Job Description

Company Description

Building the bank of tomorrow takes more than skills.

It means combining our differences to imagine, discuss, code, develop, test, learn... and celebrate every step together. Share our vibes? Join Swissquote to unleash your potential.


We are the Swiss Leader in Online Banking and we provide trading, investing and banking services to +500'000 clients, through our performant and secured digital platforms.


Our +1000 employees work in a flexible way, without dress code and in multicultural teams.

By having a huge impact on the industry, they are growing their skills portfolio and boosting their career in a fast-pace environment.


We are all in at Swissquote. As an equal opportunity employer, we welcome candidates from all backgrounds, experiences and perspectives to join our team and contribute to our shared success.


Are you all in? Don't be shy, apply!

We are seeking an experienced SOC Manager to lead our internal Blue Team and strengthen the bank's cyber defense capabilities. This role is key in protecting a diverse IT and cloud environment while driving improvements in threat detection, incident response, threat hunting, and vulnerability management.


As SOC Manager, you will oversee the day-to-day operations and the strategy of our Security Operations Center, coordinate with our external SOC partner, and collaborate closely with IT and Fraud teams to defend against emerging threats.


You will also drive the implementation and improvement of security tools, frameworks, and best practices to ensure resilience in a fast-paced, highly regulated financial environment. If you are eager to embrace this challenge, we look forward to receiving your application.

Key Responsibilities

Leadership and Team management

Lead, mentor, and develop SOC analysts and engineers. Manage team performance, on-call rotations, and operational priorities. Foster a culture of continuous learning, resilience, and collaboration.

SOC Operations

Oversee real-time monitoring and investigation of security events. Coordinate and manage incident response from detection through recovery. Act as the escalation point for complex incidents and investigations. Ensure high-quality documentation and communication of incidents. Drive proactive threat hunting and forensic investigations. Enhance detection rules, use cases, and playbooks in SIEM/SOAR platforms. Stay ahead of the evolving threat landscape, including financial fraud, APTs, and cybercrime TTPs.

Collaboration and Strategy

Work closely with Infosec, IT and Fraud teams to align cyber defense with business needs. Partner with the external SOC to ensure effective incident triage and escalation. Engage with cyber authorities, peers and special interest groups. Provide actionable insights and recommendations to senior management. Contribute to vulnerability management programs and security improvement initiatives.

Qualifications

Mandatory

5+ years of experience in information security and SOC operations Advanced knowledge of technologies such as SIEM, EDR, SOAR, Cloud, Networking, Windows, Linux Understanding of the Cyber Threat Landscape, cybercrime economic model and threat actors Solid analytical and critical thinking abilities Positive attitude and interest in learning new skills Strong French and English communication skills, oral and written

Desired

Bachelor or Master in Computer Science or similar Certifications such as CEH, CISSP, SANS GIAC Experience with: Microsoft Defender and Sentinel, Elastic, Kibana, OpenCTI, Python, N8N, Kubernetes, Azure

Additional Information

SQ2