IT Security Lead (Threat Management and Cloud Architecture)

In short

In the dynamic landscape of On, the tech thrives much like a spirited runner: always moving, always improving. We are building technology that continues to supercharge the growth of On, helping to ignite the human spirit through movement.

As an integral part of the Information Security team at On, you'll find yourself at the heart of a fast-paced, diverse environment. Our ecosystem thrives on collaboration — a confluence of curious minds challenging and learning from one another, always seeking the uncharted. Here, we venture into new territories of technology and security, continuously refining our approach and embracing challenges head-on.

Your role will be pivotal in building synergies, reducing complexities, and prioritising essential work areas that further On's mission.As a strategic leader you will drive the development and implementation of secure architecture, cloud security and threat management strategies, embedding Zero Trust principles across all systems and processes safeguarding critical infrastructure, applications and data while enabling a resilient, forward-thinking security posture.

Your Mission

• Lead Advanced Threat Analysis and Strategy overseeing the identification, assessment and mitigation of cyber threats, leveraging innovative defense strategies and threat intelligence to strengthen organizational security.
• Build and Maintain Secure Architecture, Application Security Practices and Cloud Security Framework integrating Zero Trust principles into system design, development processes, and cloud environments. Implement policies and controls to protect infrastructure, applications and data while aligning with security best practices.
• Collaborate and Support the IT Security Operations team by providing expertise and input on incident response processes including containment, mitigation and recovery, enhancing detection capabilities and optimizing response strategies.
• Lead Vulnerability Management and Service Delivery Efforts, ensuring vulnerabilities are identified, assessed and prioritized for remediation. Oversee the end-to-end management of the vulnerability management service, ensuring it operates efficiently, aligns with organizational objectives and meets global security standards and best practices. Collaborate with cross-functional teams to address risks and reduce the attack surface effectively.
• Training and Mentoring: Providing training and mentoring to team members, fostering a culture of learning and knowledge sharing within the organisation.