On - Senior Lead – Security Engineering and Architecture - Zürich

Team for Career Site

Technology

In short

In the dynamic landscape of On, our technology thrives like a spirited runner: always moving, always improving. As Senior Lead – Security Engineering & Architecture, your mission is to build and lead a high-impact engineering organization responsible for embedding security into cloud platforms and software delivery at scale.
You will own both the technical strategy and the delivery outcomes for DevSecOps and Cloud Security, ensuring security is designed in, automated, and operationally effective across the company.
This is a leadership role for someone who can connect architecture, engineering execution and people leadership—turning security vision into scalable, reliable and measurable outcomes.

Your mission

Team Leadership & People Management:
Act as the primary leadership; direct and mentor a specialized team of DevSecOps and Cloud Security engineers, fostering a culture of continuous learning and high-impact delivery

Cloud Security Ownership:
– Own security design and engineering for cloud environments across identity, network, workload and data protection. As well as ensuring consistent security posture across multi-account / multi-subscription environments
– Partner with platform and infrastructure teams to harden and continuously improve cloud security baselines

DevSecOps:
– Oversee the integration of security into the CI/CD pipeline, ensuring secure software development practices and automated vulnerability management are standard across all engineering teams
– Enable product and platform teams to adopt secure-by-default tooling and practices
– Continuously improve pipeline security, artifact integrity, dependency security and build-time assurance

Strategic Architecture:
– Lead the identification and mitigation of cyber threats by designing resilient system architectures that safeguard critical applications and data
– Establish scalable patterns for: secure cloud landing zones, workload and container security, CI/CD pipeline security, secrets management and identity integration
– Drive architectural decisions that prioritize automation, resilience and developer experience

Delivery & Execution Ownership:
– Own the end-to-end delivery of security engineering capabilities for cloud platforms and software delivery pipelines.
– Ensure initiatives are delivered on time, with measurable risk reduction and operational impact
– Balance strategic roadmap execution with operational and emerging security needs

Your story

– Over 10+ years of hands-on experience in Secure Architecture and Cloud Security, with a demonstrated track record of leading security initiatives and managing technical teams
– Deep understanding of modern cloud platforms (GCP, AWS, Azure), cloud-native architectures and software delivery pipelines
– Strong hands-on and architectural experience designing and operating:
CI/CD security controls, infrastructure-as-code security, container and workload security, cloud identity and access patterns
– Demonstrated ability to translate security strategy into clear engineering roadmaps and delivered outcomes, not only designs
– A leadership style built on clarity, trust and technical credibility, with a focus on scaling security through engineering rather than process alone
– Strong awareness of developer experience and operational sustainability when designing security solutions
– Desirable experience participating in security incident response and supporting on-call rotations, with the ability to guide teams through complex investigations and high-impact situations

Meet the team

As a leading running brand, On’s technology division operates in a dynamic, fast-paced environment and plays a critical role in driving our business success. You will play an active role in accelerating the maturity of our security posture.
Your mission is to protect the company’s infrastructure and applications by being a pragmatic, trusted, and a collaborative partner to Engineering. Your scope is broad, covering Application Security (AppSec), Cloud Security (CloudSec), and Network Security (NetSec).