Security Assessment Leader

Global Security Centre delivers security assessments globally for all AXA Partners entities. GSC is managing all security testing services and follow up execution and delivery. Security Assessment Leader is defining the strategy and the framework of various types of security assessments, in order to insure sufficient risk mitigation in a cost-efficient way.

**What does your day-to-day look like?**
- Manage and lead Security Assessment related services, covering all security testing activities inside AXA Partners Organization: Penetration testing, DAST, source code review, vulnerability scanning, bug bounty
- Define Application Security strategy over AXA Partners entities with CISO.
- Develop services performed by the GSC with a client-oriented mind set.
- Relationship over all the stakeholders, customers, partners and vendors in AXA Partners in order to manage escalations/bottle necks, etc.
- Manage the service-related budget and ensure a cost-efficient approach to the sourcing of talent and services
- Contribute to Vulnerability management over critical and high findings (reporting and advisory).
- Ensure the penetration testing quality and alignment with AXA Group Security framework.
- Manage, grow and organize the whole Security Assessment and Penetration Testing squad.
- Advise AXA organizations in vulnerability discovery and remediation strategies.
- Security Solutions Communicator. Cover the communication's gap between IT and Security Teams as well as with Business Owners.
- Able to translate complex technical information into a form understood and embraced by others and satisfactorily address complex customer and regulator queries and concerns.
- Drive and continuously improve related Security Services delivered by GSC based on strong technical knowledge of secure engineering principles.
- Provide quality security testing and ensuring continuous improvement in security team practices.

LI-SP

**Your Profile** Who are you?**

Leadership capacity:

- Proven capacity to manage, grow and organize the Security Assessment related services.
- Experience managing global teams larger than 15 people.
- Capacity to lead large scale projects in a global organization.

Technical/ Functional Knowledge, Skills and Abilities:

- Strong knowledge on the Software Development Life Cycle (SDLC).
- Strong knowledge on DAST, SAST and Penetration Testing activities and related frameworks.
- Capacity to advise AXA organizations on vulnerability discovery and remediation strategies.
- Able to translate complex technical information into a form understood and embraced by others and address complex customer and regulator queries and concerns.
- Strong knowledge on the OWASP ASVS framework.
- Knowledge of penetration testing tools: BURP, Qualys, Nessus, Acunetix, ZAP, Kali, Parrot, Metasploit, etc.
- Strong knowledge on Web and API security testing paradigms.

Education, Professional Qualifications and Experience:

- 5+ years of experience in security and IT roles.
- IT or Security related education is a plus.
- Demonstrated experience acting as a security specialist on security requirements in projects.
- Experience managing more than 300 penetration tests a year (plan and execute).
- Professional security certification is a plus.

**About AXA**

AXA Group is the world leader in insurance and asset management. We protect and advise our clients at every step in their lives, by offering products and services which satisfy their needs in the areas of insurance, personal protection, saving and asset management. AXA is the leading insurance brand worldwide, with over 100 million clients. We are transforming from payer to partner for our client, with a strong focus on risk prevention.

Our mission: Empower people to live a better life.

Our values: Customer First, Courage, Integrity and One AXA.

**About the Entity**

AXA Partners is an AXA transversal business unit offering a wide range of solutions in assistance services, travel insurance and credit protection.

AXA Partners’ role is also to implement innovative solutions emerging from the AXA Innovation unit.

Combining passion with advanced expertise, we design and deliver worldwide solutions for partners and communities. We protect what matters, when it matters.

**What We Offer**

By joining AXA Partners, you will work in a responsible company, which offers a real culture of expertise & diversity. Our focus is on accelerating the development of everyone’s skills, whilst offering attractive and competitive compensation and opportunities for professional development and growth.

Additionally, at AXA, we work to make a real difference to people - when amazing things happen and when we create opportunities for a better life, the feeling of pride is extraordinary.