Chief Security Officer (CISO)

Employment Type:Permanent
Job Location:Zurich Switzerland
English Description:

We are looking for a Chief Security Officer to be based in Zurich, Switzerland.

 

Responsibilities:

 

Lead the information security function across the company to ensure consistent and high-quality information security management in support of the business goals

Direct and approve the design of security systems

Manage all teams, employees, contractors and vendors involved in IT security

Constantly update the cyber security strategy to leverage new technology and threat information

Oversees the development and enforcement of security policies, procedures, and technology to protect the IT Network, company's stored data, and computer applications from unauthorized access or loss

Evaluate and prioritize risks and emergent security threats throughout our organization

Manage the budget for the information security function, monitoring and reporting discrepancies

Audit existing systems and provide comprehensive risk assessments

 

Requirements:

 

At least 10 years of relevant professional experience

An advanced degree in a related field

Strong knowledge of business management and a working knowledge of information security risk management and cyber security technologies

Excellent management, leadership, interpersonal skills, ability to solve complex problems

Outstanding interpersonal and communication skills

Excellent problem solving and troubleshooting skills

At least one industry accepted certification, such as  CISSP or CISM, or equivalent

Fluent in English

 

Technical Skills:

 

Practices and methods of IT strategy, enterprise architecture and security architecture

Security concepts related to DNS, routing, authentication, VPN, proxy services and DDOS mitigation technologies

ISO 27002 and ITIL frameworks

PCI, HIPAA, NIST, GLBA and SOX compliance assessments

Windows, UNIX and Linux operating systems

Firewall and intrusion detection/prevention protocols

TCP/IP, computer networking, routing and switching

Network security architecture development and definition

Knowledge of third-party auditing and cloud risk assessment methodologies

Network security and firewall management

Data and information management (classification, retention, destruction)