Group Security: Second level security analyst

Location France, France
Experience level Experienced Hire
Job details sector Information Technology
Apply before Permanent offer

If you are interested in this opportunity, please apply directly through the tool.


If you have problems submitting your application, please send your resume to:, including the position you are applying to in the e-mails subject.




Required technical competencies


  • C1 – Security Architecture
  • C2 – Secure Development



Information Security Management

  • A1 – Governance
  • A2 – Policy & Standards
  • A3 – Information Securiy Strategy
  • A4 – Innovation & Business Improvement
  • A5 – Information Security Awareness and Training
  • A6 – Legal & Regulatory Environment
  • A7 – Third Party Management

Information Risk Management

  • B1 – Risk Assessment
  • B2 – Risk Management

Implementing Secure Systems

Information Assurance Methodologies

and Testing

  • D1 – Information Assurance Methodologies
  • D2 – Security Testing

Operational Security Management

  • E1 – Secure Oprations Management
  • E2 – Secure Operations & Service Delivery
  • E3 – Vulnerability Assessment

Incident Management

  • F1 - Inident Management
  • F2 - Investigation
  • F3 - Forensics

Audit, Assurance & Review

  • G1 – Audit & Review

Business Continuity Management

  • H1 - Business Continuity Planning
  • H2 - Business Continuity Management

Business skills and competences

  • J1 – Teamwork and Leadership
  • J2 – Delivering
  • J3 – Managing Customer Relationships
  • J4 – Corporate Behaviour
  • J5 – Change and Innovation
  • J6 – Analysis and Decision Making
  • J7 – Communication and Knowledge Sharing



Required soft skills & behaviourl competencies





  • Takes calculated risks in decision-making and seeks inputs from the team / stakeholders for the same.
  • Can effectively mentor others to acquire this competency

Strategic Thinking

  • Maintains a wider perspective, aligns actions and contributes to the enhancement overall organizational strategy including outputs  from benchmarking activities and reviews
  • Understands and articulates the projected direction of he organization and how changes to it  might impact the group
  • Is aware of the trends in the external environment and key differentiators vis-a-vis competition and uses this information to anticipate how these changes would impact the organization

Problem solving

  • Recommends solutions relevant to the complexity, scope, risk and magnitude of problem


  • Required to analyse and critically evaluate information as well as formulate plas based on multiple sources of information
  • Ability to manage action plans, review progress and make adjustments where required

Decision making

  • Advises on decisions regarding strategy, policy, nd structures
  • Quick to assimilate and integrate new information for informed decision making
  • Able quickly evaluate a situation or issue and take the initiative within limits of authority.

Coaching and Mentoring

  • Coaching: The process of assisting individuals to set goals then supports the execution of the goals through establishing strategy and providing feedback, insight and guidance to enable the individual to reach their fullest potential.
  • Mentoring: The process in which an experienced colleague is assigned to an inexperienced individual and assists in a training and dvelopment or general support role

Interpersonal skills

  • Assertiveness, empathy, active listening
  • Oral communication, persuasive skills





  • Bachelor degree in Computer Science, Engineering, Information Technology or adequate experience if a degree from unrelated field
  • An MSc Information Security would be desirable but is not essential


  • Information Security and/or Information Technology industry certification (GIAC, CISSP or equivalent) strongly preferred

Overall work experience in the field

  • Experience in information security domain > 7 years
  • Experience in network and/or firewall engineering, system administration, design and implementation or related field > 5 years
  • Experience in security analysis and SIEM content development > 3 years
  • Experience in penetration testing > 2 years
  • Work experience in a global organization > 3 years


Skills / abilities

  • Deep information security expertise
  • Excellent knowledge of one of the SIEM products
  • Knowledge of network technologie, Windows and Unix administration
  • Knowledge of typical security devices such as firewalls, intrusion detection systems, AV and End Point security, Web Application Firewalls, anti spam systems, event correlation systems, etc.
  • Understanding of security threats, attack scenarios; analysis and intrusion detection skills
  • Excellent analytical skills and ut-of-the box thinking
  • Excellent communication capabilities
  • Team player
  • Fluent in English 


Job purpose


  • Provide superior technical security expertise to ensure that the Security Operations Centre (SOC) is always delivering a professional service to its customers
  • Conduct detailed analytical queries and investigations, identify areas that require specific attention, identify indicators of compromise (IOC) or events of interest (EOI) that need further investigation and develop use cases and rules to be developed into the SIEM platform
  • Develop and improve Security Information and Event Management (SIEM) content and all other technologies used in the team, continually refining the rules and logic to make the detection capabilities more efficient and effective
  • Creae and enhance internal processes and procedures
  • Professional communications and reporting to SOC stakeholders and customers
  • Act as a mentor to all First Level Security Analysts, support and supervise them, ensure knowledge transfer within the team
  • Deliver qualified information about actual threats and indications, recommendations how the associatedrisk can be mitigated
  • Contribute to the overall performance and success of the Security Operations Centre 


Key responsibilities – accountabilities


  • Build on and continuously improve SOC analytics framework
  • Ensure effective operation of SIEM content: filters, rules, expressions and other identification mechanisms of the threat and vulnerability management technologies used within the SOC
  • Mentor and guide the First Level Security Analysts
  • Provides professional data analysis within the SOC processes and to SOC customers in order to drive further security measures and risk mitigation activities.
  • Responsible for execution and maintenance of SOC related analytical processes and tasks
  • Detailed technical security reporting to AXA operating companies and appropriate stakeholders
  • Work closely with other Information Security teams to ensure effective intrusion detection and incident response
  • Continually maintain and improve technical capabilities through individual development activities, accreditations and certifications to remain constantly prepared to challege the ever-evolving cyber threat


Company statement

With over 102 million customers in 56 countries, AXA's strong global franchises and three lines of expertise - Property & Casualty, Life & Savings and Asset Management - provide a distinctive business portfolio. As a company whose business is to protect people, we have a responsibility to leverage our skills, resources and risk expertise to build a stronger and safer society. To achieve our mission, we are committed to redefining the standards of our business so that we truly differentiate ourselves and earn the trust of our key stakeholders.  AXA is setting-up a Group Information Security practice in order to reinforce its short-term risk reduction strategy, aligned with AXA strategy & culture and based on the industry standards.

Business unit statement

To support our busiess strategy and digital transformation, AXA is building a new Group Information Security Practice to ensure a coordinated response to the increasing cyber security threat, enable risk decisions to be made consistently across the organization and establish sustainable security capabilities that are integrated with the business.  Our vision for Information Security is to ‘protect our stakeholders by securing our information assets, managing our cyber risk and enabling business strategis in an efficient and effective way, fully supported by executive leadership and underpinned by all AXA employees’.