Web Access Management Engineer (80-100%)
Veröffentlicht:
07 März 2025Pensum:
80 – 100%- Arbeitsort:Zurich
Job-Zusammenfassung
SIX transformiert die Finanzmärkte und sucht einen Web Access Management Engineer. Werde Teil eines dynamischen Teams mit flexiblen Arbeitsmöglichkeiten.
Aufgaben
- Leitung der strategischen Implementierung von WAF und CIAM.
- Optimierung der Webanwendungssicherheit und Zugriffskontrollen.
- Integration von DevOps-Methoden zur Automatisierung von Prozessen.
Fähigkeiten
- Abschluss in Informatik oder vergleichbare Erfahrung, 5 Jahre in Websicherheit.
- Erfahrung mit Web Application Firewalls und OWASP-Sicherheitsstandards.
- Kenntnisse in CIAM-Plattformen und Authentifizierungsprotokollen.
Ist das hilfreich?
SIX drives the transformation of financial markets.
What sets us apart drives us ahead: between local roots and global relevance, we are a unique blend of tradition and future, of foundation and growth. We value bright minds and inspire them to grow with their ideas. Come and shape the future of finance with us.
Web Access Management Engineer (80-100%)
Zurich |working from home up to 40% | Reference 6972
Are you a passionate security expert ready to make a real impact? We’re looking for a highly motivated and innovative Web Access Management/CIAM Engineer to join our dynamic international team across Switzerland, Spain, and Poland. In this critical role, you'll lead the strategic implementation, optimization, and continuous enhancement of our Web Application Firewall (WAF) and Customer Identity and Access Management (CIAM) systems, ensuring our web applications and customer platforms remain secure, scalable, and seamlessly accessible.
As a technical leader, you’ll drive innovation, collaborate on cross-functional security initiatives, and integrate cutting-edge DevOps practices in a fast-paced environment. If you have deep expertise in web security, authentication protocols, and access control, and thrive on delivering tangible results, we want you on our team!
What You Bring
- WAF Rule Development:Create and optimize WAF rules based on security standards, threat analysis, and best practices.
- WAF Monitoring & Analysis:Proactively monitor logs and alerts to quickly respond to security incidents and optimize performance.
- CIAM / WAF Management:Implement and manage the CIAM platform for secure user registration, AuthN/Z. Design, implement, and manage the WAF solution to protect against web attacks.
- CIAM Security & Optimization:Manage identity providers, access controls, authentication protocols, and continuously improve the system.
- DevOps & Automation:Automate WAF and CIAM configurations, deployments, and management tasks using DevOps methodologies. Integrate security practices into the DevOps pipeline, leverage Infrastructure-as-Code (IaC), and promote a culture of continuous delivery and integration.
What You Will Do
- Education & Experience: Bachelor's degree in Computer Science, Information Security, or related field (or equivalent experience) with 5+ years in web application security, identity and access management, or DevOps. Good level of English (both verbal and writing).
- WAF & Web Security Expertise: Hands-on experience with Web Application Firewalls (e.g., AWS WAF, Cloudflare WAF, Imperva) and deep understanding of OWASP Top 10 vulnerabilities and attack techniques.
- CIAM & Authentication: Extensive experience with CIAM platforms (e.g., Okta, Auth0, ForgeRock, AWS Cognito) and strong proficiency in authentication protocols like OAuth 2.0, SAML, and OpenID Connect.
- DevOps & Collaboration: Proven ability to work in a DevOps environment, integrating security into CI/CD pipelines, proficiency in scripting. Collaborating effectively across teams.
- Soft Skills & Project Management: Strong communication, teamwork, and interpersonal skills with the ability to work independently, prioritize tasks, and manage projects efficiently.
If you have any questions, check out our FAQ page or call Mateusz Kozielecat +41583998611.
For this vacancy we only acceptdirect applications.
Diversity is important to us. Therefore, we are looking to receiving applications regardless of any personal background.
