IT Technical Security Engineer

- Lugano(Ticino) - Switzerland

  • General information

  • We are recruiting an IT Technical Security Engineer for one of our key clients, a well-established company in the Lugano area .

    Employment rate: 100%

    Place of work: Lugano

    Remote work: to be considered
     

    DUTIES AND ACTIVITIES

    • Manage and administer the company’s SIEM platform, handling its configuration, maintenance, continuous monitoring, and optimization of correlation rules and security use cases.

    • Manage the EDR solution by defining and updating security policies, monitoring endpoints, and coordinating responses to detected incidents.

    • Identify, analyze, and manage cybersecurity incidents, including phishing attacks, malware infections, intrusion attempts, vulnerabilities, and potential system compromises.

    • Conduct triage, investigation, containment, and eradication activities, as well as root cause analysis of incidents, and implement the necessary corrective actions.

    • Contribute to the continuous improvement of the company’s safety posture by strengthening and updating safety controls.

    • Collaborate on the development, implementation, and verification of security strategies based on the principles of defense in depth and zero trust.

    • Coordinate penetration testing, vulnerability assessments, and periodic security audits, working with external vendors and internal stakeholders.

    • Support IT projects and change management processes by ensuring compliance with security requirements and company best practices.

    • Monitor the effectiveness of the protective measures implemented and propose technical and organizational improvements.

    • Participate in on-call duty according to the schedule established by the company.
     

    REQUIREMENTS

    • Master’s degree in Computer Science, Cybersecurity, or Information Security, or equivalent training in related technical fields.

    • At least 3 years of professional experience in the field of cybersecurity, with a particular focus on security incident management and security operations.

    • Proven experience in using and administering security tools such as SIEM, EDR, DLP, PAM, and vulnerability management solutions.

    • Extensive knowledge of incident response methodologies and techniques for analyzing and managing security incidents.

    • Familiarity with SIEM platforms, preferably Splunk, and leading EDR solutions, preferably CrowdStrike.

    • Knowledge of the main cybersecurity frameworks and models, including Zero Trust and Defense in Depth.

    • Analytical skills, problem-solving abilities, and the ability to manage priorities in dynamic and complex environments.

    • Ability to work well in a team and excellent interpersonal and communication skills.

    • Italian as a primary language and a good working knowledge of English.

    • Knowledge of German is preferred.

    • Certifications in cybersecurity, such as CySA+, GCIH, SC-200, or equivalent, are a plus.

    • Willingness to stay up to date on the latest developments in cyber threats and new security technologies.
     

    Your application will be treated with the utmost confidentiality and will serve, at first, only for internal verification. Your information will be submitted to our client company only after personal contact with one of our recruiters.

    Follow us on the main Social to be the first to know about our job openings: Linkedin - Facebook - Instagram

  • Back / back to job board Next