Senior Security Engineer - Applications Identity and Access Management

Senior Security Engineer - Applications Identity and Access Management

Senior Security Engineer – Applications Identity & Access Management

 

As a Senior Security Engineer in our Applications Identity and Access Management team, you'll be at the forefront of securing critical application-to-application interactions across our global operations.

About the Role

In this pivotal security position, you'll tackle complex authentication and authorization challenges that matter at a global scale. This is a role for someone who loves turning hard problems into elegant, scalable solutions — and who wants their work to have real, measurable impact.

Key Responsibilities

• Identify and assess authentication and authorization risks in application-to-application use cases across the organization, ensuring a proactive and comprehensive security posture.

• Design and prototype innovative solutions to mitigate security risks, leveraging cutting-edge technologies to strengthen our cybersecurity capabilities.

• Drive group-wide risk mitigation by clearly structuring, explaining, and presenting risks and solutions to diverse audiences — from engineers to senior leadership.

• Support and coordinate cross-functional teams in implementing effective security measures, aligning execution across organizational boundaries.

• Contribute to the cybersecurity strategy and roadmap, bringing fresh thinking and technical depth to group-wide initiatives.

About the Team

The Applications IAM team specializes in securing access and secrets management of technical identities across Swiss Re's global IT ecosystems, including public cloud environments. We are part of the CSO's Product and Engineering Unit, responsible for cybersecurity engineering and operations, governance, risk, and compliance. Our team plays an active role in defining and building the group cybersecurity strategy and roadmap, working at the cutting edge of cybersecurity innovation. You'll be joining a collaborative, expert group that values curiosity, rigour, and a shared commitment to making digital ecosystems safer.

About You

You're a creative security expert who thrives on solving complex challenges and collaborating with specialized teams. You combine deep technical expertise with excellent communication skills, allowing you to translate intricate security concepts for both technical and non-technical audiences. You're comfortable engaging senior stakeholders, defending design decisions with confidence, and driving adoption of solutions at scale — all while staying grounded in agile, pragmatic ways of working.

We are looking for candidates who meet these requirements:

Engineering Skills

• Strong background in IT security with deep technical expertise in Identity and Access Management, particularly in application-to-application and technical identity use cases.

• Solid hands-on engineering skills, including writing scripts, building CI/CD pipelines, implementing infrastructure as code, developing service-to-service integration prototypes, and designing systems on public clouds (e.g. Azure), combined with a confident command of authentication and authorization protocols such as OIDC and OAuth.

• Degree in Computer Science or a closely related field.

Seniority and Ways of Working

• Proven experience driving the deployment or adoption of technologies at scale across complex, cross-functional environments.

• Strong practical command of agile ways of working, including breaking down complex work, aligning with stakeholders, and delivering reliably.

• Demonstrated ability to engage senior technical stakeholders, defend design decisions convincingly, and challenge assumptions with well-founded arguments.

• Strong ability to engage senior management by structuring and presenting risks and solutions clearly and persuasively.

These are additional nice to haves:

• Cybersecurity and public cloud certifications (e.g. CISSP, Azure Security Engineer, or equivalent)

• Experience conducting or supporting security audits

• Background as a penetration tester, bringing an attacker's mindset to defensive engineering

• In-depth knowledge of secret vault technologies (e.g. HashiCorp Vault, Azure Key Vault)

Our company has a hybrid work model where the expectation is that you will be in the office at least three days per week.

 

About Swiss Re

 

Swiss Re is one of the world’s leading providers of reinsurance, insurance and other forms of insurance-based risk transfer, working to make the world more resilient. We anticipate and manage a wide variety of risks, from natural catastrophes and climate change to cybercrime. Combining experience with creative thinking and cutting-edge expertise, we create new opportunities and solutions for our clients. This is possible thanks to the collaboration of more than 14,000 employees across the world.

Our success depends on our ability to build an inclusive culture encouraging fresh perspectives and innovative thinking. We embrace a workplace where everyone has equal opportunities to thrive and develop professionally regardless of their age, gender, race, ethnicity, gender identity and/or expression, sexual orientation, physical or mental ability, skillset, thought or other characteristics. In our inclusive and flexible environment everyone can bring their authentic selves to work and their passion for sustainability.

If you are an experienced professional returning to the workforce after a career break, we encourage you to apply for open positions that match your skills and experience.

 

We may use AI-powered tools to support the review and evaluation of applications for this position. These tools provide additional insights to our recruitment teams, but all hiring decisions are carefully reviewed and made by people. To learn more about how we use AI in recruitment and how we handle your personal data, please review our Data Privacy Statement before applying.

 

Keywords:  
Reference Code: 137960 

 

 

Experience Level

Senior Level