Role & seniority: Technical security professional; contract role (long-term) based in Basel, Switzerland; 100% workload; start ASAP; 12 months+; hybrid work.

Stack/tools: Security testing and controls (applications, infrastructure); DevOps security integration; automation tooling for compliance reviews; familiarity with cloud platforms, OS, application security, pentesting; frameworks: NIST CSF, CIS, OWASP, SANS, SWIFT CSP.

Top 3 responsibilities

Conduct technical security control assessments and tests on applications and infrastructure.
Integrate security into DevOps workflows and enhance manual compliance review processes via automation.
Review security measures for confidentiality, integrity, and availability; perform risk assessments; contribute to assessment methodology and security policies/standards.

Must-have skills

Basic to intermediate scripting/automation or software engineering experience.
Knowledge of cloud technology, OS, application security, penetration testing, and cyber governance/risk management.
Familiarity with industry frameworks (NIST CSF, CIS, OWASP, SANS, SWIFT CSP).
Ability to document and communicate technical findings to developers and management; English proficiency.
Self-directed, collaborative, and fast-learning.

Nice-to-haves

Security certifications (OSCP, OSCE, OSEP, GPEN, GMOB, GXPN, OSWE, CISSP) or equivalent.
Advanced automation/DevSecOps experience; experience in financial services c

Full Description

this is a long term contract opportunity for our Basel based client in the Financial Services sector.

Your tasks

Conduct technical security control assessments and tests on applications and infrastructure Integrate security into DevOps workflows Enhance manual compliance review processes by leveraging automation Review and advise on security measures to protect the confidentiality, integrity, and availability of information assets Perform risk assessments and contribute to reviews of assessment methodology Support technical security projects and contribute to the development of security policies and standards

Your experience/knowledge

Certification in security-related disciplines and technologies (such as OSCE, OSCP, OSEP, GPEN, GMOB, GXPN, OSWE, CISSP) is advantageous Experience in scripting and automation or software engineering (basic to intermediate) Knowledge of cloud technology, operating systems, application security, penetration testing, and cyber governance risk management practices Familiarity with industry-recognised frameworks and controls (NIST CSF, CIS, OWASP, SANS, SWIFT CSP) Experience documenting and communicating technical findings for developers and management audiences

Language skills: English

Your soft skills

Self-confidence with good collaboration abilities Ability to learn quickly and operate independently Strong team player with a dynamic, results-oriented mindset

Location: Basel, Switzerland

Work setting: Hybrid

Sector: Financial Services

Start: ASAP

Duration: 12 months +

Workload: 100%

Ref.Nr.: BH 23989

Take the next step and send us your resume along with a daytime phone number where we can reach you.

Due to Swiss work permit restrictions, we can only consider applications from Swiss nationals, EU citizens, and current work-permit holders for Switzerland.

We welcome applications from individuals of all genders, age groups, sexual orientations, personal expressions, ethnic backgrounds, and religious beliefs. Therefore, there is no requirement to provide gender information or a photo in your application.

As per client requirements, we need information about your marital status, nationality, date of birth, and a valid Swiss work permit. For applicants with disabilities, we are happy to explore potential solutions with our end client.

This job advertisement was prepared with the assistance of AI technology and has undergone human review and approval.

IT Risk Assessment - OSCE, OSCP / NIST, CIS - Penetration Testing