Team Lead, Web Entry Solutions

Tasks

As Team Lead for Web Entry Solutions, you will be responsible for the strategic and operational management of our central web entry security infrastructure and its ongoing development. Your responsibilities will include:

• Stable operation and strategic development of core IT security infrastructures in the web entry sector
• Design, implementation, and continuous optimization of web application firewalls and AFR security architectures
• Operation, configuration, and further development of security features such as ModSecurity and Core Rule Sets (CRS) OpenlIDS (IDS/IPS)
• Design, implementation, and operation of Global Single Sign-On (GSSO) solutions based on SAML 2.0 and OpenID Connect (OIDC)
• Comprehensive protection against all OWASP Top 10 vulnerability categories
• Operation and further development of load-balancing solutions and multi-layered DDoS protection mechanisms
• Monitoring and analysis of HTTP/2 traffic for anomalies, attack patterns, and policy violations

Security Governance, Assessments & Projects

Your responsibilities will also include:

• Security assessments, vulnerability management, and baseline compliance via the web-based entry platforms
• Analysis and prioritization of findings from penetration tests, DAST scans, and bug bounty programs
• Management and implementation of complex security projects with a strategic view of the overall IT security landscape
• Analysis and management of security incidents and coordination of response measures
• Development and maintenance of security policies, WAF guidelines, technical documentation, and operating instructions

Guided Tours & Consultations

As a Team Lead, you will also take on leadership and advisory responsibilities:

• Leading and advising a globally distributed team in Switzerland and Singapore
• Advice and support for business units on security matters

Requirements

The following requirements apply to this position:

• University degree (BSc / MSc / equivalent) or higher relevant technical qualification (IT/computer science; information security, or a comparable technical discipline)
• In-depth, verifiable knowledge of the OWASP Top 10 vulnerability categories
• Practical experience in configuring, operating, and auditing ModSecurity, including the OWASP CRS
• Solid understanding of web application architecture; HTTPS/SSL protocol, REST APIs, reverse proxy concepts, TLS/mTLS, Content Security Policy (CSP), CORS; HTTP security headers (HSTS, X-Frame-Options, etc.)
• Demonstrable practical experience with the Nevis Identity Suite or comparable enterprise WAF/reverse proxy solutions
• Knowledge of security-focused API protection: API gateways, OAuth 2.0 token validation, rate limiting, input validation
• Experience in handling penetration test results and security-focused code reviews in a web application context
• Proven expertise in network and application security
• Solid knowledge of modern authentication methods