The Cutting Edge Is Where the Experienced Meet the Inquisitive Apply Careers Open Positions We drive the transformation of the financial markets. That’s why we invest in bright minds, in their ideas, knowledge and development. We do that by combining our best sides. If you would like to find out why stability makes us so agile, why experience makes us so curious and why empathy makes us so impactful, apply now for the position of Senior Offensive Security Expert Zurich | 80-100 % | Reference 2722 Our Security Controls Team takes care of penetration tests conducted within SIX. Beside this, we are responsible to prepare and run dedicated red and purple team exercises and lead the bug bounty program. We coordinate remediation actions and support the Information Security Officers to test and assess deep technical matters. Our team is part of the risk organization. As such its core mission is to provide information, awareness, guidance and assistance to reduce the risks. Besides that we are helping to enhance our regulations. What You Will DoActively managing our approach for blue and purple team testing, taking care of penetration tests within SIX worldwideParticipate in and setting up purple teaming exercises with our Security Operations Center (SOC) and CSIRT Organization. Taking care and tracking of the implementation of resulting mitigation strategyChallenge concepts for security monitoring use cases, set priorities, monitor the coverage, effectiveness and help to mature the use cases along with cyber security frameworks (MITRE ATT&CK / NIST)Assess the maturity of our application- and infrastructure-security and our security incident response processes and the security coverage in general (incl. tooling) Guide and sharpen the security processes based on outcomes during test experience. Perform analyses and ad-hoc technical deep dive assessmentsUse your security knowledge to provide security consultancy and advice to other teams as part of your duties What You BringDemonstrated enthusiasm & passion for Offensive Information Security (e.g. on GitHub, Blogs, Twitter, presentations, conference talks, etc.)Extensive knowledge in working with and adapting penetration testing softwareFocused on delivering results and a solution-oriented way of working, an open-minded personality, confident communicator and good presentation skillsSeveral years of experience as a Penetration Tester or Red Teamer (ideally with certifications such as OSCE, OSCP or similar)Excellent written and verbal communication skills in English and ideally also in German What We Offer Flexible Work Models We trust our employees and offer a work environment that is well-balanced, productive and fosters success. Personal Development Programs You’ll benefit from a culture of feedback and a host of development programs in the form of e-learning or face-to-face training. Agile Working Methods Whether through scrum or design thinking, we solve exciting tasks together in teams. If you have any questions, please call Philipp Röhl +41 58 399 85 43.For this vacancy we only accept direct applications. Diversity is important to us. Therefore, we are looking forward to receiving applications regardless of any personal background. Apply You Want to Know More? We will tell you personally how we combine our best sides and what that means for your future at SIX. Discover SIX