Ingeniero de Seguridad en Criptografía y Gestión de Claves

Our vision of information security is to protect our stakeholders by securing our information resources, managing our cyber risks, and enabling effective and efficient business strategies that are fully sponsored by executives and supported by all AXA employees.

As part of its strategy, Cyberdefense needs to reinforce the team with a project management Consultant service on Encryption service.

The Service will implement new features or scenarios of Encryption service in some entities according to CyberDefense, Encryption Product, and entities needs / constraints. The deployment will be done according to Encryption Project Management and Product constraints / requirements.

Scope of Service :

1. Responsible for the execution of Encryption BAU Activities based on the technology Thales CipherTrust Security Manager (CTM) + Luna (HSM Technology) including :
2. Onboarding of new encryption applications based on the AXA Encryption service constraints
3. Run the platform in terms of performance, resilience, quality, and SLA required
4. Recertificate use cases offered
5. Monitor the Encryption platform regularly and remediate possible issues, incidents, or problems.
6. Manage new requests from applications' owners to onboard Encryption use cases
7. Manage required use cases or integrations with different AXA products / tools including: Privileged Account Management, SIEM, Patching, Virtual hosts console, etc.
8. Support Encryption program activities when required including :
9. Migration of Encryption use cases (Agent or agent-less) between different platforms
10. Manage new required use cases or integrations with different AXA products / tools including: Privileged Account Management, SIEM, Patching, Virtual hosts console, etc.
11. Support during technical sessions where activities execution plan definition or troubleshooting sessions
12. Identify possible blocking points or incompatible / risky topics that may interfere with the Program or Service goals and propose remediation / mitigation solutions.
13. Support definition, study, and deployment of possible new use cases / features in Encryption CTM platform
14. Operate with usual tools / products required for daily work including: Change Management process, Incident and Request management tool, CMDB, CTM reports, etc.
15. Security by default: All activities, both BAU or Program supporting, will always supersede Security policies and practices, and in specific activities will provide feedback / remediation actions for improving the security level of the platform, such as during a Pentest campaign.

Expertise

• Technical Expertise in Cryptographic techniques
• Experience with Thales KMS: CipherTrust Security Manager & Luna HSM
• Knowledge of Key Management Interoperability Protocol
• Expertise in PAM products: CyberARK + authentication methods (SSH, GUI, SSL / RSA, Private / Public keys)
• Stakeholder management: The Service needs to handle communications with applications' owners to manage their delivered / requested use cases and manage their expectations within the Encryption Product / Project team.
• IT Security Expertise

Certification

• Agile methodology (e.g., SCRUM or equivalent) is an advantage
• Technical or Security certifications are an advantage

Overall Expertise in the fields

• Experience working in a complex international environment
• Expertise in Security, Network, or Infrastructure solutions
• General IT expertise
• Knowledge of Cipher technology

Language

• English is mandatory (including technical Information Security English)
• Spanish is preferred
• French is a plus

J-18808-Ljbffr