Description:
We have a new opportunity for a Senior Information Security Officer to join our team and work on security aspects of project and product delivery across AXA UK Group, including but not limited to design, delivery and building processes to ensure the controls remain in place. You’ll work with IT teams across AXA to achieve secure solutions through assessing risk and building pragmatic solutions to mitigate those risks within the AXA UK risk appetite.
Key responsibilities:
- Deliver assigned UK Security projects, enhancing our controls and closing new risks, on time and on budget
- Form adhoc cross department teams as required to make decisions that support project delivery and solve important security problems
- Build secure solutions which can be measured, for example on coverage, quantity, and quality metrics, and can be moved into a supportable and maintainable business as usual state
- Provide technical consultancy on third party risk for specific solutions
- Act as subject matter expert to the business and to other members of the Security team as required
- Proactively investigate new threats to the business and propose solutions to address them
- Ensure AXA Security Policies are met and maintained, and that new technology build has a net positive on the controls and risk posture to the UK
- Work with the UK Security team on process redevelopment, working to streamline processes, and develop new processes that allow us to improve the efficiency and/or reduce the risk of information security
Work arrangements:
At AXA we work smart, empowering our people to balance their time between home and the office in a way that works best for them, their team and our customers. You'll work at least two days a week (40%) away from home, moving to three days a week (60%) in the future. Away from home means attending the office, visiting clients or attending industry events. We’re also happy to consider flexible working arrangements, which you can discuss with Talent Acquisition.
Your skills & experience:
- Demonstrated experience in delivering information security initiatives, including change management and risk mitigation
- Sound knowledge and understanding of the issues and key information requirements impacting the IT environment
- Project management skills
- Excellent time management, including the ability to manage a demanding and variable workload with tight deadlines
- Knowledge or experience in the following areas is desirable; Windows 11 workplace, ITIL, AI, Cloud Security, Coding and Scripting, Application Security, Big Data, Server hardening, Architecture and Networking
- Strong customer focus to ensure internal stakeholder needs are met
- Relevant Professional Qualification - CISSP, CISM, MIISP desirable