IT Infrastructure & Security Governance Manager

BASF SE
Zug, Switzerland
yesterday

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English, German

Job location

Zug, Switzerland

Tech stack

Microsoft Windows
Microsoft Active Directory
Algorithmic Trading
Azure
Cloud Computing
Control Objectives for Information and Related Technology (COBIT)
Information Systems
Databases
Disaster Recovery
Identity and Access Management
IT Management
Information Technology Operations
Azure
Security Information and Event Management
Software Vulnerability Management
Information Technology
Data Management
Network Server

Job description

As IT Infrastructure & Security Governance Manager you will shape and maintain a secure, resilient, and compliant IT infrastructure for our commodity trading business. In a lean IT organization you will own IT governance and security policies while carrying out selected hands-on tasks, including emergency administration and incident response. You will define and enforce company-wide IT standards, oversee their implementation, and act as the bridge between strategic governance, day-to-day IT operations and external partners. You will report to the Head of Trading Systems & Data Management., * Define and maintain IT governance, policies and standards (aligned with ISO 27001, NIST CSF, NIS2, SOC 2).

  • Lead IT risk management and act as primary contact for internal/external audits.
  • Oversee hybrid infrastructure architecture and security; set configuration standards for network, servers, endpoints and cloud.
  • Manage identity & access (Active Directory / Microsoft Entra ID), serve as emergency administrator and enforce IAM reviews.
  • Ensure security monitoring, vulnerability management and incident response (SIEM/SOC coordination).
  • Govern external IT provider operations and lead business continuity / disaster recovery planning.

Requirements

  • Degree in Computer Science, Information Systems or equivalent experience.
  • Strong background in IT governance and security frameworks (ISO 27001, NIST CSF, COBIT) and regulatory requirements (e.g., NIS2).
  • Deep experience with enterprise infrastructure and cloud (Azure, Microsoft 365); secure configuration of networks, servers, OS and databases.
  • Expertise in identity & access management (Active Directory / Entra ID), MFA, privileged access and key/certificate management.
  • Hands-on knowledge of cybersecurity operations: SIEM/SOC, incident response, vulnerability management and DLP.
  • Proven ability to oversee IT operations (patching, backup/recovery, monitoring), lead cross-team coordination and communicate in English (German a plus); relevant certifications (CISM/CISSP/CISA/ISO27001/ITIL) desirable.

Benefits & conditions

  • Attractive compensation and comprehensive social benefits
  • Opportunities for professional and personal development
  • A modern workplace with digitalized processes and flexible working models

Apply for this position