On - Senior Security Analyst (Automation & Detection) - Zürich

Team for Career Site

Technology

In short

At On, our technology moves as fast as our runners: always evolving, always pushing boundaries. We’re building a world-class platform to ignite the human spirit through movement, and our Information Security team is the trusted guardian of that mission.
Join a collaborative team of curious minds who view security not as a blocker, but as an accelerator. We are explorers in a dynamic landscape, constantly venturing into new territories of technology and threat defense. We are looking for a Senior Security Analyst who shares this passion—someone who wants to move beyond the conventional SOC and help build the future of security operations at On.

Your mission

As a senior member of our security operations team, this is a deeply hands-on role where you will act as a strategic defender at the heart of our ecosystem. Your mission is to tackle expert-level (L3) challenges, from in-the-weeds incident response and proactive threat hunting to engineering robust detection capabilities. You’ll not only solve the most complex security incidents yourself but also use your findings to build a more resilient environment for tomorrow.

– Lead the hands-on investigation of critical security incidents, conducting deep-dive technical analysis and coordinating remediation with our engineering teams
– Serve as a senior escalation point during an on-call rotation, ensuring a rapid and effective response to critical security incidents outside of working hours
– Master our primary security tool, Google SecOps (Chronicle), by personally developing sophisticated detection rules and optimizing our security event pipeline
– Proactively hunt for hidden threats within our fast-paced Cloud environment, getting your hands dirty with data to turn hypotheses into actionable intelligence
– Shape our security strategy by contributing to threat modelling, vendor risk assessments, and the continuous evolution of our detection and response program
– Mentor team members and act as a subject matter expert, sharing your practical knowledge and elevating the capabilities of the entire security function

Your story

You are an experienced security professional with a passion for technical details and a proactive, problem-solving mindset. Your background demonstrates a commitment to excellence in security operations.

– You bring 5+ years of experience in a hands-on security operations or incident response role, with a proven focus on L3 analysis
– You possess strong proficiency with SIEM platforms, specifically Google SecOps (Chronicle), including building custom detection rules
– You are comfortable and familiar with navigating and securing cloud environments, ideally Google Cloud (GCP)
– You have a proactive and inquisitive mindset, with demonstrable experience in threat hunting techniques and familiarity with frameworks like MITRE ATT&CK
– You are a natural collaborator with the ability to communicate complex technical issues to both technical and non-technical stakeholders

Meet the team

We are a globally-distributed team within the broader Technology function, organized into five core domains: Cyber Defence, Security Engineering, Security Architecture, IT GRC, and Endpoint Security.