Senior Security Engineer - Applications Identity and Access Management

Senior Security Engineer – Applications Identity & Access Management

As a Senior Security Engineer in our Applications Identity and Access Management team, you'll be at the forefront of securing critical application-to-application interactions across our global operations.

In this pivotal security position, you'll tackle complex authentication and authorization challenges that matter at a global scale. This is a role for someone who loves turning hard problems into elegant, scalable solutions — and who wants their work to have real, measurable impact.

Key Responsibilities

• Identify and assess authentication and authorization risks in application-to-application use cases across the organization, ensuring a proactive and comprehensive security posture.

• Design and prototype innovative solutions to mitigate security risks, leveraging cutting-edge technologies to strengthen our cybersecurity capabilities.

• Drive group-wide risk mitigation by clearly structuring, explaining, and presenting risks and solutions to diverse audiences — from engineers to senior leadership.

• Support and coordinate cross-functional teams in implementing effective security measures, aligning execution across organizational boundaries.

• Contribute to the cybersecurity strategy and roadmap, bringing fresh thinking and technical depth to group-wide initiatives.

The Applications IAM team specializes in securing access and secrets management of technical identities across Swiss Re's global IT ecosystems, including public cloud environments. We are part of the CSO's Product and Engineering Unit, responsible for cybersecurity engineering and operations, governance, risk, and compliance. Our team plays an active role in defining and building the group cybersecurity strategy and roadmap, working at the cutting edge of cybersecurity innovation. You'll be joining a collaborative, expert group that values curiosity, rigour, and a shared commitment to making digital ecosystems safer.

You're a creative security expert who thrives on solving complex challenges and collaborating with specialized teams. You combine deep technical expertise with excellent communication skills, allowing you to translate intricate security concepts for both technical and non-technical audiences. You're comfortable engaging senior stakeholders, defending design decisions with confidence, and driving adoption of solutions at scale — all while staying grounded in agile, pragmatic ways of working.

We are looking for candidates who meet these requirements:

Engineering Skills

• Strong background in IT security with deep technical expertise in Identity and Access Management, particularly in application-to-application and technical identity use cases.

• Solid hands-on engineering skills, including writing scripts, building CI/CD pipelines, implementing infrastructure as code, developing service-to-service integration prototypes, and designing systems on public clouds (e.g. Azure), combined with a confident command of authentication and authorization protocols such as OIDC and OAuth.

• Degree in Computer Science or a closely related field.

Seniority and Ways of Working

• Proven experience driving the deployment or adoption of technologies at scale across complex, cross-functional environments.

• Strong practical command of agile ways of working, including breaking down complex work, aligning with stakeholders, and delivering reliably.

• Demonstrated ability to engage senior technical stakeholders, defend design decisions convincingly, and challenge assumptions with well-founded arguments.

• Strong ability to engage senior management by structuring and presenting risks and solutions clearly and persuasively.

These are additional nice to haves:

• Cybersecurity and public cloud certifications (e.g. CISSP, Azure Security Engineer, or equivalent)

• Experience conducting or supporting security audits

• Background as a penetration tester, bringing an attacker's mindset to defensive engineering

• In-depth knowledge of secret vault technologies (e.g. HashiCorp Vault, Azure Key Vault)