SW
Swiss Re
2 Tage

Team Lead - Monitoring(m/w/x)

Management
Vollzeit
mit Homeoffice
ab 192.000 / Jahr
Zürich

In this role, you will lead a team of Security Analysts, combining technical expertise with strategic leadership to enhance the organization's cybersecurity posture. Day-to-day responsibilities include mentoring the team, coordinating incident responses, and driving improvements in threat detection and operational efficiency.

Lass KI die perfekten Jobs für dich finden!

Lade deinen CV hoch und die Nejo-KI findet passende Stellenangebote für dich.

Anforderungen

  • 7–10+ years in SOC/IR/Threat Hunting/Detection Engineering with proven Tier 3 leadership experience
  • Demonstrable expertise in SIEM (e.g., Microsoft Sentinel/Splunk), EDR/XDR (e.g., Defender, CrowdStrike), and SOAR technologies
  • Strong forensics & incident response skills across multiple environments (Windows/*nix, identity attacks, cloud, lateral movement)
  • Experience with MITRE ATT&CK framework, threat modelling, purple teaming, and hypothesis-driven hunts
  • Scripting proficiency for detections/automation (KQL, PowerShell, Python) and IaC/CI for content lifecycle management
  • Experience with cloud security monitoring (Azure/M365/AWS)
  • Expertise in identity security (Entra ID / AAD) and email security
  • Knowledge of log pipelines, data normalization, and schema (e.g., ASIM/OSSEM/EC)
  • Certifications in relevant cybersecurity domains (CISSP, SANS, etc.)
  • Experience working in financial services or regulated industries
Keine Angabe

Berufserfahrung

7–10 Jahre

Deine Aufgaben

  • Lead and develop a team of Security Analysts
  • Provide technical guidance and mentoring to enhance team performance
  • Identify skill gaps and implement targeted training plans
  • Create and maintain structured documentation and knowledge-sharing systems
  • Coordinate investigations for major security incidents
  • Document and analyze incidents to extract lessons learned
  • Collaborate with stakeholders for effective incident resolution
  • Partner with the Cyber Threat Intelligence team to enhance detection capabilities
  • Oversee continuous monitoring for anomalies and vulnerabilities
  • Select and optimize security tools and platforms
  • Implement strategies to reduce false positives
  • Drive automation initiatives for faster detection and response
  • Develop and refine playbooks for incident handling processes

Tools & Technologien

Microsoft SentinelSplunkDefenderCrowdStrikeKQLPowerShellPythonAzureM365AWS

Sprachen

Englischverhandlungssicher

Deine Vorteile

Boni & Prämien

  • Attractive performance-based bonus
Die Originalanzeige dieses Stellenangebotes in der aktuellsten Version findest du hier. Nejo hat diesen Job automatisch von der Website des Unternehmens Swiss Re erfasst und die Informationen auf Nejo mit Hilfe von KI für dich aufbereitet. Trotz sorgfältiger Analyse können einzelne Informationen unvollständig oder ungenau sein. Bitte prüfe immer alle Angaben in der Originalanzeige! Inhalte und Urheberrechte der Originalanzeige liegen beim ausschreibenden Unternehmen.

Ähnliche Jobs direkt in deine Inbox?