On - IT Security Lead (Endpoint Security and Identity) - Zürich

Team for Career Site

Technology

In short

In the dynamic landscape of On, the tech thrives much like a spirited runner: always moving, always improving. We are building technology that continues to supercharge the growth of On, helping to ignite the human spirit through movement.

As an integral part of the Information Security team at On, you’ll find yourself at the heart of a fast-paced, diverse environment. Our ecosystem thrives on collaboration — a confluence of curious minds challenging and learning from one another, always seeking the uncharted. Here, we venture into new territories of technology and security, continuously refining our approach and embracing challenges head-on.

Your role will be pivotal in building synergies, reducing complexities, and prioritising essential work areas that further On’s mission.
As a strategic leader you will shape and drive the organization’s approach to securing access and defending endpoints by combining advanced Endpoint Security strategies, Zero Trust principles and Identity and Access Management solutions, ensuring a secure and resilient IT environment.

Your mission

– Design and Implement Advanced Endpoint Security Strategies with technologies like EPP and EDR safeguarding against malware, phishing and zero-day threats. Collaborate closely with SOC and Detection Engineering teams to define and refine detection rules, ensuring robust and proactive endpoint security
– Oversee Endpoint Integration processes to ensure interoperability across security and IT systems
– Monitor and Enforce Endpoint Security Compliance with internal policies and regulatory requirements
– Partner with the IT Security IAM Lead by developing and optimizing the IAM framework to ensure secure and seamless access across the organization. Drive the adoption of modern IAM technologies and best practices to enhance user experience while reducing risk
– Collaborate with stakeholders to design and implement role-based access controls, enforcing least-privilege principles, and strengthen Privileged Access Management (PAM) by deploying advanced tools, establishing secure provisioning processes, and managing the lifecycle of critical accounts
– Training and Mentoring: Providing training and mentoring to team members, fostering a culture of learning and knowledge sharing within the organisation

Your story

– With over 8 years of hands-on experience in Endpoint Security, Identity and Access Management (IAM), Privileged Access Management (PAM) with a proven track record of implementing cutting-edge solutions that scale with organizational growth
– Hands-on expertise in IAM/PAM tools such as Okta, Azure AD, CyberArk, and endpoint security platforms like CrowdStrike and SentinelOne, with a strong focus on access control models, detection rule development, proactive defense strategies, and Zero Trust architecture
– Good understanding of IAM concepts, protocols, and standards (e.g., SAML, SCIM, OAuth, OpenID Connect) and API integrations, with hands-on experience in popular IAM platforms, particularly Okta, Azure AD, and Google Cloud.
Proficient programming and scripting skills in languages and frameworks relevant to Endpoint Security tools and IAM platforms such as Java, Python, PowerShell or .NET
– Thrive in a fast-paced, dynamic environment where you can take ownership and drive impactful security initiatives. Demonstrated ability to collaborate with SOC and Detection Engineering teams to refine detection capabilities and strengthen endpoint defenses
– Bring a strategic, forward-thinking approach to implement Zero Trust models, anticipate emerging threats, reduce the attack surface, and enable security solutions that empower business agility
– Strong background in building security frameworks from the ground up and scaling them as the organization grows, with the agility to adapt to evolving challenges
– Proven ability to articulate complex security concepts to diverse audiences, from technical teams to business stakeholders, inspiring trust and alignment across the organization
– Relevant professional certifications such as CISSP, GIAC, and/or certifications specific to IAM/PAM, Zero Trust and endpoint security tools
– Fluent in English, your clear articulation bridges teams worldwide, ensuring collaborative synergy

Meet the team

Joining the Tech team at On, you’ll find yourself at the heart of a fast-paced, diverse environment. Our ecosystem thrives on collaboration — a confluence of curious minds challenging and learning from one another, always seeking the uncharted. Here, we venture into new territories of technology, continuously refining our approach and embracing challenges head-on.