• Perform technical analysis and review of systems architectures and configurations (on-premises & cloud)
• Identify and consult stakeholders on technical improvements to the systems architectures and configurations
• Collaborate with technical stakeholders (e.g. internal IT team, software developers, technical product managers, etc.) on security topics (e.g. identity and access management, mobile device management, network security, etc.)
• Perform risk management activities (e.g. risk identification, evaluation and assessment) from a technical perspective
• Conduct and support information security incident response activities
• Enhance existing security operations setup with tools and procedures
• Support implementation of technical and organizational measures such as improving our central logging, vulnerability management, etc.
• Setup central technical information security services for business units and subsidiaries abroad
• Automate information security relevant activities
• Participate in information security relevant due diligence activities
• Strengthen the information security and data compliance culture within PSI

• System engineering knowledge (incl. technical architectures, networking, etc.)
• Understanding of technical security measures (e.g. encryption, IAM, etc.)
• Familiarity with common information security tools (e.g. Cloud Security Posture Management, Mobile Device Management, Office365, etc.)
• Familiar with relevant business tools and enterprise architecture (e.g. Jenkins, Confluence, Jira, etc. )
• Understanding of information security attacks as well as information security operations and corresponding incident response
• Knowledge about information security risk management
• Network design and architecture
• Cloud security and terraform knowledge
• Understanding of SDLC and software development
• Analytic skills
• Ownership mindset for tasks
• Good understanding of lean and agile practices
• Good communication and interpersonal skills
• Fluency in written and spoken English (German is a plus)
• Great enthusiasm for Information Security
• Intrinsic motivation, never ending curiosity
• Quick thinking and continuous learning personality and thus are able to dive into new topics quickly, filter and digest the relevant information
• Inquisitive and analytical mindset
• Great communication skills, clear and to the point
• Proactivity driver attitude happy to collaborate with others
• Ability to work comfortably in a lean and agile environment

Nice to have

• Technical Certifications (CISSP, Cloud Security Certifications, GIAC...)
• Scripting and programming skills (e.g. JS, Ruby, python)