Main duties
  • Key Management: Ensure cryptographic integrity and continuous improvement of the respective security
  • Evaluate, analyze and test weaknesses in cryptographic security systems and algorithms
  • Develop statistical and mathematical models to analyze data and solve security problems
  • Investigate, research and test new cryptology theories and applications
  • Running the ISMS (Information Security Management System) of SDX based on the spec-ifications, frameworks and policies of SIX
  • Ensuring the information security of SDX as "1st Line of Defense" Security Officer
  • Ensuring SDX physical security and workplace security
  • Representing SDX in specialist committees, working groups, internal and external organi-zations with regard to integral security
  • Ensuring the operational risk management of SDX
  • Definition and maintenance of risk management processes and controlling of operational risks of SDX
  • Functional reporting to the Chief Risk Officer for operational risk management and the IT Risk Officer of SIX
  • Securing BCM (Business Continuity Management) and DR (Disaster Recovery) process-es and capabilities of SDX
  • Defining and maintaining business continuity requirements of SDX incl. conducting busi-ness impact assessments
  • Planning and execution of BCM tests and DR tests of SDX
  • Representation of SDX to the "Corporate BC Manager" of SIX
  • General
  • Access right to all security- and risk-relevant information and documents
  • Authority to issue directives to all SDX employees with regard to security and risk man-agement
  • Responsible for continuous improvement of security and risk processes at SDX
  • Definition of controls and measures for the management of risks
Your profile
  • University degree or equivalent, preferably with a degree in information technology or mathematics
  • Further training or certification such as MAS Information Security, CISSP, CISSP-ISSAP, CISA, CISM desirable
  • You have extended prior experience in applied cryptography and relevant work experience in information technology security
  • Fluent English (oral and written), German is an advantage
  • Excellent knowledge of IT infrastructure on premises and in the cloud (Azure, O365), IT ar-chitecture, distributed ledger technology (blockchain) and information security
  • Practical work experience in operational risk management and information security man-agement
  • Knowledge of the relevant laws and regulations of the financial industry, in particular stock exchanges (FinFraG, Banking Act, Stock Exchange Act, FINMA Circular, IOSCO Interna-tional Organisation of Securities Commissions etc.) is an advantage
  • Very good analytical and conceptional thinking skills
  • Efficient working methods with a strong quality awareness
  • Independent and structured way of working, quick comprehension, high self-initiative, prac-tice-oriented and flexible
  • Very good communication skills with various target groups and management levels, within the company and with external customers and partners

We offer you:
  • Individual career path and development opportunities
  • An experience to be part in the World's first regulated digital exchange for investors, banks, and entrepreneurs bridging the gap between traditional financial services and digital com-munities

If you have any questions, please contact Sandra Bolognese at

We strive for a diverse workforce and welcome all applicants regardless of personal background.

We only accept online direct applications.
Sandra Bolognese
Human Resources

We strive for a diverse workforce and welcome all applicants regardless of personal background.