JOB PURPOSE
 Deliver Information Security Assurance Plan using a Control/Risk Assessment methodology based on ISO27001
standards
 Coordinate a team of IS Security Analyst to cover efficiently an IT domain.
 Deliver effective teamwork, communication, collaboration and commitment to deliver services

KEY RESPONSIBILITIES

Delivering IS Assurance Plan based on ISO Risk Management to secure project by design
 Conduct security risk assessment using tools to capture and record operational security risks
 Deliver Information Security Assurance Plan to help IT Projects during their implementation.
 Collaborate with Information Security Analysts, Global IT Risk assessor
o to scope the security risk management and reporting requirements from AXA Group
Operations risk management framework.
o to socialize security risk assessment schedules and requirements with stakeholders,
including third party service providers.
 Assess and classify security risk assessment outputs and rate security risks as per the AXA GO
security risk management framework.
 Collaborate with Information Security Analysts and engage with AXA GO Operational teams to
walkthrough the results of the security risk assessment and seek mitigation action plans with
timelines for each of security risks.
 Collaborate with Information Security Specialist and escalate to Global IT Risk Assessor on lack of
progress.
 Collaborate with Group Operational risk team to share all security risks that have potential for
Group wide impact.

QUALIFICATIONS
Education
 Bachelor degree in Computer Science, Engineering, or related field.
 An MSc Information Security would be desirable but is not essential
Certification
 In depth experience of Security domains, architectures and issues.
 Experience liaising with Audit / Risk functions preferred but not required
 Information Security and/or Information Technology industry certification (CISSP, CISM or equivalent) strongly
preferred
 Member of IISP or have the qualification, skills and experience to become a member
Overall work experience in the field
 Experience in Information Security field > 4 years
 Experience in security architecture > 4 years
 Experienced in developing information security remediation requirements for projects
 Experience of information security program and project governance.
 Experience in delivering messages to PM and business audiences
Skills / abilities
 Cross cultural sensitivity, flexibility
 Autonomy
 Organized with a proven ability to prioritize workload, meet deadlines, and utilize time effectively
 Good interpersonal and communication skills, works effectively as a team player
 Ability to function effectively in a matrix structure
 Good analytical skills
 Fluent in English & French

Our mission at AXA is to empower people to live a better life. We have to move from a perceived payer of claims
to a strong partner in life for our customers. Thus, our role as Group Operations must be to support and to
empower all AXA teams in the best way to achieve together this meaningful aspiration.
The most powerful levers to achieve this can be summarized as Innovation and Execution, and will drive all
Operations teams:
 Innovation: To create and provide the prerequisites and opportunities for all AXA teams to develop leading
innovative solutions for the needs of our current and future customers
 Execution: To create an environment which allows our teams all over the world to bring their ideas to reality
and make our strong promise to the customers happen
Our concrete goals are:
 Reinforce and realize our value creation for the global AXA organization;
 Support and foster innovation across AXA in a close alignment and teaming with Group Business Innovation;
 Embed simplicity and empowerment in our day to day working as well as ensure that we powerfully contribute
to AXA’s mission and strategy.

• Security Assurance Design
• Risk Assessment Specialist