Cloud&Network Security Service Owner (Engineer), Zürich (Kreis 11)

Cloud&Network Security Service Owner (Engineer) Full-time

We are looking for a hands‑on security engineer to take end‑to‑end ownership of our Cloud Security&Cryptographic Services and Network Security domains. You will shape how these services are delivered across cloud and hybrid‑cloud environments – setting direction, driving adoption, and ensuring operational quality – while also contributing directly to implementation, automation, troubleshooting, and continuous improvement (this is not a purely coordinating role).

Your key tasks

Own and continuously improve the

Cloud&Network Security

service scope, including:

Cloud security posture and guardrails

(secure‑by‑default baselines, policies, zones/guardrails)

Cloud detection and response controls

(configuration, tuning, integrations, signal quality)

Cryptographic services

(keys, certificates, secrets, API keys: lifecycle, rotation, revocation, access governance, compliance evidence)

Network security posture and governance

(firewalls, proxies, IDS/IPS, Cloudflare‑based services, NSGs/security lists)

Run a sustainable

network rule governance

model (inventory, periodic re‑accreditation/recertification, exception handling, audit readiness)

Drive

automation‑first operations : monitoring, metrics, alerting, playbooks, inventory automation, configuration validation, and drift prevention

Translate stakeholder needs into clear standards, backlogs, and delivery priorities– and ensure adoption with minimal friction for engineering teams

Actively contribute hands‑on: configuration changes, scripting/automation, troubleshooting, and incident/on‑call support when needed

This role can be based in Zurich or Bioggio.

Qualifications

Strong experience in

cloud security

and

network security

in enterprise environments (ideally regulated/financial industry)

Practical experience with

cryptography / PKI / key and secrets management

(lifecycle, access control, rotation, auditability)

Ability to manage a backlog/roadmap and align stakeholders, while staying pragmatic and delivery‑focused

Clear communication skills across technical and non‑technical audiences

It would be a real bonus if you have

Experience with

Oracle Cloud Infrastructure (OCI) security services

(e.g., Security Zones, Cloud Guard, Vault, Certificate Authority) and/or comparable cloud‑native security stacks

Experience with

Cloudflare ,

Fortinet ,

Check Point , and/or firewall orchestration/governance tooling

Relevant certifications (e.g., CCSP, CISSP, cloud security certifications, CCNP Security)

German and/or Italian

We realize that managing work‑life balance is a challenge we all face in our daily lives and in order to support with this we are pleased to offer hybrid and flexible working for most of our Avaloqers to maintain work‑life balance and still continue our fantastic Avaloq culture in our global offices.

In Avaloq we are proud to embrace diversity and understand the success of our business is built on the power of different opinions, we are whole heartedly committed to fostering an equal opportunity environment and inclusive culture where you can be your true authentic self.

We hire, compensate and promote regardless of origin, age, gender identity, sexual orientation or any other fantastic traits that make us all unique, we have done our best to write this advert in an inclusive and neutral way.

We will not accept speculative CV submissions from recruitment agencies, and any unsolicited candidate submissions will be exempt from any payment expectations.

#J-18808-Ljbffr