IT Security Specialist

Tasks

As an IT security specialist, you will be responsible for the operation, standardization, and documentation of security controls to ensure consistent implementation across on-premises, cloud, and Microsoft 365 environments. You will identify, escalate, and track security risks and deviations, working closely with colleagues in Switzerland.

• The operation and implementation of internal security controls across local systems, cloud platforms, and Microsoft 365
• The acquisition and operation of key security tools, including:
  • Data Loss Prevention (DLP)
  • Microsoft Purview (Compliance, Information Protection, DLP)
  • Microsoft Defender for Cloud Apps (MCAS)
  • Intune / MDM and Endpoint Security Controls
  • Zscaler
• The definition, consolidation, and documentation of security standards, configurations, and processes to ensure:
  • A unified security foundation
  • Clear ownership structure, versioning, and annual review cycles
• Defining and maintaining consolidated security processes to improve governance and ensure structured implementation of security changes
• The implementation and coordination of vulnerability management, including assessment, prioritization, remediation tracking, and validation
• The identification, assessment, and escalation of security risks across IT operations, the cloud, the workplace, projects, and SOC activities
• Identifying and flagging violations or deviations from approved safety standards to ensure that corrective action is taken or that formal risk acceptance is granted
• Support for cybersecurity incidents, including investigation, resolution, documentation, and closure
• The preparation of quarterly safety documentation and test records

Requirements

• 3–5 years of experience in IT / information security or security operations
• Extensive hands-on experience with the Microsoft security stack (Purview, DLP, MCAS, Intune/MDM) and cloud-based and on-premises security tools
• Experience with zero-trust security architecture
• Experience with cloud security
• Experience in control-based and audit-driven environments (ISAE 3000, ISO 27001, NIST, CIS)
• A structured, documentation-driven approach with a strong focus on risk management
• Excellent English skills; knowledge of German is a plus but not required

Certifications and Training (Plus)

• Cybersecurity certifications (e.g., CISSP, CISM, CISA, ISO 27001, Microsoft Security) are a major plus
• Relevant academic background (a bachelor’s or master’s degree in computer science, information security, or a related field) is a plus

We offer

We offer an exciting and forward-looking work environment with a wide range of responsibilities, a motivated and supportive team, and a professional workplace. You’ll benefit from attractive