Senior Security Specialist

coni + partner is a consulting firm established in 1993 with headquarters in Zurich and offices in Düsseldorf and Shanghai. Our strength lies in filling positions in line with the corporate culture, taking into account the professional competencies, references, and soft skills of the candidates.

Our client is an international bank in Zurich. We are looking for an experienced professional (m, w, d) as a

Senior Security Specialist

1. As a member of a senior team, responsible for managing IT infrastructure and cybersecurity monitoring globally.
2. Build cybersecurity monitoring use cases.
3. Analyze malware and extrapolate indicators or patterns (e.g., IP addresses, hostnames, URL patterns, file artifacts, command and control).
4. Track constantly evolving malware (Dridex, Chanitor, Asprox) and exploit kits (Nuclear, Angler, RIG) and adjust controls accordingly.
5. Perform penetration testing to identify vulnerabilities in IT systems within the organization.
6. Monitor penetration testing conducted by external IT security consulting firms.
7. Correlate results with those identified during security code review.
8. Analyze cyber intelligence obtained from various information sources (OSINT, FS-ISAC, social media) and translate it into indicators and filters that can be applied to detective and preventive controls.
9. Contribute malware forensics results to the cyber intelligence community.
10. Adapt controls for various enterprise technologies using artifacts derived from other cybersecurity activities.
11. Integrate different controls and enterprise systems using different tools (Python, PHP, JSON, REST, Shell Scripting).
12. Perform manual and automated security code reviews.
13. Obtain code security tools and manual techniques to assess critical applications at various stages of the Software Development Life Cycle (SDLC).
14. Perform security code reviews in programming languages including React-Native, ReactJS, .NET Core 3.1 (C#), and Javascript.
15. Perform IT risk assessments for new projects and existing systems.
16. Ensure IT systems are compliant with internal IT security requirements and external regulatory and legal requirements.
17. Manage reports and dashboards submitted to CIOs and IT Governance.

1. Bachelor, Master or Ph.D. in Engineering, Computer Science or Information Systems.
2. Knowledge of cloud computing technologies and enterprise-class security architecture.
3. Expert in cybersecurity and cyber threat modeling.
4. Expertise with high-quality enterprise information security architectures and IT risk management.
5. Experience with Secure Code Review or Static Application Security Testing (SAST).
6. Strong background in cyber offensive security and cyber threat modeling.
7. Understanding of OWASP Top 10 and CWE Top 25.
8. Experience with the implementation of security solutions.
9. Team player and communicator for multiple contacts.
10. High motivation, common sense for intelligent efficient solutions.
11. Fluent in English and German.

Please send us your documents for an initial contact by e-mail to contact@coni-partner.com or call us on +41 44 254 90 10. Mr. Ivano Coni would like to support you. Your application will be kept strictly confidential.

coni + partner ag

Ivano Coni

Managing Director

Klosbachstrasse 107

CH-8032 Zürich

Tel.: +41 44 254 90 10