IT Security Engineer - Multi Factor Authentication (MFA) 80 - 1005 (f/m/d) at BANK JULIUS BAER CO LTD

Singapore, , Singapore -

Full Time

Start Date

Immediate

Expiry Date

30 Mar, 26

Salary

0.0

Posted On

31 Dec, 25

Experience

2 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Multi-Factor Authentication, SmartCard Management, Veridium, OAuth 2.0, OpenID Connect, SAML, FIDO2/WebAuthn, PKI Operations, Windows Administration, Linux Administration, Security Engineering, Incident Resolution, Compliance, Technical Documentation, Service Improvement, Analytical Skills

Industry

Banking

Description

At Julius Baer, we celebrate and value the individual qualities you bring, enabling you to be impactful, to be entrepreneurial, to be empowered, and to create value beyond wealth. Let’s shape the future of wealth management together. Julius Baer Group Ltd. acts in the sector Private Banking and is present in over 25 countries and around 60 locations. With the Headquartered in Zurich, we have offices in key locations including Bangkok, Dubai, Dublin, Frankfurt, Geneva, Hong Kong, London, Luxembourg, Madrid, Mexico City, Milan, Monaco, Mumbai, Santiago de Chile, São Paulo, Shanghai, Singapore, Tel Aviv and Tokyo. Join our global team and play a critical role in safeguarding our digital landscape as a Security Engineer in the area of multi factor authentication (MFA). We're seeking a skilled expert to contribute to the engineering and operations of our existing SmartCard and Mobile Identity (Veridium) Solutions. YOUR CHALLENGE Main Job Responsibilities Play a key role in the design, implementation, and operational governance of Julius Baer’s enterprise SmartCard infrastructure, enabling secure physical and logical access across global locations and digital workspaces. Co-own the end-to-end lifecycle management of SmartCards—including provisioning, renewal, revocation, and decommissioning—in close collaboration with Human Resources, Facilities, and Security Operations to ensure seamless onboarding and offboarding experiences. Serve as technical co-owner of the Veridium multi-factor authentication (MFA) platform, driving its operational stability, configuration integrity, and ongoing enhancement to meet evolving security and usability demands. Manage integrations between SmartCard and Veridium solutions with core identity providers such as Microsoft Entra ID (Azure AD), Active Directory Federation Services (ADFS), and enterprise applications to enable frictionless yet secure authentication experiences. Lead incident resolution for complex MFA-related disruptions, serving as a Tier 2/Tier 3 escalation point through detailed root cause analysis (RCA), corrective actions, and implementation of preventative controls to strengthen service resilience. Ensure full compliance of all MFA platforms with Julius Baer’s information security policies, regulatory frameworks, and internal audit requirements, maintaining rigorous control over access entitlements and cryptographic material. Maintain authoritative technical documentation in Confluence, covering system architectures, operational procedures, integration specifications, and post-incident reviews to support knowledge sharing and operational continuity. Drive continuous service improvement by enhancing system reliability, security posture, performance, observability, and automation, with a clear focus on increasing operational efficiency and reducing manual effort. Keep pace with advances in authentication technologies — such as phishing-resistant MFA, passkeys, and post-quantum cryptography — and assess opportunities to integrate secure, future-ready solutions into the bank’s identity and access infrastructure. Client Management (internal & external) Various IT functions, both regionally and globally Local Legal and Compliance functions Business Management Key stakeholders include IT Service Owners, IT Infrastructure, IT Application Managers, IT Architecture and Project Managers CRO functions – including Business Operational Risk, Information Security and Compliance functions Global functions – IT Security Solutions, Security Architecture Establish strong relationship with key stakeholders and across the internal IT Regulatory Responsibilities &/OR Risk Management Ensure appropriate ethical and compliant behaviour within the area of responsibility by clear demonstration of appropriate values and behaviours including but not limited to standards on honesty and integrity, due care and diligence, fair dealing (treating customers fairly), management of conflicts of interest, competence and continuous development, adequate risk management, and compliance with applicable laws and regulations YOUR PROFILE Professional and Technical Core Expertise: Expertise in Multi-Factor Authentication (MFA) technologies with hands-on experience in managing