About Swiss Re Swiss Re is one of the world's leading providers of reinsurance, insurance and other forms of insurance-based risk transfer, working to make the world more resilient.
We anticipate and manage a wide variety of risks, from natural catastrophes and climate change to cybercrime.
Combining experience with creative thinking and cutting-edge expertise, we create new opportunities and solutions for our clients.
This is possible thanks to the collaboration of more than 14,000 employees across the world.
Our success depends on our ability to build an inclusive culture encouraging fresh perspectives and innovative thinking.
We embrace a workplace where everyone has equal opportunities to thrive and develop professionally regardless of their age, gender, race, ethnicity, gender identity and/or expression, sexual orientation, physical or mental ability, skillset, thought or other characteristics.
In our inclusive and flexible environment everyone can bring their authentic selves to work.
About the Role and Team The Security Team is the focal point for all security activities across Swiss Re.
We are responsible for cybersecurity engineering and operations, governance, risk and compliance, and defining as well as advancing the company's security strategy.
As part of the Security Team, Detection & Engineering is a team of experts responsible for maintaining security operations, focused on delivering high-quality detection monitoring and response solutions.
We're looking for a detection engineer who can identify, develop, and implement advanced threat detection and response engineering solutions.
In your role, you will: Research, identify, and stop cyberattacks Build an advanced service for hunting and detecting cyber threats Deliver monitoring and response solutions for the team Be a part of Purple Team to improve our security stance and implement your learnings into rules Collaborate closely with offensive security specialists Work with a Threat Detection Lead to streamline cybersecurity detection capabilities Adapt detection mechanisms to threat landscape across the financial industry About You What we need from you: Experience in developing hypothesis-driven threat hunts, covering both on-premise and cloud-hosted IT environments Knowledge of detection rule development, covering tools (such as SIEM, EDRs) and industry frameworks (such as MITRE ATT&CK) Expert proficiency in Python, Kusto, or other scripting language Technical writing skills to present complex topics to non-technical audiences Excellent oral and written communication skills (English) Your additional experience (at least one required): API attack mitigation strategies/solution development Analysis of web traffic, underlying malware, lateral movement, TTPs detected through Microsoft and Linux security events, etc.
Logfile correlation and analysis System and memory analysis Malware and exploit analysis (or reverse engineering) Chain of custody and forensic acquisitions Nice-to-have: Experience with Azure security tooling and development within Azure What can you look forward to?
An enthusiastic collective full of cybersecurity lovers, aspiring talents and industry veterans Annual salary reviews and a one-off bonus each year Hybrid setup, balancing between working from home and the office premises Corporate benefits, including various product and service discounts (e.g., 100% reimbursement on public transport annual subscription) Modern work environment with top-notch facilities As much coffee (and fruit) as you need to go about your day We are an equal opportunity employer, and we value diversity at our company.
Our aim is to live visible and invisible diversity - diversity of age, race, ethnicity, nationality, gender, gender identity, sexual orientation, religious beliefs, physical abilities, personalities and experiences - at all levels and in all functions and regions.
We also collaborate in a flexible working environment, providing you with a compelling degree of autonomy to decide how, when and where to carry out your tasks.
#J-18808-Ljbffr
