Job offer
Team Lead, Web Entry Solutions
The Julius Baer Group is seeking a Team Lead for Web Entry Solutions who will assume strategic and operational responsibility for the web security infrastructure and lead a global team. The ideal candidate has extensive experience in web application security, IT security architecture, and team leadership.
Tasks
As Team Lead for Web Entry Solutions, you will be responsible for the strategic and operational management of our central web entry security infrastructure and its ongoing development. Your responsibilities will include:- Stable operation and strategic development of core IT security infrastructures in the web entry sector
- Design, implementation, and continuous optimization of web application firewall and AFI security architectures
- Operation, configuration, and further development of security features such as ModSecurity and Core Rule Sets (CRS)
- Design, Implementation, and Operation of Global Single Sign-On (GSSO) Solutions
- Comprehensive protection against all OWASP Top 10 vulnerability categories
- Operation and further development of load-balancing solutions and multi-layered DDoS protection mechanisms
- Monitoring and analysis of HTTP(S) traffic for anomalies, attack patterns, and policy violations
Security Governance, Assessments & Projects
Your responsibilities will include:- Security assessments, vulnerability management, and baseline compliance via the web-based entry platforms
- Analysis and prioritization of findings from penetration tests, DAST scans, and bug bounty programs
- Management and implementation of complex security projects with a strategic view of the overall IT security landscape
- Analysis and management of security incidents and coordination of response measures
- Development and maintenance of security policies, WAF guidelines, technical documentation, and operating instructions
Guided Tours & Consultations
Your responsibilities will include:- Leading and advising a globally distributed team in Switzerland and Singapore
- Advice and support for business units on security matters
Requirements
We are looking for a candidate with:- University degree (BSC / MSC / MEng / EIT) or higher relevant technical qualification
- In-depth, verifiable knowledge of the OWASP Top 10 vulnerability categories
- Practical experience in configuring, operating, and testing ModSecurity
- Solid understanding of web application architecture and security protocols
- Proven experience with the Nevis Identity Suite or comparable enterprise WAF/reverse proxy solutions
- Knowledge of Security-Focused API Protection
- Experience in handling penetration test results and security-focused code reviews
- Proven expertise in network and application security
- Fluent English (written and spoken)
Nice to have
We offer:- Experience in the financial sector, in regulated environments, or in audit-intensive contexts
- Recognized security certifications: CISSP, CISP, CISSP-AZ-500; SC-100 or GWAPT (GIAC)
Job details