IT Auditor / Cyber Security Consultant 80 - 100%

For this purpose, the Data Protection Officer acts as an independent supervisory authority. It supervises the data processing of the cantonal administration, the municipalities, and other authorities as well as public institutions in the canton of Zurich. Together with its team, it advises public bodies, conducts audits, assesses data protection-related projects (prior checks), and offers training and further education in the areas of data protection and information security. It informs the public about data protection issues and privacy protection topics.

For our Information Security team, we are looking for an independent and committed personality as an IT Auditor / Cyber Security Consultant to start immediately or by arrangement.

Your tasks

• Audits & Consulting: You independently conduct audits (data protection reviews) and advise public authorities on organizational and technical information security.
• Examination & Evaluation: You analyze and assess information security concepts for various organizations and prepare well-founded statements.
• Knowledge Transfer & Public Relations: You create publications (guides, fact sheets, web articles, articles in activity reports) and convey knowledge in training sessions and lectures.
• Co-Design & Networking: You actively participate in projects and working groups and coordinate collaboration with our external IT partners., Meaningful work: A challenging and varied activity in a highly topical environment with direct social benefit.
• Scope for design & responsibility: Freedom for initiative and the opportunity to take on responsibility.
• Modern working environment: A committed, motivated, and interdisciplinary team, a good working atmosphere, an open culture, and flexible working hours. The workplace is within walking distance of Zurich main station.
• Attractive conditions: Employment conditions according to cantonal guidelines with various training opportunities.

Completed university education (BSc/MSc FH or equivalent) in computer science, engineering, or a related field.

• Solid knowledge in information security as well as broad, general IT knowledge.
• Affinity for data protection topics and high sensitivity to digitalization and technology trends.
• Ideally certifications and further training (e.g., CISA, CISM, CISSP, MAS IS, ISO/IEC 27001 Lead Auditor) and/or experience with standards such as ISO/IEC 27001, BSI, or NIST CSF.
• Several years of professional experience in which you have demonstrated your independent, solution-oriented, team-capable, and proactive personality.
• Confident communication skills - both written and spoken.