InfoSec & GRC Specialist; Remote

Passionate about information security? Join us to support colleagues and protect company IT assets. We seek a pragmatic expert with hands‑on cyber security experience, interested in governance, risk, and compliance, ensuring ISO 27001, SOC1, and SOC2 standards while promoting security awareness.

Starting date: upon agreement

• Partner with infrastructure teams on audits and assurance topics
• Conduct internal audits to identify gaps and ensure compliance
• Monitor security controls in GCP and internal systems
• Organize and oversee penetration testing
• Manage vulnerabilities, prioritizing by risk and guiding remediation
• Advise on security risks impacting the business
• Support customer‑related security inquiries
• Assist with incident management

• Sports facilities and showers
• Attractive company pension scheme
• Subsidized parking or public transport
• Discounts on insurance
• 13th monthly salary
• Company health management
• 25 days of annual vacation
• Modern offices
• Flight benefits
• Crew credit cards
• Remote working (e.g. from home)
• Time‑outs (sabbaticals)
• Flexible workhours and part‑time working models
• Disability programmes
• Paid maternity and paternity leave

• Master degree in computer science
• Industry recognized security qualifications such as CISSP (or equivalent)
• Sound knowledge and experience with ISO/IEC 27001, SOC 1 and or SOC2 compliance requirements certifications
• Proven track record of contributing to or implementing previous ISMS implementations, ideally aligned with ISO/IEC 27001
• At least 5 years of experience in a position similar to the described one
• Excellent understanding and practical experience in all aspects of information security and IT security
• Very strong communication skills and expert in building connections
• Ability and comfort in interacting with colleagues at all levels
• High level of integrity

Human Resources
Swiss Aviation Software Ltd.