Team Lead Web Entry Solutions 80 - 100% (f/m/d) — Julius Baer
CHF 101'500 - 154'000
Julius Baer · Zurich (ZH)
- Location
- Zurich
- Contract
- other
- Posted
- —
SalaryCHF 101'500 - 154'000
Role overview
At Julius Baer, we celebrate and value the individual qualities you bring, enabling you to be impactful, to be entrepreneurial, to be empowered, and to create value beyond wealth.
Let’s shape the future of wealth management together.
As Team Lead Web Entry Solutions, you assume strategic and operational responsibility for the operation and continuous advancement of our central web entry security infrastructures.
- At Julius Baer, we celebrate and value the individual qualities you bring, enabling you to be impactful, to be entrepreneurial, to be empowered, and to create value beyond wealth.
- Let’s shape the future of wealth management together.
- University degree (BSc / MSc / ETH) or higher technical qualification (HF/FH) in Computer Science, Information Security or a comparable technical discipline
- In-depth, demonstrated knowledge of the OWASP Top 10 – mandatory: hands-on experience in identifying, assessing and mitigating all current vulnerability categories
Key requirements
- University degree (BSc / MSc / ETH) or higher technical qualification (HF/FH) in Computer Science, Information Security or a comparable technical discipline
- In-depth, demonstrated knowledge of the OWASP Top 10 – mandatory: hands-on experience in identifying, assessing and mitigating all current vulnerability categories
- Strong hands-on expertise in configuring, operating and tuning ModSecurity including the OWASP CRS – experience with false-positive management and custom rule development is mandatory
Application process
- Operations & Web Application Security Architecture
- Own the stable operation and strategic development of core IT security infrastructures in the Web Entry domain
- Design, implement and continuously optimise Web Application Firewall and API security architectures based on the Nevis Identity Suite – including rule sets, filter policies and WAF configurations
- Operate, configure and advance security functions such as ModSecurity and Core Rule Sets (CRS)
- Design, implement and operate Global Single Sign-On (GSSO) solutions based on SAML 2.0 and OpenID Connect (OIDC)
- Ensure comprehensive protection against all OWASP Top 10 vulnerability categories (Injection, Broken Access Control, XSS, SSRF, etc.) at both infrastructure and application level
- Operate and evolve load-balancing solutions and multi-layered DDoS protection mechanisms (rate limiting, IP reputation management, bot management)
- Monitor and analyse HTTP/S traffic for anomalies, attack patterns and policy violations using centralised logging and SIEM platforms
Additional details
- You combine deep technical expertise with strong leadership skills and a strategic view of the overall IT security posture.
- Continuously optimise WAF rule sets, proxy configurations and security baselines; identify and implement improvement opportunities Leadership & Advisory
- Fluent English – written and spoken (working language)
- Experience in the financial sector, in regulated environments or audit-intensive contexts (e.g.
- Knowledge of Secure Software Development Lifecycle (SSDLC) and DevSecOps practices, e.g. SAST/DAST integration in CI/CD pipelines
- AKS, Azure Landing Zones, Infrastructure as Code) German language skills
Notes and original content
- YOUR CHALLENGE
- Continuously optimise WAF rule sets, proxy configurations and security baselines; identify and implement improvement opportunities
- Leadership & Advisory
- YOUR PROFILE
- Nice to have:
- FINMA, MAS, DORA)
- Knowledge of Secure Software Development Lifecycle (SSDLC) and DevSecOps practices, e.g.
- SAST/DAST integration in CI/CD pipelines
- AKS, Azure Landing Zones, Infrastructure as Code)
- German language skills
