×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security IT Consultant IT Project Manager

Head of Group Information Security

Job in 1196, Gland, Canton de Vaud, Switzerland
Listing for: Swissquote
Full Time position
Listed on 2025-12-03
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, IT Consultant, IT Project Manager
Salary/Wage Range or Industry Benchmark: 80000 - 140000 CHF Yearly CHF 80000.00 140000.00 YEAR
Job Description & How to Apply Below

Salary : CHF 80’000 - 140’000 per year

Requirements
  • Mandatory Requirements :
  • Minimum 8 years of experience in Information Security, including senior leadership roles within the financial or other highly regulated sectors.
  • Strong expertise in cybersecurity governance, risk management, and compliance frameworks (e.g., ISO 27001, NIST, CIS, PCI‑DSS).
  • Proven track record in developing and managing complex, multi‑jurisdictional security programs.
  • Solid technical understanding of cloud security (AWS, Azure, GCP), SIEM / EDR platforms, identity and access management, and secure infrastructure architecture.
  • Excellent leadership and communication skills, with the ability to influence and engage at Executive and Board level.
  • Fluent command of English, both written and verbal.
  • Strong people management capabilities, including coaching, team development, and conflict resolution.
  • Good understanding of the regulatory environment and Group governance principles applicable to the banking sector.
  • Awareness of the digital banking ecosystem, its products, and specific risk characteristics.
  • Sound understanding of enterprise risk management frameworks and their interaction with information security governance.
  • Desired :
  • Bachelor’s or Master’s degree in Computer Science, Information Security, or a related field.
  • Professional certifications such as CISSP, CISM, CISA, GIAC, or ISO 27001 Lead Implementer / Auditor.
  • Experience with Dev Sec Ops , cloud‑native environments, and regulatory engagement (CSSF, FINMA, ECB, etc.).
Responsibilities

Director of Information Security

As the Director of Information Security, you will lead the design, implementation, and continuous improvement of the Group’s global information security strategy. Conducting digital banking across 10 jurisdictions and operating two banking licenses, the role ensures consistent protection of customer and corporate data, regulatory compliance, and operational resilience for the entire Swissquote Group.

Reporting directly to the Chief Operating Officer, the Head of Information Security oversees all security functions, including Governance, Risk & Compliance (GRC), Security Operations (SOC), and the Cyber Task Force (Security Engineering), ensuring a unified and risk‑based approach to cybersecurity.

  • Strategic Leadership
    • Define and maintain the Group’s information security vision, strategy, and roadmap, aligning with business objectives, regulatory obligations, and evolving threat landscapes.
    • Act as a trusted advisor to senior management and the Board on cyber risks, emerging threats, and investment priorities.
    • Develop and maintain a global security framework aligned with ISO 27001, NIST, and regulatory standards such as DORA, NIS2, and GDPR.
    • Promote a security‑by‑design and privacy‑by‑design approach across all products, platforms, and technology initiatives.
  • Governance, Risk & Compliance
    • Oversee the Group’s Information Security Management System (ISMS) and ensure continuous compliance with ISO 27001 certification, PCI‑DSS, GDPR, DORA, and local regulations.
    • Lead risk assessments, threat modeling, and risk treatment plans, ensuring appropriate mitigation and tracking.
    • Manage security policies, standards, and procedures, ensuring consistency across all jurisdictions.
    • Coordinate with Group Compliance, Risk, and Data Protection Officers to align information security with legal and regulatory frameworks.
    • Oversee third‑party and cloud security assessments to ensure supplier compliance and resilience.
  • Security Operations & Resilience
    • Supervise SOC operations (internal and managed), ensuring proactive threat detection, vulnerability management, and incident response.
    • Serve as the executive escalation point during major cyber incidents and ensure effective crisis coordination and communication.
    • Maintain and test Business Continuity Plans (BCP), Disaster Recovery Plans (DRP), and Crisis Management frameworks (BIA, COOP) across entities.
    • Drive continuous improvement in threat intelligence, red teaming, and digital forensics capabilities.
  • Leadership & Team Management
    • Lead and develop the GRC, SOC, and Task Force teams, fostering a culture of accountability, innovation, and collaboration.
    • Attract,…
    • Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
    To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
     
     
     
    Search for further Jobs Here:
    (Try combinations for better Results! Or enter less keywords for broader Results)
    Location
    Increase/decrease your Search Radius (miles)

    Job Posting Language
    Employment Category
    Education (minimum level)
    Filters
    Education Level
    Experience Level (years)
    Posted in last:
    Salary
    Advanced Search