Role & seniority: IT Risk / Penetration Testing professional (contract role, Basel-based)

Stack/tools: OSCE, OSCP, OSEP, GPEN, GMOB, GXPN, OSWE, CISSP (certifications advantageous); scripting/automation; cloud tech; OS/app security; cyber governance; familiarity with NIST CSF, CIS, OWASP, SANS, SWIFT CSP

Top 3 responsibilities

Conduct technical security control assessments and tests on applications and infrastructure
Integrate security into DevOps workflows and enhance manual compliance reviews via automation
Review and advise on security measures to protect confidentiality, integrity, and availability; perform risk assessments; support security projects and policy/standard development

Must-have skills

Security certifications in relevant disciplines (advantageous)
Experience in scripting/automation or software engineering (basic–intermediate)
Knowledge of cloud, OS, application security, pentesting, and governance risk management
Ability to document and communicate technical findings to developers and management
English language proficiency

Nice-to-haves

Specific certifications (OSCE, OSCP, OSEP, GPEN, GMOB, GXPN, OSWE, CISSP)
Experience with industry frameworks (NIST CSF, CIS, OWASP, SANS, SWIFT CSP)
Prior exposure to security policy/standards development

Location & work type: Basel, Switzerland; Hybrid work setting; Financial Services sector; Start ASAP; Duration 12 months+; 100% workload; Swiss work-permit eli

Full Description

IT Risk Assessment - OSCE, OSCP / NIST, CIS - Penetration Testing - this is a long term contract opportunity for our Basel based client in the Financial Services sector.

Your tasks

Conduct technical security control assessments and tests on applications and infrastructure Integrate security into DevOps workflows Enhance manual compliance review processes by leveraging automation Review and advise on security measures to protect the confidentiality, integrity, and availability of information assets Perform risk assessments and contribute to reviews of assessment methodology Support technical security projects and contribute to the development of security policies and standards

Your experience/knowledge

Certification in security-related disciplines and technologies (such as OSCE, OSCP, OSEP, GPEN, GMOB, GXPN, OSWE, CISSP) is advantageous Experience in scripting and automation or software engineering (basic to intermediate) Knowledge of cloud technology, operating systems, application security, penetration testing, and cyber governance risk management practices Familiarity with industry-recognised frameworks and controls (NIST CSF, CIS, OWASP, SANS, SWIFT CSP) Experience documenting and communicating technical findings for developers and management audiences

Language skills: English

Your soft skills

Self-confidence with good collaboration abilities Ability to learn quickly and operate independently Strong team player with a dynamic, results-oriented mindset

Location: Basel, Switzerland

Work setting: Hybrid

Sector: Financial Services

Start: ASAP

Duration: 12 months +

Workload: 100%

Ref.Nr.: BH 23989 Take the next step and send us your resume along with a daytime phone number where we can reach you. Due to Swiss work permit restrictions, we can only consider applications from Swiss nationals, EU citizens, and current work-permit holders for Switzerland. We welcome applications from individuals of all genders, age groups, sexual orientations, personal expressions, ethnic backgrounds, and religious beliefs. Therefore, there is no requirement to provide gender information or a photo in your application. As per client requirements, we need information about your marital status, nationality, date of birth, and a valid Swiss work permit. For applicants with disabilities, we are happy to explore potential solutions with our end client. This job advertisement was prepared with the assistance of AI technology and has undergone human review and approval.