Team Lead - Monitoring (Hybrid; m/f/x/d; 80-100%)

Are you passionate about cybersecurity leadership and ready to take on a pivotal role in protecting a global organization? Join our Cyber Defense team where you'll lead a talented group of Security Analysts in detecting, investigating, and responding to sophisticated cyber threats. This role offers the perfect blend of hands-on technical work and strategic leadership, allowing you to make a significant impact on our organization's security posture. 

About the Role 

As Team Lead - Monitoring, you'll be at the forefront of our security operations, combining technical expertise with leadership skills to protect our organization from evolving cyber threats. You'll drive continuous improvement in our detection capabilities while mentoring a team of skilled security professionals. 

Key Responsibilities 

• Lead and develop a team of Security Analysts, providing technical guidance, mentoring, and support to enhance capability and performance while fostering talent growth 

• Identify skill gaps and implement targeted training and development plans, including instruction on investigative tools and processes 

• Create and maintain structured documentation and knowledge-sharing systems across the organization 

• Spearhead major security incidents by coordinating investigations to establish root causes and ensure timely response 

• Document and analyze incidents comprehensively to extract lessons learned and drive continuous improvement 

• Collaborate cross-functionally with stakeholders to ensure effective incident resolution and security alignment 

• Partner with Cyber Threat Intelligence team to enhance detection and hunting capabilities 

• Oversee continuous monitoring for anomalies and vulnerabilities, ensuring comprehensive threat detection 

• Select and optimize security tools and platforms to strengthen organizational resilience 

• Implement strategies to reduce false positives and improve detection accuracy 

• Drive automation initiatives to accelerate detection and response while enhancing operational efficiency 

• Develop and refine playbooks to standardize incident handling processes 

About the Team 

Cyber Defense is the focal point for all security activities across Swiss Re. We are responsible for keeping the company safe – by going above and beyond in terms of preciseness and diligence. As part of the Security Team, Monitoring & Response / Cyber Defense Operations is responsible for maintaining security operations, focused on delivering high-quality detection monitoring and response solutions. We're a dynamic team of security professionals committed to protecting our organization through innovative approaches to threat detection and incident response. 

About You 

You're a seasoned cybersecurity professional who thrives in fast-paced environments and enjoys solving complex security challenges. You combine technical expertise with leadership abilities, allowing you to both guide a team and dive deep into technical investigations when needed. You're proactive, detail-oriented, and committed to continuous improvement in security operations. 

We are looking for candidates who meet these requirements: 

• 7–10+ years in SOC/IR/Threat Hunting/Detection Engineering with proven Tier 3 leadership experience 

• Demonstrable expertise in SIEM (e.g., Microsoft Sentinel/Splunk), EDR/XDR (e.g., Defender, CrowdStrike), and SOAR technologies 

• Strong forensics & incident response skills across multiple environments (Windows/*nix, identity attacks, cloud, lateral movement) 

• Experience with MITRE ATT&CK framework, threat modelling, purple teaming, and hypothesis-driven hunts 

• Scripting proficiency for detections/automation (KQL, PowerShell, Python) and IaC/CI for content lifecycle management 

For Switzerland the base salary range for this position is between CHF 128,000 and CHF 192,000 (for a full-time role). The specific salary offered considers:

• the requirements, scope, complexity and responsibilities of the role,
• the applicant’s own profile including education/qualifications, expertise, specialisation, skills and experience.

In the situation where you do not meet all the requirements or you significantly exceed these, the offered salary may be below or above the advertised range.

In addition to your base salary, you may be eligible for additional rewards and benefits including an attractive performance-based bonus.