Head of Cyber Incident Response (Hybrid setup)

 At Swiss Re, we are committed to staying ahead of cybersecurity threats to protect our organization and our valued customers. Join our team of dedicated cybersecurity professionals who work together to proactively defend against cyber incidents and respond swiftly to major cyber security attacks and help us to fulfil our mission in making the world more resilient. As the Head of Cyber Incident Response, you will lead a talented team of cybersecurity experts and play a crucial role in fortifying our defences.  

What´s more, you will be working in a hybrid setup (50:50), perfectly balancing work from home and the office premises. 

About Our Team 

The cyber security team is the focal point for all cyber security activities and is responsible for keeping the company safe by going the extra mile in terms of preciseness and diligence. We are maintaining security operations and delivering high-quality monitoring and response solutions.  As the Head of Cyber Incident Response, you will be responsible for leading and mobilising Swiss Re resources to prepare and manage cyber incidents. You will lead the development and implementation of our incident response strategies. Your primary mission objective will be to ensure the organisation is prepared and able to swiftly detect, contain, and eradicate, and recover from cyber incidents to minimize disruption to our business. 

In your role, you will… 

• Develop and maintain a world-class Cyber Incident Response capability including plans and procedures 
• Manage technical and non-technical responses to major cyber-attacks  
• Mobilise and lead communications with all areas of the business at all levels of seniority. 
• Organise response teams and activities regionally and globally as required 
• Coordinate tabletop exercises across and simulations to test our response capabilities 
• Identify improvements and perform retrospectives for continuous improvement  
• Collaborate with cross-functional teams to enhance threat intelligence and defences 
• Ensure thorough documentation of Cyber Incident Response and Emergency Management Team plans 
• Engage stakeholders and provide executive-level briefings on cybersecurity incidents 
• Conduct post-incident reviews to identify root causes and assist in writing incident reports 
• Feed the Threat Intelligence team back for appropriate analysis and dissemination. 
• Provide recommendations on cybersecurity incidents and trends 
• Be available to respond outside of normal business hours as needed 

What we need from you  

Nobody is perfect and meets 100% of our requirements. If you meet some of the criteria listed below and have passion for Cyber Security, we'll be more than happy to get to know you! 

Qualification and background: 

• Min. of 8 years of experience in Cybersecurity, with at least 3 years as a senior Incident Responder or Security Analyst 
• Proven track record of leading response teams in an international working environment. 
• Expertise in all aspect of cyber response activities: incident triage, case management, threat hunting, and forensics 
• Experience with Security Operations, Cyber Threat, and Incident Response technologies  
• Strong technical skills in contemporary technologies, including public cloud environment (e.g. Azure, Ali, AWS), all core enterprise technologies and threats, B2B and B2C service organisations. 
• Experience in response within highly regulated industries including handling security incidents from third-party breach to PII (personally identifiable information) compromise events  
• Demonstrated ability in developing efficient response processes, team scheduling and organisation, and quality control and assurance in responder practices   
• Knowledge of Cyber Threat Intelligence gathering and evaluation techniques 
• Proficiency in incident response frameworks such as NIST, ISO, or SANS 

Personal competencies: 

• Excellent communication skills in English (both written and spoken) 
• Leadership skill 
• Stakeholder management at all levels  
• Analytical skills 
• Project management skills 
• Documentation skills 
• Continuous innovation and improvement 

Nice-to-have: 

• Degree in Computer Science, Cybersecurity, or related discipline 
• Hands-on experience in Cyber Security Operations and Cyber Defence  
• Knowledge of digital forensics, incident response tools 
• Expert know-how on managing security in complex heterogeneous environment  
• Second language (German, Spanish or Chinese) – beneficial 
• Industry certifications such as CISSP, CISM, or GIAC 

What you will get in return 

We offer a competitive salary package with incentives. Our offer to you will be set up fairly, considering the skills and experience that you bring to the Swiss Re Group.  

Joining our team comes with a variety of rewarding opportunities and benefits. We value our employees and are dedicated to providing a supportive and enriching work environment. Here are some of the perks you can look forward to: 

• Working in an international, stable company in reinsurance 
• Learning and development opportunities  
• Hybrid working setup and flexible working time 
• Comprehensive health insurance coverage 
• Generous vacation days and paid time off 
• Professional networking and industry engagement opportunities 
• Employee assistance programs and mental health support 
• Relocation support 
• And a lot more. 

Selection process 

We provide feedback to all candidates via email. If you have not heard back from us, please check your spam folder. If shortlisted, you may expect the following steps: 

1. HR phone screen  
2. Interview with hiring manager 
3. Technical interview 
4. Interview with CSO 

Apply now and embark on a fulfilling carer journey with us as we navigate the ever-evolving landscape of cybersecurity together. Your future at Swiss Re awaits, filled with exciting challenges, growth opportunities, and a supportive team environment that champions your success. 

#swissre #wearehiring #joinus #cybersecurity #incidentresponse  #Li-hybrid