Security Engineer
Location: Basel, Switzerland
Employment Type: Permanent, Full-time
Department: Information Security / IT Infrastructure
Reports to: Head of Information Security
Position Summary
As a Security Engineer, you will be a key technical member of our Security Operations Center (SOC) and infrastructure teams. Your primary focus will be on designing, implementing, maintaining, and monitoring the security posture of our hybrid on-premise and cloud environments. You will translate security policies into robust technical controls and respond decisively to incidents. This role requires deep technical expertise, a hands-on mentality, and a passion for solving complex security challenges in a dynamic international environment.
Key Responsibilities
1. Security Architecture & Implementation:
- Design, engineer, and deploy security solutions (e.g., SIEM, EDR/XDR, Firewalls, WAF, IAM/PAM, DLP, Encryption).
- Harden on-premise servers, cloud workloads (AWS, Azure), network devices, and endpoints according to industry best practices.
- Automate security tasks and orchestrate responses using scripting (Python, PowerShell) and security automation platforms (SOAR).
- Contribute to secure cloud migration and DevOps/DevSecOps initiatives.
2. Security Operations & Monitoring:
- Manage and fine-tune Security Information and Event Management (SIEM) tools for optimal detection.
- Conduct proactive threat hunting and analyze security events and logs from diverse sources.
- Monitor vulnerabilities, assess their impact, and prioritize remediation efforts in collaboration with IT teams.
- Administer and optimize Endpoint Detection and Response (EDR) and network security tools.
3. Incident Response & Forensics:
- Act as a key responder for security incidents, following the established IRP (Incident Response Plan).
- Perform digital forensics and root cause analysis to understand attack vectors and scope.
- Document incidents, actions taken, and lessons learned for post-incident reports.
4. Compliance & Risk Management:
- Ensure technical controls align with internal policies and external regulations relevant to Switzerland and the EU (e.g., GDPR, GxP, FINMA, ISO 27001).
- Support internal and external audit processes with technical evidence and expertise.
- Participate in risk assessments and penetration testing exercises, implementing recommended technical remediations.
5. Collaboration & Knowledge Sharing:
- Serve as an internal escalation point for complex security issues for the IT and development teams.
- Create and maintain technical documentation for security systems and procedures.
- Stay abreast of the latest security threats, vulnerabilities, mitigation techniques, and technologies.
Qualifications & Experience
Mandatory:
- Bachelor’s or Master’s degree in Computer Science, Information Security, or a related technical field, or equivalent proven experience.
- Minimum of 5 years of hands-on experience in a security engineering, SOC, or infrastructure security role.
- Deep, practical knowledge of:
- Network security (Firewalls, IDS/IPS, VPN, Zero Trust, segmentation).
- Operating Systems (Windows, Linux) security hardening.
- Cloud security concepts and native tools (AWS, Azure, or GCP).
- Core security technologies: SIEM, EDR, IAM, Email Security.
- Proficiency in at least one scripting language (Python, PowerShell, Bash).
- Strong understanding of attack vectors, MITRE ATT&CK framework, and common vulnerabilities.
- Professional fluency in English; excellent communication and documentation skills.
Highly Desirable:
- Industry certifications such as: CISSP, GIAC (GPEN, GCIA, GCIH), OSCP, Azure/AWS Security Specialist, CCSP.
- Experience in regulated industries (Pharma, Finance, Healthcare).
- Knowledge of container and Kubernetes security (K8s).
- Experience with DevSecOps tools and practices (CI/CD pipeline security, SAST/DAST).
- German language skills (Basel is a bilingual German/English region).
