills:

Self-confident with good collaboration skills

Able to learn things quickly

Team player and technically autonomous

Nice to Have:

Microsoft Azure

Identity and Access Management

Openshift Container Platform

Vulnerability Scanners

SharePoint Online, DevOps

Github

Job Title: Security Specialist

Location: Basel, Switzerland

Job Type: Contract

TEKsystems, an Allegis Group company. Allegis Group AG, Aeschengraben 20, CH-4051 Basel, Switzerland. Registration No. CHE-101.865.121. TEKsystems is a company within the Allegis Group network of companies (collectively referred to as "Allegis Group"). Aerotek, Aston Carter, EASi, TEKsystems, Stamford Consultants and The Stamford Group are Allegis Group brands. If you apply, your personal data will be processed as described in the Allegis Group Online Privacy Notice available at our website.

To access our Online Privacy Notice, which explains what information we may collect, use, share, and store about you, and describes your rights and choices about this, please go our website.

We are part of a global network of companies and as a result, the personal data you provide will be shared within Allegis Group and transferred and processed outside the UK, Switzerland and European Economic Area subject to the protections described in the Allegis Group Online Privacy Notice. We store personal data in the UK, EEA, Switzerland and the USA. If you would like to exercise your privacy rights, please visit the "Contacting Us" section of our Online Privacy Notice on our website for details on how to contact us. To protect your privacy and security, we may take steps to verify your identity, such as a password and user ID if there is an account associated with your request, or identifying information such as your address or date of birth, before proceeding with your request. commitments under the UK Data Protection Act, EU-U.S. Privacy Shield or the Swiss-U.S. Privacy Shield.