Global Information Security Lead (f/m/d), Zürich (Kreis 11)

Information security is central to earning the trust of our global customers and protecting the data that powers our AI-driven products.

We’re looking for a pragmatic, hands‑on security professional to own our information security program. We value strong fundamentals and a willingness to grow and you should be confident in most of the below mentioned areas and motivated to pursue ongoing development.

This role directly reports to the CIO and carries ownership over security strategy, operations, and compliance across our international footprint.

What will you do Security Operations

Monitoring and triaging security alerts, coordinating incident response, and seeing issues through to resolution

Managing vulnerability scanning and remediation across endpoints, servers, networks, and applications

Overseeing cloud security posture across AWS, Azure (and regional equivalents)

Owning the security tooling stack: SIEM, EDR, email security, vulnerability scanning, WAF

Guiding identity and access management practices, SSO, MFA, privileged access, joiner/mover/leaver processes, and periodic access reviews

Providing architecture reviews and security guidance for new systems and infrastructure changes

Governance&Compliance

Maintaining and evolving our ISO 27001 certification

Coordinating external audits and penetration tests

Developing and maintaining security policies, standards, and operational playbooks

Tracking risks and driving remediation across the organization

Running security awareness training to build a strong security culture

Client&Stakeholder Engagement

Completing security questionnaires and vendor assessments for customers

Supporting sales on security‑related RFPs and client conversations

Communicating security updates, policy changes, and required actions clearly across all locations

What do we expect

At least 3 to 5 years in information security with hands‑on technical work

Solid incident monitoring and response experience and triaging alerts and managing incidents end‑to‑end

Working knowledge of cloud security in at least one major platform (AWS, Azure, or GCP)

Familiarity with ISO 27001 or SOC 2 programs

Experience with vulnerability management and security monitoring tools

Self‑starter mindset, comfortable working independently and driving initiatives

Clear communicator who can translate security topics for IT, engineering, business, and customer audiences

Comfortable to visit other locations once or twice per year

Relevant certifications such as CISSP, CISM, or cloud security specialties is a plus

Experience in multi‑site or multi‑region security is considered an advantage

Background in SaaS, deeptech, or product‑led technology companies is beneficial

Exposure to DevSecOps practices or infrastructure‑as‑code is considered a plus

Our offer

Competitive remuneration package

Team building events and company activities

Opportunities for professional development

Free car parking

For this position we only consider direct applications via our platform.

#J-18808-Ljbffr