Who we are

API is an independent Swiss company specializing in IT consulting and services, including Executive Advisory, Information Systems, Infrastructure, and the provision of specialized consultants.

With a long-standing reputation, API has over 30 years of experience delivering IT projects across French-speaking Switzerland.

API is also a human-sized organization with an accessible hierarchy, where employee well-being and career development are among our top priorities.

We are primarily looking for a personality — someone with a strong team spirit who will thrive in a modern and dynamic environment.

Today, we are looking for a Cybersecurity & Infrastructure Security Engineer for our client based in Avry, in the canton of Fribourg.

This position is part of an international environment.

Your role includes:

• Contributing to the design, deployment, and improvement of security solutions across on‑premises and cloud environments, with a strong focus on Microsoft and Azure ecosystems (SIEM, endpoint protection, vulnerability management, cloud-native security controls).
• Helping to monitor and analyze security events, supporting alert triage, incident investigation, and response activities in collaboration with security and infrastructure teams.
• Participating in vulnerability assessments, remediation follow-up, and continuous hardening of systems (servers, networks, endpoints, and cloud services).
• Contributing to the implementation of security baselines, configuration standards, and alignment with recognized frameworks such as NIST, ISO 27001, CIS Benchmarks, Zero Trust, and MITRE ATT&CK in a pragmatic way.
• Working on identity and access security with solutions like Active Directory, Entra ID (Azure AD), MFA, conditional access, RBAC and PAM, together with the infrastructure team.
• Supporting root cause analysis for security incidents and proposing long-term improvements to strengthen the overall security posture.
• Documenting policies, procedures, configuration standards, and incident reports, and sharing knowledge with colleagues and stakeholders.
• Providing security guidance to IT teams and projects, and participating in security committees and technical reviews as a trusted partner.

You:

• Have around 3 years of experience in IT security engineering, security operations, or infrastructure security, ideally in a multi-technology environment (on‑premises and/or cloud).
• Bring a solid foundation in some of the following areas (and a willingness to grow on the others): SIEM and endpoint security, IAM (AD / Entra ID / MFA / conditional access), Windows Server security, Azure and cloud security, or basic network and endpoint security.
• Are familiar with several security technologies such as EDR/XDR, firewalls/IDS/IPS, vulnerability scanners, DLP, and have exposure to at least one security framework (NIST, ISO 27001, CIS, Zero Trust, MITRE ATT&CK).
• Enjoy working collaboratively with infrastructure and operations teams and feel comfortable communicating with different technical and non-technical stakeholders.
• Are structured, curious, and detail‑oriented, with a strong interest in continuous learning and improving security practices over time.
• Ideally hold or aim to obtain security-related certifications (e.g. AZ‑500, SC‑200, Security+, CISSP, CEH); the company will support your development and certification path.
• Speak fluent English (C1 level); French or German are a strong asset in the local context.