SmartCard (PIV/PKI-based) and Veridium, or similar mobile identity solutions. Technical Proficiency: Solid understanding of enterprise authentication protocols and standards, including OAuth 2.0, OpenID Connect, SAML, FIDO2/WebAuthn, and certificate-based authentication. Experience integrating MFA solutions with identity providers such as Microsoft Entra ID (Azure AD), ADFS, or equivalent federated identity systems. Working knowledge of PKI operations, including digital certificate lifecycle management, trust chains, CRLs/OCSP, and integration with endpoint authentication. Strong Windows administration skills, particularly around Group Policy, domain authentication, credential providers, and smart card logon mechanics; basic Linux administration skills are advantageous. Security Engineering Knowledge: Practical understanding of key IT security domains; experience with one or more of the following is advantageous: Secure Web Gateway technologies (e.g., Zscaler) Application delivery controllers (e.g., Citrix ADC / NetScaler) Public Key Infrastructure (PKI) Privileged Access Management (PAM) Secure Secrets Management (Vault) Operational Excellence: Minimum of 2–3 years in 2nd and 3rd line engineering or operations roles supporting enterprise-grade IT security services, ideally within complex, highly regulated environments (e.g., financial services). Education & Credentials: Relevant academic background (e.g., Bachelor’s or Master’s degree in Computer Science, Information Security, or related discipline) — or equivalent practical experience. Industry certifications such as CISSP, CISM, or CEH are considered a strong asset. Personal and Social Team player, strong collaborator with the willingness to take ownership Excellent communication skills in spoken and written form Strong desire to learn and develop new skills Highly proactive, self-driven, and focused on delivering measurable results. Capable of independent decision-making, including prioritising and resolving incidents and change requests under minimal supervision. Strong analytical and conceptual thinking skills, with attention to detail and long-term architectural implications. Ability to thrive in a globally distributed team environment Regulatory Good understanding of the technology regulatory framework in Singapore and Hong Kong We are looking forward to receiving your full job application through our online application tool. Further interesting job opportunities can be found on our Career site. Is this not quite what you are looking for? Set up a job alert by creating a candidate account here. The international reference in wealth management Julius Baer is the leading Swiss wealth management group. We focus on servicing and advising sophisticated private clients from around the world, taking into account what truly matters to them – in their business and personal life, today and for future generations. Headquartered in Zurich, we are present in around 60 locations worldwide, including Bangkok, Dubai, Dublin, Frankfurt, Geneva, Hong Kong, London, Luxembourg, Madrid, Mexico City, Milan, Monaco, Mumbai, Santiago de Chile, Shanghai, Singapore, Tel Aviv, and Tokyo. Why join Julius Baer? At Julius Baer our employees enjoy the benefits of a global company with the support and collegiality of a much smaller one. We are growing quickly, but we remain dedicated to maintaining our accessible structure with flat hierarchies, and approachable and supportive leaders. With offices around the world, we offer an international and stimulating work environment and the opportunity to work with a diverse team of highly motivated colleagues, bringing the best of the bank to our clients. Our core values of Care, Passion, and Excellence define the tone of how we interact with each other and our partners. Committed to your success Whether nurturing young talent with our renowned apprentice scheme, enabling ambitious university graduates to put theory into practice with our Graduate Programme, or providing first-class opportunities for experienced professionals, we look after our employees. We believe in continuous learning as a company and as individuals, which is why we put a focus on the health and well-being of our employees and offer flexible working options, a wide array of benefits, and extensive career development programmes. For more information visit www.juliusbaer.com or contact us via the Contact Form. For recruiting agents, please see the additional information here.

How To Apply:

Incase you would like to apply to this job directly from the source, please click here

Responsibilities

The IT Security Engineer will design, implement, and govern the SmartCard infrastructure for secure access across global locations. They will also manage the Veridium MFA platform and ensure compliance with security policies and regulatory frameworks.