We are currently looking for a Head of Information Security to join one of our top clients in Switzerland.
Our client is a next generation digital universal bank, focusing on sustainability, from scratch.
Main Tasks
* Maintenance and ongoing development of a systematic identification, assessment, and monitoring process of information security risks (ISMS according to ISO 27001 standard)
* Manage the performance of risk assessments
* Be responsible for the continuous improvement of the IT security system, and monitoring compliance with the IT security system
* Contribute to the further development of the existing Security Operation Center (SOC), for monitoring, early identification,and efficient handling of vulnerabilities and incidents in the area of information security and cyber risks, as well as the periodic execution of incident response exercises (War Room Exercise)
* Develop and issue IT security specifications in the form of security concepts, directives, guidelines
* Provide information and consulting in connection with security incidents and the effectiveness of information security measures
* Collaborate with internal and external stakeholders, as well as preparation and close support of external and internal audits
* Continuous improvement of business continuity management, including periodic BC/DR tests
* Planning, commissioning, monitoring, and evaluation of regular risk-oriented security audits such as vulnerability analyses and penetration testing
* Plan and implement targeted and regular training and awareness-raising measures with regard to IT information security
What you bring to the table
* A minimum of 5+ years working as a CISO
* Higher professional degree or studies in the field of business informatics or computer science and further education in the field of IT & information security (CISSP, CISM, CISA, etc.)
* In-depth knowledge and experience in risk and information security management (incl. standards and regulatory basics, e.g. ISO 27001, NIST, CIS)
* Experience in IT processes, cloud technologies, IT architecture, network technologies, application security, and identity and access management
* Business Fluency in German and English is required
* Great interest in developing yourself in a dynamic, interactive, and digital environment in breadth and depth
* You enjoy working on your own initiative and contributing to a dynamic environment.
Next Steps
* Send me your CV at s.dadin@jeffersonfrank.com
* Intro-call with the Recruiter
* Meet virtually and onsite your new team
Looking forward to hearing from you!
