Security Expert

Location CATALONIA, SPAIN
Experience level Experienced Hire
Job details sector Information Technology

AXA Partners “Focus & Transform strategy” is shaping Global Operations’ strategic ambition: “bringing simplicity and enforcing transversality, breaking down silos, to succeed in providing a superior customer experience”.

Global Operations has 3 strategic priorities:

•              Reposition AXA Partners as the Preferred Business Partner

•              Boost AXA Partners to become an Agile Global Organization

•              Mature AXA Partners as a Safe, Secure and Resilient company

 

“Becoming a tech-led company” is one of the strategic enablers and Information and Technology will play a continuously increasing role to help AXA Partners achieve its transformation.

The AXA Partners security model relies amongst other principles on a segregation of duties between second line of defence (oversight security teams) and the first line (IT teams).

As part of the first line of defence, and dedicated to Information security topics, AXA Partners is looking for a Security Expert  to cover both the geographical scope of Europe and be the subject matter expert on application security.

The Security Expert  will lead the regional IT teams in their execution of IT security controls by providing operational and technical expertise, ensuring the proper deployment of the security strategy, executing transversal controls and contributing to the design of secure application layer processes and controls worldwide.

The role will have 2 reporting lines: The Regional IT Operations manager and the Head of Operational Security.

DIMENSIONS OF ROLE         

-The regional IT security engineer acts both regionally and globally for AXA Partners and Ensures that Information Security topics related to IT are properly addressed on his scope

-Provides guidance and expertise on application security topics as the worldwide subject-matter expert

As a key member of the IT Operations Security core team, this role is paramount to make IT achieve best in class security level in its activities and products.

KEY RESPONSIBILITIES          

-Act as the principal point of contact on IT security topics in your geographical scope by building fruitful relationship with all stakeholders (Regional and local IT, Security family)

-Translate top-down policies & requirements and ad-hoc requests into operational processes tailored to the needs and specificities of the region

-Lead the deployment of new IT security activities in the region while ensuring proper transitioning to BAU (process documentation, RACI…)

-Actively push and follow-up initiatives pertaining to the automation/efficiency of security controls and agility in security

-Provide reportings, bashboards and KPI/KRI’s and follow-up the execution of security controls in the region

-Ensure proper and up to date documentation of security controls and security related IT processes in the region

Application security topics:

-Act as the SME on application security topics, including secure coding, secure architectures and IAM solutions

-Provide technical and practical support on applications vulnerabilities remediation

-Support AXA Partners IT teams globally on application security topics by proposing practical solutions to security challenges

-Incident response: build and maintain an efficient incident response framework in your scope fostering collaboration with all IT teams

-Manage and operate security solutions focusing on Identity and Access management

 

#LI-SP

Technical/ Functional Knowledge, Skills and Abilities: 

-Extensive and practical knowledge of application security technical topics, including

  • Demonstrated expertise in identification/remediation of vulnerabilities
  • Knowledge of development processes and tools, DevOps, DevSecOps
  • Hands on experience with Node.js

-Practical experience with IAM solutions such as Auth0/Ping Identity/Okta/Saviynt or Sailpoint

-Knowledge of security frameworks, standards, and guidelines

-Excellent Interpersonal relations & communication skills

-Ability to formalize technical documentation and more high-level presentations

-Demonstrated expert judgment with the ability to quickly identify, analyse, evaluate and resolve problems

-Ability to adapt to a fast-moving environment

-Collaborative working to achieve collective goals, ability to facilitate transversal/cross function collaboration, create trust and develop a “share-to-succeed” mindset

-Business acumen and understanding of organizational issues and challenges

-Fluency in English (verbal and written)

 

Education, Professional Qualifications and Experience:

-Minimum 10 years of experience including 5 years as a security-oriented developer or pentester

-Master’s degree in computer science or Information Security

-Experience with JavaScript (Node.js ) development

-Certifications such as OSCP, CREST CRT, TIGER, CEH preferred

-Experience in Financial industry of other highly regulated environment preferred

AXA Group is the world leader in insurance and asset management. We protect and advise our clients at every step in their lives, by offering products and services which satisfy their needs in the areas of insurance, personal protection, saving and asset management. AXA is the leading insurance brand worldwide, with over 100 million clients. We are transforming from payer to partner for our client, with a strong focus on risk prevention.


Our mission: Empower people to live a better life.

Our values: Customer First, Courage, Integrity and One AXA.


AXA Partners is an AXA transversal business unit offering a wide range of solutions in assistance services, travel insurance and credit protection.

AXA Partners’ role is also to implement innovative solutions emerging from the AXA Innovation unit.

Our mission is to help our Corporate clients to enrich their customers’ experience, with more than 9,000 employees at their service anywhere, anytime.

By joining AXA Partners, you will work in a responsible company, which offers a real culture of expertise & diversity. Our focus is on accelerating the development of everyone’s skills, whilst offering attractive and competitive compensation and opportunities for professional development and growth.

 

Additionally, at AXA, we work to make a real difference to people - when amazing things happen and when we create opportunities for a better life, the feeling of pride is extraordinary.