IT Security Manager

As a Security Engineer, you ensure that technical solutions across our environment are designed, implemented, and operated in line with our security requirements. Your main tasks include:

• Research, design and implement security solutions for all managed components within LGT Capital Partners' on-premises and cloud infrastructure;
• Ensure that security is integrated into the evaluation, selection, deployment and configuration of hardware, software and cloud services;
• Identify and define system security requirements that comply with all applicable security policies, regulatory requirements and industry best practices;
• Develop technical solutions to mitigate security vulnerabilities and automate repeatable security processes;
• Operate and improve the vulnerability management process, including assessment of findings, prioritization and coordination of remediation activities with responsible teams;
• Closely collaborate with our external Security Operations Center (SOC) to enhance detection use cases, improve runbooks and optimize incident workflows;
• Assist in responding to security incidents, penetration tests, red-team exercises and audits;
• Analyze infrastructure, cloud and security logs to identify trends, deviations and potential security incidents;
• Support the review and update of cyber security policies, architectures, standards and guidelines;
• Act as a Subject Matter Expert within virtual teams such as the CSIRT or the Security Team;
• Take over service ownership of security-related products such as endpoint and identity security solutions;
• Prepare clear and concise technical documentation.

Do you have experience in Scripting?, * Thorough understanding of modern security principles, Zero Trust concepts, threat detection techniques and current attack vectors;

• Proven experience with Microsoft technologies (Active Directory, Group Policy Management, Entra ID / Azure AD, Conditional Access, Identity Protection);
• Proven experience with Microsoft Cloud Security Solutions (Microsoft 365 Defender, Defender for Endpoint, Defender for Office 365, Defender for Identity, Defender for Cloud Apps, Microsoft Sentinel);
• Hands-on experience deploying, configuring, and administering Microsoft Sentinel in enterprise environments, including workspace setup, data connector onboarding, and cost/retention management;
• Strong command of Kusto Query Language (KQL) for threat hunting, log analysis, and building complex, multi-table queries;
• Experience connecting data sources via native connectors, third-party connectors (CEF, Syslog, REST API, custom parsers) and with ASIM (Advanced Security Information Model) normalization schemas and parser development;
• Knowledge of cost optimization strategies: auxiliary log tiers, ingestion-time filtering, and analytics vs. basic log strategies;
• Hands-on experience collaborating with cross-functional teams ( Cloud, DevOps, Endpoint etc) to triage, prioritize, and remediate security findings and misconfigurations surfaced through Microsoft security tooling, including Secure Score, Exposure Score, Defender for Cloud etc managing recommendations across identity, cloud, and device workloads through to closure;
• Experience with vulnerability scanning, risk assessment, exploitation techniques and remediation processes;
• Strong automation and scripting skills (e.g., PowerShell, Python) and the ability to build repeatable and scalable security controls;
• Solid problem-solving and troubleshooting skills with the ability to analyze complex environments;
• Ability to interface with and earn the trust of stakeholders at all levels of the company;
• Demonstrated judgment, sense of urgency, and commitment to high standards of ethics, compliance, customer service and business integrity.

* We provide modern working conditions , including work-from-home options, flexible hours and a home office allowance to ensure staff members have a work environment equipped with the latest technology; * A diverse culture founded on mutual respect, teamwork and appreciation awaits you at LGT Capital Partners. We go the extra mile to generate impact; * We empower and invest in you : your professional development and personal growth are our priority. We offer various internal and external training opportunities that are aligned with your ambitions and our business needs. If you are interested, you can also enhance your German or English language skills; * We are proud to be owned by the Princely Family of Liechtenstein and our company is inspired by its entrepreneurial spirit; * Commitment to ESG: our approach to business is influenced by the Princely Family's long-term perspective. Sustainability is key for us and has shaped our actions since 2002; * You benefit from favorable terms and conditions if you wish to participate in LGT Capital Partners' investment programs or to use LGT banking products and services.