Team Lead Web Entry Solutions 80 - 100% (f/m/d) — Julius Baer
CHF 101'500 - 154'000
Julius Baer · Zurich (ZH)
- Location
- Zurich
- Contract
- other
- Posted
- —
SalaryCHF 101'500 - 154'000
Role overview
At Julius Baer, we celebrate and value the individual qualities you bring, enabling you to be impactful, to be entrepreneurial, to be empowered, and to create value beyond wealth.
Let’s shape the future of wealth management together.
As Team Lead Web Entry Solutions, you assume strategic and operational responsibility for the operation and continuous advancement of our central web entry security infrastructures.
- At Julius Baer, we celebrate and value the individual qualities you bring, enabling you to be impactful, to be entrepreneurial, to be empowered, and to create value beyond wealth.
- Let’s shape the future of wealth management together.
Application process
- YOUR CHALLENGE Operations & Web Application Security Architecture
- Own the stable operation and strategic development of core IT security infrastructures in the Web Entry domain
- Design, implement and continuously optimise Web Application Firewall and API security architectures based on the Nevis Identity Suite – including rule sets, filter policies and WAF configurations
- Operate, configure and advance security functions such as ModSecurity and Core Rule Sets (CRS)
- Design, implement and operate Global Single Sign-On (GSSO) solutions based on SAML 2.0 and OpenID Connect (OIDC)
- Ensure comprehensive protection against all OWASP Top 10 vulnerability categories (Injection, Broken Access Control, XSS, SSRF, etc.) at both infrastructure and application level
- Operate and evolve load-balancing solutions and multi-layered DDoS protection mechanisms (rate limiting, IP reputation management, bot management)
- Monitor and analyse HTTP/S traffic for anomalies, attack patterns and policy violations using centralised logging and SIEM platforms Security Governance, Assessments & Projects
Additional details
- Experience in the financial sector, in regulated environments or audit-intensive contexts (e.g.
- Knowledge of Secure Software Development Lifecycle (SSDLC) and DevSecOps practices, e.g. SAST/DAST integration in CI/CD pipelines
Notes and original content
- FINMA, MAS, DORA)
- Knowledge of Secure Software Development Lifecycle (SSDLC) and DevSecOps practices, e.g.
- SAST/DAST integration in CI/CD pipelines