GULP Schweiz AG
The company GULP Schweiz AG currently has 3 open positions.
The company GULP Schweiz AG currently has 3 open positions.
GULP Schweiz AG , Zug
New
GULP Schweiz AG , St. Gallen
1 w
GULP Schweiz AG , Vaduz
2 w
Description
No subcontracting is possible and we prefer candidates who are already residents of Switzerland or willing to relocate to Switzerland!
Cybersecurity Expert
Your primary responsibilities will include the following:
? End-to-end activities that belong to the secure software development lifecycle for
our products. Defining adequate cyber security mitigations, identifying threats,
assessing risks, defining security testing methods and scope, and tracking
remediation actions of security findings during development.
? Conduct planning and execution of 3rd party review activities (Verification &
Validation) related to Cybersecurity and Software Architecture.
? Proactively identify flaws in our product security, assess patient safety and
business risk, and advise product managers on remediation steps.
? Advise product teams to plan and implement adequate cybersecurity maintenance
activities throughout the product's lifecycle.
? Support development and maintenance of processes and tools for threat modeling,
cybersecurity risk assessment, and security testing with penetration testing tools, like Kali
Linux, OWASP ZAP, Nessus, and others.
As a Cyber Security Expert, you have the:
? Minimum 5 years of related work experience in product security, with demonstrated
experiences in areas such as:
? SDLC in Software Development, Network technology, Cryptography, Cloud
computing technologies, DevSecOps methodologies, etc.
? threat modeling, attack surface analysis, risk management, security testing,
penetration testing and remediation activities.
? security by design and default concepts, OS hardening
? system and cloud infrastructure hardening and monitoring
? Preferable certifications: CISSP
? Working knowledge of security controls, guidelines, and standards (e.g.,
ISO27000 series, OWASP, CSA CCM, CIS 20 Critical Security Controls, SOC 2, and NIST)
? Good understanding of privacy and data protection regulations (e.g., HIPAA, EU GDPR)
? Demonstrated soft skills: problem-solving, leadership, communication, teamwork,
flexibility and adaptability