About the role : 

Within the Group Security organization, the Group Operations Security / Information Security / LOA
Risk Assessment team provides AXA colleagues with a range of security services covering
Infrastructure and Applications Products. It is part of a larger security community across the globe,
working hard every day to ensure that the Group is trusted to be safe, secure and resilient. Security is
a top priority for AXA and the protection of the data for our 100+ million customers.

Responsibilities :

  • Delivering IS Assurance Plan based on ISO Risk Management
  • Conduct security risk assessment using tools to capture and record operational security risks
  • Deliver Remediation Plan to help IT Products to secure them
  • Collaborate with Information Security Analysts, Global IS Risk assessor
  •  to scope the security risk management and reporting requirements from AXA Group Operations risk management framework.
  • to socialize security risk assessment schedules and requirements with stakeholders, including third
    party service providers.
  • Assess and classify security risk assessment outputs and rate security risks as per the AXA GO
  • security risk management framework (based on ISO 27001)
  • Collaboration with Information Security Analysts and engage with AXA GO Operational teams to
  • walkthrough the results of the security risk assessment and seek mitigation action plans with timelines for each of security risks.
  • Collaboration with Information Security Specialist and escalate to Global IS Risk Assessor Lead on
    lack of progress.
  • Collaboration with Group Operational risk team to share all security risks that have potential for
    Group wide impact.

Candidate requirements :

– 3 years Experience in security architecture + 3 years Experience in developing information security
remediation requirements
– Experience in Information Security field + Experience in delivering messages to Product Managers
and business audiences
– Risk Management frameworks knowledge + Cloud/Cloud security on Azure and AWS knoledge
– Bachelor degree in Computer Science, Engineering, or related field + An MSc Information Security
would be desirable but is not essential Certification.
– In depth experience of Security domains, architectures and issues.
– Experience liaising with Audit / Risk functions preferred but not required
– Information Security and/or Information Technology industry certification (CISSP, CISM or
equivalent) strongly preferred
– Member of IISP or have the qualification, skills and experience to become a member Overall work
experience in the field
[Skills / abilities]
– Cross cultural sensitivity, flexibility + Autonomy
– Organized with a proven ability to prioritize workload, meet deadlines, and utilize time effectively
– Good interpersonal and communication skills, works effectively as a team player
– Ability to function effectively in a matrix structure + Good analytical skills
– Fluent in English & French and Spanish are desirable.
– Technical on the maximum of platforms and solutions is highly desirable
– SOC Service (technological hands-on experience), Pentest, Architecture definition, network diagrams
analisys and solutions proposal, etc.

Job Overview
We use cookies to improve your experience on our website. By browsing this website, you agree to our use of cookies.

Sign in

Sign Up

Forgotten Password