Platform Security Engineer

Platform Security Engineer

Think like an attacker, build like an engineer, help us find and fix the cracks in our platforms before someone else does. 

Your responsibilities

You work in an internal and geographically distributed team with cultural diversity, collaborating closely with platform engineers, DevOps teams and product owners across Swisscom. You play a vital role in our agile environment, not just defending the platform, but actively challenging it.

With your background in offensive security, you bring a hacker's mindset to Swisscom's internal cloud platform. You don't wait for vulnerabilities to be reported, you go looking for them. Through hands-on technical assessments, penetration testing and red team exercises, you identify weaknesses in iAWS, Swisscom's well-architected AWS Landing Zone, and unlike a traditional pen tester who hands over a report and walks away, you stay involved. Where the fix is within your reach, you own it, writing the code, updating the controls and closing the gap yourself.

But this role is more than breaking things. You act as a trusted security advisor to our internal platform and product teams, guiding them on how to build securely from the ground up. For findings that span multiple teams or require broader platform changes, you work alongside our engineers to drive remediation, providing the technical context, the recommended approach and the hands-on support needed to get it done properly.

You help shape the way we approach security across the ICP ART, from improving our engagement with the SOC, to refining our security processes, to ensuring that the platform we offer to all Swisscom internal DevOps teams is not just functional, but genuinely hardened. You collaborate across multiple teams and solution trains within Swisscom, bridging the gap between offensive security expertise and the day-to-day realities of a fast-moving cloud platform. Thanks to you, security is not an afterthought, it's built in.

This role would be excellently suited to someone who has been doing a lot of offensive security work, but would like to branch out to both advisory and engineering positions without losing all the offensive fun!

• In your daily work, you will get in touch with the following tools, services and technologies. The more you are already familiar with the better. Everything else you will learn on the job:

  • Offensive Security & Assessment Tools

    • Penetration testing tools and methodologies (e.g. Burp Suite, nmap, Metasploit or similar)

    • Cloud-specific attack frameworks and enumeration tools (e.g. Pacu, ScoutSuite, Prowler)

    • Kubernetes security assessment tools and attack techniques (e.g. kube-bench, kube-hunter, Trivy)

    • Vulnerability scanning and red team tooling 

    • OWASP testing methodologies

  • AWS Security Services

    • CloudWatch, CloudTrail, Amazon Inspector

    • AWS Config, Security Hub, GuardDuty

    • AWS Shield, WAF, Firewall Manager

    • IAM, SCPs, Resource Control Policies

    • AWS Network Firewall, VPC Flow Logs

  • Infrastructure as Code

    • CDK

    • Terraform

  • Beneficial Programming / Scripting Languages

    • Python

    • TypeScript of Java is a plus

  • What we expect

    • 4+ years of experience working with AWS, with a strong focus on security

    • Hands-on experience conducting penetration tests or red team assessments, ideally in cloud environments

    • A solid understanding of both how attacks work and how to defend against them

    • Experience working in agile, cross-functional teams

  •  Nice to have

    • Offensive security certifications such as OSCP, CRTO, or similar

    • AWS security certifications (AWS Certified Security — Specialty)

    • Experience with SOC processes, threat detection or incident response

    • Familiarity with compliance frameworks relevant to AWS telco workloads

• Bachelor's Degree (B.Sc.) with comparable experience in Computer Science

• Excellent problem-solving skills to develop quick and sound solutions that resolve complex issues

• Team-oriented, very adaptable, a flair for continuous improvement

• High level of English

Want to know more about us?

We are serving the Swiss market as Switzerland’s leading IT & Telecom company. Thus, we are actively driving digitalization and networking, and tapping new paths for our customers and our employees. Our values are sparking passion, aim high and stand true.

Since 2019, we have been building up the coolest DevOps Center with a wonderful office at the World Trade Center in the heart of Rotterdam. We are currently recruiting IT passionate professionals who are keen on developing high-quality software, have an agile mindset and appreciate the collaboration with motivated colleagues from all over the world.

What's in it for you?

Work environment

• Agile way of working, multi-cultural work environment promoting work-life balance

• Autonomy, flexibility, opportunity and growth

• Cool office space in the World Trade Center Rotterdam!

• Are you coming to the office by bike or car? You can park right here at the office

• Be a part of our events to build a stronger Swisscom community - for example, culture lunches, fun quizzes, game nights and a lot more! 

Allowances

• Full relocation support (Housing, settling in, etc.) for you and your family

• 200 euros per month Telephone/internet allowance 

• 275 euros per month contribution to health insurance 

• 5 Paid training days and access to Swisscom learning platforms

• Travel allowance reimbursement

• 500 euros home office allowance

• Gym subscription, Tax advice, and language course

• Salary range: 65,000 to 72,000 euros gross per year including holiday allowance

Leaves policy

• Work from abroad possibility for one month per year

• Care, bereavement, maternity and paternity leaves

• 25 days paid vacation days plus Dutch national holidays

Contract terms

• To begin with you will receive a fixed term contract (one year), after 6 months of your employment with us, after a feedback meeting with the team, there is a possibility of extending the contract

• The salary ranges mentioned in our Job Descriptions are base annual gross salaries including the 8% holiday allowance