Senior Security Engineer (IT)

About the role

This senior position sits at the core of IT and security operations in Switzerland, ensuring corporate systems remain secure, reliable and scalable. You will own identity, endpoint and collaboration platforms while shaping access and data‑protection policies across the organisation.

Key responsibilities

• Configure and administer identity and collaboration platforms such as SSO, access‑management and corporate SaaS tools.
• Manage endpoint security operations, including deployment and maintenance of MDM, EDR and DLP solutions.
• Support IT security operations: user support, monitoring alerts and incident triage during security events.
• Lead or contribute to security tooling rollouts and improvement initiatives across devices, applications and data‑protection systems.
• Partner with security teams on SOC2 compliance, audits and policy development for endpoint and application security.
• Audit and manage access controls, enforce least‑privilege principles and automate access reviews.
• Build documentation, dashboards and system‑visibility tools to improve transparency and operational efficiency.

Required profile

• 5+ years of hands‑on experience supporting Windows, macOS and Linux environments.
• 3+ years working with endpoint security tools (e.g., CrowdStrike, SentinelOne).
• 3+ years of experience with SSO and identity providers (Okta, Google Workspace, SAML‑based systems).
• 3+ years managing MDM platforms (Jamf, Workspace ONE or equivalents).
• Experience implementing DLP controls across SaaS and collaboration tools.
• Proven experience supporting SOC2 audits and working with compliance frameworks such as Drata.
• Strong understanding of workstation security fundamentals (encryption, firewalls, password policies).
• Experience in incident response, change management and cross‑functional IT/security collaboration.

Required skills

• Windows, macOS, Linux administration
• Endpoint Detection & Response (CrowdStrike, SentinelOne)
• Single Sign‑On and identity providers (Okta, Google Workspace, SAML)
• Mobile Device Management (Jamf, Workspace ONE)
• Data Loss Prevention (DLP) for SaaS platforms
• SOC2 audit support and compliance tools (Drata)
• Encryption, firewall configuration, password policy management
• Incident response and change management processes