IT Security Engineer

**IT Security Engineer** **(**210000UX**)**

**PRIMARY LOCATION**: SPAIN-CATALONIA-BARCELONA

**ORGANIZATION**: AXA Partners - AP Global Operations

**CONTRACT TYPE**: Regular

**SHIFT**: Day Job

SCHEDULE**: Full-time

**DESCRIPTION**

AXA Partners “Focus & Transform strategy” is shaping Global Operations’ strategic ambition: “bringing simplicity and enforcing transversally, breaking down silos, to succeed in providing a superior customer experience”.

Global Operations has 3 strategic priorities:

- Reposition AXA Partners as the Preferred Business Partner
- Boost AXA Partners to become an Agile Global Organization
- Mature AXA Partners as a Safe, Secure and Resilient company

“Becoming a tech-led company” is one of the strategic enablers and Information and Technology will play a continuously increasing role to help AXA Partners achieve its transformation.

The AXA Partners security model relies amongst other principles on a segregation of duties between second line of defence (oversight security teams) and the first line (IT teams).

The role will have 2 reporting lines: The Regional IT Operations manager and the Head of Operational Security.

**Who are you?**

The regional IT security engineer acts both regionally and globally for AXA Partners and:

- Ensures that Information Security topics related to IT are properly addressed on his scope

As a key member of the IT Operations Security core team, this role is paramount to make IT achieve best in class security level in its activities and products.

**What does your day-to-day look like?**
- Act as the principal point of contact on IT security topics in your geographical scope by building fruitful relationship with all stakeholders (Regional and local IT, Security family).
- Translate top-down policies & requirements and ad-hoc requests into operational processes tailored to the needs and specificities of the region.
- Lead the deployment of new IT security activities in the region while ensuring proper transitioning to BAU (process documentation, RACI ).
- Actively push and follow-up initiatives pertaining to the automation/efficiency of security controls and agility in security.
- Provide reportings, bashboards and KPI/KRI’s and follow-up the execution of security controls in the region.
- Ensure proper and up to date documentation of security controls and security related IT processes in the region.
- Application security topics:
- Incident response: build and maintain an efficient incident response framework in your scope fostering collaboration with all IT teams.
- Manage and operate security solutions focusing on Identity and Access management.

LI-SP

**QUALIFICATIONS**

Technical/ Functional Knowledge, Skills and Abilities:

- Demonstrated expertise in identification/remediation of vulnerabilities
- Knowledge of development processes and tools, DevOps, DevSecOps
- Hands on experience with Node.js
- Practical experience with IAM solutions such as Auth0/Ping Identity/Okta/Saviynt or Sailpoint.
- Knowledge of security frameworks, standards, and guidelines.
- Excellent Interpersonal relations & communication skills.
- Ability to formalize technical documentation and more high-level presentations.
- Demonstrated expert judgment with the ability to quickly identify, analyse, evaluate and resolve problems.
- Ability to adapt to a fast-moving environment.
- Collaborative working to achieve collective goals, ability to facilitate transversal/cross function collaboration, create trust and develop a “share-to-succeed” mindset.
- Business acumen and understanding of organizational issues and challenges.
- Fluency in English (verbal and written).

Education, Professional Qualifications and Experience:

- Minimum 10 years of experience including 5 years as a security-oriented developer or pentester.
- Master’s degree in computer science or Information Security.
- Experience with JavaScript (Node.js ) development.
- Certifications such as OSCP, CREST CRT, TIGER, CEH preferred.
- Experience in Financial industry of other highly regulated environment preferred.

**ABOUT AXA**

AXA Group is the world leader in insurance and asset management. We protect and advise our clients at every step in their lives, by offering products and services which satisfy their needs in the areas of insurance, personal protection, saving and asset management. AXA is the leading insurance brand worldwide, with over 100 million clients. We are transforming from payer to partner for our client, with a strong focus on risk prevention.

Our mission: Empower people to live a better life.
Our values: Customer First, Courage, Integrity and One AXA.

AXA Partners is an AXA transversal business unit offering a wide range of solutions in assistance services, travel insurance and credit protection.
AXA Partners’ role is also to implement innovative solutions emerging from the AXA Innovation unit.
Our mission is to help our Corporate clients to enrich their customers’ e