Cybersecurity and Infrastructure Risk Lead

Shape the Future of Water and Wastewater Innovation: Join Our Team! We’re seeking a passionate and skilled professional to join us as a Cybersecurity and Infrastructure Risk Lead in Lucerne (Switzerland) or Thessaloniki (Greece).

Are you ready to make an impact in the critical field of water and wastewater innovation? As our Cybersecurity and Infrastructure Risk Lead, you’ll play a pivotal role in protecting our organization’s infrastructure, ensuring compliance, and driving innovation in cybersecurity.

Your Role at a Glance
As part of our Global IT & Digital team, you’ll work closely with senior Leadership, development and product teams to manage a broad range of cybersecurity and governance initiatives. Your responsibilities will span from developing and implementing security strategies for both cloud and on-premises infrastructures (primarily Azure) to leading risk assessments, incident responses, compliance efforts and hardware product security audits. As we grow our Security competence, your strengths and focus will shape the direction we take.

Your Contributions Will Include
Strategic Leadership

• Develop and enhance the organization's cybersecurity strategy, ensuring alignment with industry standards like ISO 27001, NIS2, CRA, and GDPR
• Collaborate with C-level leadership to deliver insightful, actionable reports on potential threats and improvement opportunities

Policy and Compliance

• Lead audits and certifications, including ISO 27001, while supporting governance and compliance processes

Technical Expertise

• Implement and optimize tools like MS Intune, Defender, Entra ID, and Privileged Access Management to strengthen security
• Work with IT and external partners to build a resilient and agile platform and network

Product Security

• Advise R&D and product teams on security for IoT platforms and interconnected devices, with a focus on hardware-related security risks

Incident Management

• Design and execute incident response plans, investigating breaches and continuously improving the security posture.

What We’re Looking For
We’re searching for someone with a blend of technical expertise, strategic thinking, and a passion for innovation.

Your Background and Skills

• BSc or MSc in Engineering, Computer Science, or a related field
• Hands-on experience with cloud technologies (AWS, Azure, GCP), server infrastructure, networking, web applications, databases, and mobile platforms
• Knowledge of DevOps tools (PowerShell preferred) and programming or scripting languages like Python or Go is a plus
• Familiarity with security technologies, including vulnerability scanners, firewalls, IAM, SIEM, IDS/IPS, and containerization tools
• Experience with ISO 27001 compliance and risk assessments, with knowledge of NIS2 and CRA frameworks
• Exposure to hardware-based attacks and experience testing vulnerabilities in in-house hardware products is advantageous
• Strong communication skills in English, with German language knowledge as a bonus
• Ability to work independently and collaboratively in a fast-paced environment

We offer you

• A varied and responsible job in a dynamic and collegial team
• An attractive workplace in the city of Lucerne - easily accessible by public transport or car and situated between the lake and an impressive mountain panorama
• Promotion of your further development including support for internal and external training courses
• Further benefits and discounts

Are you interested?
We look forward to receiving your complete application documents.
Please note that we will only consider applications received via our website.