Job offer
Team Lead, Web Entry Solutions
The Julius Baer Group is seeking a Team Lead for Web Entry Solutions who will assume strategic and operational responsibility for the web entry security infrastructure and lead a global team. The ideal candidate has experience in web application security, security architecture, and team leadership, as well as extensive knowledge of the OWASP Top 10 vulnerabilities and security protocols.
Tasks
As Team Lead for Web Entry Solutions, you will be responsible for the strategic and operational management of our central web entry security infrastructure and its ongoing development. Your responsibilities will include:- Stable operation and strategic development of core IT security infrastructures in the web hosting sector
- Design, implementation, and continuous optimization of web application security architectures and API security architectures
- Operation, configuration, and further development of security features such as ModSecurity and Core Rule Sets (CRS)
- Design, implementation, and operation of Global Single Sign-On (GSSO) solutions based on SAML 2.0 and OpenID Connect (OIDC)
- Comprehensive protection against all OWASP Top 10 vulnerability categories (injection, broken access control, XSS, SSRF, etc.) at the infrastructure and application levels
- Operation and further development of load-balancing solutions and multi-layered DDoS protection mechanisms (rate limiting, IP address management, bot management)
- Monitoring and analyzing HTTP(S) traffic for anomalies, attack patterns, and policy violations using centralized logging and SIEM platforms
Security Governance, Assessments & Projects
Your responsibilities will include:- Security assessments, vulnerability management, and baseline compliance via the web-based entry platforms
- Analysis and prioritization of findings from penetration tests, DAST scans, and bug bounty programs; coordination of remediation efforts with development and operations teams
- Management and development of complex security projects with a strategic perspective on the overall IT security landscape
- Analysis and management of security incidents (web attacks, WAF bypasses, credential stuffing, bot traffic) and coordination of response measures
- Development and maintenance of security policies, WAF guidelines, technical documentation, and operating instructions
- Continuous optimization of WAF rule sets, proxy configurations, and security baselines; identification and implementation of opportunities for improvement
Guided Tours & Consultations
Your responsibilities will include:- Leading and advising a globally distributed team in Switzerland and Singapore
Requirements
We are looking for a candidate with:- A university degree (BSc/MSc/BTech/ETech) or higher technical degree (MSc/MTech/ETH) in computer science, information security, or a comparable technical discipline
- In-depth, verifiable knowledge of the OWASP Top 10 vulnerabilities; hands-on experience identifying, assessing, and mitigating all current vulnerabilities
- Extensive hands-on expertise in configuring, operating, and fine-tuning ModSecurity, including OWASP-CRS; experience managing false positives and developing custom rules
- Solid understanding of web application architectures: HTTP(S) protocol, REST APIs, reverse proxy concepts, TLS/mTLS, Content Security Policy (CSP), CORS; HTTP security headers (HSTS, X-Frame-Options, etc.)
Job details