Senior Cybersecurity Engineer, Security Engineering and Architecture

  • Contract
  • Basel
  • Location: Basel

Website Bank for International Settlements

The Bank for International Settlements is an international organisation which fosters international monetary and financial cooperation via wide-ranging banking, economic research and policy coordination activities.

Principal accountabilities:

  • As a senior cybersecurity engineer in the Security Engineering and Architecture team:
    Ensure security-by-design in major IT infrastructure projects and Bank’s strategic initiative, both for on-premises systems and cloud
  • Manage selected security products such as SIEM, Multi-factor authentication, IAM solution, Cryptographic Key Management, Vulnerability Management, Security Orchestration and Automated Response
  • Lead the Bank’s architecture and roadmap for federated identity access management, privileged access management, role-based security and zero-trust networks
    Manage small-to-medium size projects
  • Work closely with other security functions (SOC, Governance & Assurance), IT functions (Architecture, IT Infrastructure) and operational risk management functions (External dependency management, resiliency maturity framework)


Qualifications, skills and experience:

  • Strong understanding of security architecture & engineering concepts both for on-premises and hybrid-cloud infrastructures
  • Recognized expert in Identity & Access Management, Privileged Access Management, Multi-factor authentication
  • Ability to articulate and implement a vision for zero-trust security
  • Deep understanding of virtualisation technologies, next-generation firewalls, Windows server and client environments, Linux, container technologies and Microsoft Azure
  • Able to automate controls using scripting. Practical experience of PowerShell and/or another major programming language (e.g. Python) are strong assets
  • Able to develop logic and rules to facilitate the assignment of access rights based on roles (Java)
  • Good understanding of (sec) DevOps concepts and how to coach software development teams in maturing their understanding of secure coding
  • Ability to frame security controls in broader framework such as NIST CSF
    Knowledge of SWIFT CSP is an asset
  • Technical professional certifications in cloud technologies, identity and access management and/or virtualisation technologies are assets
  • Knowledge of Sailpoint Identity IQ is an asset
  • Fluent in English
  • Committed to continuous education and technical learning
    University degree or equivalent experience

The BIS is fully committed to equal opportunity employment and strives for diversity among its staff

Application Deadline: 12/07/2020

Please apply online

You must register to apply for this job.