To support our business strategy and digital transformation, AXA is building a new Group Security Practice to ensure a coordinated response to the increasing cyber security threat, enable risk decisions to be made consistently across the organization and establish sustainable security capabilities that are integrated with the business. Our vision for Cyber Security is to protect our stakeholders by securing our information assets, managing our cyber risk and enabling business strategies in an efficient and effective way, fully supported by executive leadership and underpinned by all AXA employees.
Responsibilities
:
- Manage firewall rules reports from Algosec platform
- .Categorize and prioritize rules remediation
- .Redefine firewall rules in order to minimize risks
- .Dispatch firewall report to relevant stakeholders
- .Drive the firewall rules remediation
- .Raise change request for Group Operations perimeter
- .Support Operations Security team for the rules review and remediation
- .Document all remediation performed in order to be auditable
- .Professional communications and reporting to relevant stakeholders and customers
- .Drive effective teamwork, communication, collaboration and commitment to deliver application and infrastructure vulnerability remediation's across regional and local applications
- .Manage a consolidated view of security issues and remediation plans and report on this
- .Support remediation activities for major security incidents related to networks and firewalls
- .Ensure Security Compliance and effective processes across application and infrastructure
- .Act as single point of contact within Service Delivery organization for security related activities, collaborate across organizational boundaries (e.g. Solution Delivery, Regional & local CISO's, vendors, etc.)
.
Profile and Qualificati
o
ns
Educa
- tionBachelor degree in Computer Science or Information Security would be desirable but is not essent
ial.
Certific
- ationPreferred: Security infrastructure certificat
- ions.Preferred: ITIL founda
- tion.Preferred: Network Security certificat
- ions.Information Security and/or Information Technology industry certification like CISSP, CISM, CISA, CEH, GCIH, GCIA, OSCP,
etc.
Overall work experience in the
- fieldDemonstrated experience in network / security infrastructure administration 5
- years.Demonstrated experience in large and complex organisation(s) 3
- years.Demonstrated experience in usage of ticketing
tools.
Technical skills / ab
- ilitiesAbility to identify risks, threats, vulnerabilities and associated attacks that might involve: malicious code, protocol/design/configuration
- flaws.Strong troubleshooting and analytical
- skills.Understanding the Internet and detailed knowledge of network protocols (Ethernet, 802.11.X, IP, ICMP, TCP
- , UDP).Knowledge of application/services related protocols (DNS, SMTP, HTTP
- , FTP).Knowledge of network infrastructure elements and architecture (Firewall, Proxy, IPS
- , WAF).Knowledge of current security vulnerabilities and related attack methodo
- logies.Detailed knowledge of packet capture analysis and usage of associated
- tools.Detailed knowledge of firewall mana
gement.
Personal skills / a
- bilitiesOrganized with a proven ability to prioritize workload, meet deadlines, and utilize time effe
- ctively.Good interpersonal and communication skills, works effectively as a team
- player.Common sense to make efficient and acceptable de
- cisions.Willingness to continue education and to stay up to date, passionate about IT and information s
- ecurity.Ability to work under p
- ressure.Ability to lookup for information and to solve unknown p
- roblems.Diplomacy when dealing with other
- parties.Ability to function effectively in a matrix st
- ructure.Cross cultural sensitivity, flex
- ibility.Fluent in
English.
