To support our business strategy and digital transformation, AXA is building a new Group Security Practice to ensure a coordinated response to the increasing cyber security threat, enable risk decisions to be made consistently across the organization and establish sustainable security capabilities that are integrated with the business. Our vision for Cyber Security is to protect our stakeholders by securing our information assets, managing our cyber risk and enabling business strategies in an efficient and effective way, fully supported by executive leadership and underpinned by all AXA employees.
Responsibilities:
- Manage firewall rules reports from Algosec platform.
- Categorize and prioritize rules remediation.
- Redefine firewall rules in order to minimize risks.
- Dispatch firewall report to relevant stakeholders.
- Drive the firewall rules remediation.
- Raise change request for Group Operations perimeter.
- Support Operations Security team for the rules review and remediation.
- Document all remediation performed in order to be auditable.
- Professional communications and reporting to relevant stakeholders and customers.
Profile and Qualifications
Education
- Bachelor degree in Computer Science or Information Security would be desirable but is not essential.
Certification
- Preferred: Security infrastructure certifications.
- Preferred: ITIL foundation.
- Preferred: Network Security certifications.
Overall work experience in the field
- Demonstrated experience in network / security infrastructure administration 5 years.
- Demonstrated experience in large and complex organisation(s) 3 years.
- Demonstrated experience in usage of ticketing tools.
Technical skills / abilities
- Ability to identify risks, threats, vulnerabilities and associated attacks that might involve: malicious code, protocol/design/configuration flaws.
- Strong troubleshooting and analytical skills.
- Understanding the Internet and detailed knowledge of network protocols (Ethernet, 802.11.X, IP, ICMP, TCP, UDP).
- Knowledge of application/services related protocols (DNS, SMTP, HTTP, FTP).
- Knowledge of network infrastructure elements and architecture (Firewall, Proxy, IPS, WAF).
- Knowledge of current security vulnerabilities and related attack methodologies.
- Detailed knowledge of packet capture analysis and usage of associated tools.
- Detailed knowledge of firewall management.
Personal skills / abilities
- Organized with a proven ability to prioritize workload, meet deadlines, and utilize time effectively.
- Good interpersonal and communication skills, works effectively as a team player.
- Common sense to make efficient and acceptable decisions.
- Willingness to continue education and to stay up to date, passionate about IT and information security.
- Ability to work under pressure.
- Ability to lookup for information and to solve unknown problems.
- Diplomacy when dealing with other parties.
- Ability to function effectively in a matrix structure.
- Cross cultural sensitivity, flexibility.
- Fluent in English.
