General Information:

Start date: ASAP

Latest start date: 1 August 2024

End date: 31 March 2025

Work location: Basel, maximum 50% remote from within Switzerland

Workload: 100%

Team: Security Engineering and Architecture

Department: Corporate Security

Description:

This role is working with the Security Engineering and Architecture (SEA) team, within the Corporate Security area.

We are looking for a Vulnerability and Compliance Engineer who will assist the SEA team with improving and maintaining the Bank's vulnerability and compliance tooling.

Transforming and presenting data within the Bank's big data platform to the Governance and Assurance Team (and others).

Developing custom compliance checks where they do not exist out of the box.

Assisting other teams working with the results and operationalizing processes associated with vulnerability and compliance monitoring.

Troubleshooting scanning issues (both vulnerability and compliance) including authentication failures and false positives.

Providing platform support when required (patching applications, etc).

Other duties as required, as the team works with changing priorities and in response to internal customer demands.

Perfect candidate:

The perfect candidate will have knowledge of the InsightVM platform and Azure Defender suite, can script in both Python and PowerShell, understands modern development practices such as version control and CI/CD pipelines, and has a background in data flows (eg ETL). They will be passionate about security vulnerability management and compliance scanning, and passionate about turning data into actionable processes and improvements.

They will understand priorities and deliver tasks with minimal supervision, but also suggest improvements and nominate tasks themselves. They need to be able to work well with customers to understand requirements in an informal setting, to rapidly deliver improvements.

Tasks & Responsibilities:

Tune and troubleshoot the Bank's VM and compliance platform (InsightVM, Azure Defender Suite).

Implement custom scripts to check technical settings are in line with the Bank's policies and standards.

Implement custom logic to prioritise vulnerabilities and compliance issues.

Integrate tool output (eg from a compliance tool or system) into the Bank's big data platform, used for compliance.

Implement queries (SQL or similar) to extract relevant data for reporting and alerting.

Perform application patching of the Bank's vulnerability and compliance applications.

Troubleshoot data quality issues, and tool issues.

Must haves:

Excellent Python skills and ideally experience with Powershell as well; experience with integration work, processing structured data such as Jason or CSV and data importing and exporting into data platforms. (*)

Experience in Cybersecurity ideally with a good understanding of vulnerability and compliance management. (*)

Understanding of and experience working with data pipelines and workflows. (*)

Understanding of and experience working with modern development practices such as version control and CI/CD pipelines (*)

Ability to digest and understand user requirements, and implement them properly in an existing tech stack. (*)

Interpersonal skills:

Strong drive and willingness to deliver, ie get things done in a secure environment.

Self-starter, able to work independently and suggest solutions to problems in relation to existing systems and tools.

Nice to have:

Experience with Dataiku DSS.

Experience with Tableau.

Experience with the Azure security ecosystem (in particular Defender suite).

PowerShell skills.

Experience with other Scripting or programming languages.

Experience SCAP policy development.

Experience with OpenShift ACS.

Experience in maintaining applications in an enterprise environment.

Troubleshooting experience .

Skills:

• Compliance
• Engineering
• python
• powershell
• Jason
• CSV
• ci/cd
• Dataiku DSS
• Tableau
• Azure security ecosystem

Employee Value Proposition:

Working for one of the most prestige financial institutions in Switzerland

Job Title: Vulnerability And Compliance Engineer

Location: Zürich, Switzerland

Job Type: Contract

TEKsystems, an Allegis Group company. Allegis Group AG, Aeschengraben 20, CH-4051 Basel, Switzerland. Registration No. CHE-101.865.121. TEKsystems is a company within the Allegis Group network of companies (collectively referred to as "Allegis Group"). Aerotek, Aston Carter, EASi, TEKsystems, Stamford Consultants and The Stamford Group are Allegis Group brands. If you apply, your personal data will be processed as described in the Allegis Group Online Privacy Notice available at our website.

To access our Online Privacy Notice, which explains what information we may collect, use, share, and store about you, and describes your rights and choices about this, please go our website.

We are part of a global network of companies and as a result, the personal data you provide will be shared within Allegis Group and transferred and processed outside the UK, Switzerland and European Economic Area subject to the protections described in the Allegis Group Online Privacy Notice. We store personal data in the UK, EEA, Switzerland and the USA. If you would like to exercise your privacy rights, please visit the "Contacting Us" section of our Online Privacy Notice on our website for details on how to contact us. To protect your privacy and security, we may take steps to verify your identity, such as a password and user ID if there is an account associated with your request, or identifying information such as your address or date of birth, before proceeding with your request. commitments under the UK Data Protection Act, EU-U.S. Privacy Shield or the Swiss-U.S. Privacy Shield.