Cyber Threat Analyst (80–100% - all identities and backgrounds)

Switch, avec environ 180 employés, soutient les universités suisses. Un environnement moderne et des opportunités passionnantes vous attendent.

Tâches

• Détecter et atténuer les abus de domaine dans l'espace .ch et .li.

• Créer des rapports d'intelligence sur les menaces cybernétiques pour les partenaires.

• Collaborer avec des communautés CTI locales et internationales.

Compétences

• Expérience solide en cybersécurité, idéalement en intelligence des menaces.

• Compétences en automatisation et analyse de données, Python apprécié.

• Connaissance des plateformes CTI comme MISP ou OpenCTI.

With around 180 employees, Switch supports Switzerland's universities, research institutions, and critical infrastructure organizations on their way to a secure and trustworthy digital age. With innovative IT services, secure infrastructures, expert advice, and the networking of relevant specialist communities, we help our customers effectively and efficiently use the opportunities offered by digitization.
Are you passionate about cybersecurity and want to make a real impact on the Swiss internet space? In this position, you will work at the intersection of national domain infrastructure (.ch and .li) and modern threat intelligence operations. You will actively track, analyze, and mitigate abuse within critical digital services, while collaborating with partners from the public sector, academia, and private industry. Expect a modern work culture, flexible arrangements, and the chance to shape platforms, tools, and processes from the ground up.
Cyber Threat Analyst (80–100% - all identities and backgrounds)
Your main tasks are
• Detect and mitigate domain abuse within the national .ch and .li namespace
• Conduct technical threat analysis using registry data, external feeds, and CERT (Computer Emergency Response Team) collaboration
• Create actionable Cyber Threat Intelligence (CTI) reports for national partners and government agencies
• Monitor and track threat actor groups targeting Swiss digital infrastructure and users
• Collaborate with local and international CTI communities, public authorities, and trusted partners
• Contribute to the design and development of threat intelligence platforms, tools, and workflows – including systems such as MISP, OpenCTI, and internal registry data tools

What you bring
• Solid background in cybersecurity – ideally with hands-on experience in threat intelligence, domain abuse or malware analysis
• University degree in a relevant field (e.g., Computer Science, Cybersecurity, Engineering) or equivalent practical experience
• Good scripting skills (e.g., Python or similar) for automation and data analysis
• Familiarity with large-scale data processing and analytics
• Working knowledge of STIX objects and CTI platforms such as MISP or OpenCTI
• Ability to work independently on complex problems and think critically under pressure
• Keen interest in emerging threats and technologies – and how to translate them into real-world security improvements
• Excellent written and spoken English; additional languages like German, French, Italian or Russian are highly appreciated

What you should know about us
• You will become part of a cross-functional, mission-driven team that bridges operational security, data analytics, and platform engineering. You'll be joining a 9-person dedicated CTI team, working closely with national and international partners from research, industry, and government sectors.
• You will support our CTIC (Cyber Threat Intelligence Center) team with building threat intelligence program and DSEC (Domain Security) team with your expertise in threat intelligence and domain abuse detection.
• You will work closely with internal experts as well as national authorities, international CERTs, academic institutions, and industry partners.
• An attractive work model with flexible working hours, remote work options, overtime compensation, and more
• Company language is German and English, team language is mainly English, and we provide support to help employees achieve a comfortable level of proficiency in German.
• Offices in the heart of Zurich

Does that sound exciting in itself? Then find out more about what it's like to work at Switch
and get an overview of the benefits.
Switch is made up of people from a wide variety of backgrounds and lifestyles. We embrace diversity and invite applications from people of all walks of life. We do not discriminate based on gender identity, sexual orientation, ethnicity, religion, age, disability, pregnancy status, or any other differences. Also, if you have a disability, please let us know how we can make the interview process better for you; we're happy to accommodate!