Mainframe Security Lead W/M

As a world-leading insurance company, we act for human progress by protecting what matters. With 153,000 employees in 54 countries working for 105 million customers, we’ve created a truly dynamic and vibrant community. Inclusion and diversity link closely with our values, and together we’re nurturing a culture of respect, for each other, for our customers and the communities around us. Join AXA and you’ll feel like you belong, are included and can thrive. You’ll be able to shape the way you work and truly grow your potential as you seek out new opportunities, push boundaries and benefit people in critical moments of their lives. This is your chance to build the tomorrow you want. Know you can.

AXA is becoming a sustainable tech-led company and at AXA Group Operations we are one of the major catalysts for this transformation.

We set the tone by triggering and empowering the evolution of our insurance business model through technology and innovation, driving its concrete implementation globally at speed, with a high quality of advisory and execution.

We are present across 17 countries with committed, highly qualified teams. We leverage technology, data, sourcing, security and investment allocation in a global way, but also achieve economies of scale and synergies when necessary.

At AXA Group Operations, we want to be recognized in three fields of action:

• State-of-the‑art Data Technology to drive customer experience
• State-of-the‑art Procurement & Sourcing to drive efficiency and better manage risks
• High‑Performing Global Team for stronger partnerships with AXA entities

Security Design and Technology (SDT) improves the security of AXA by realizing the Cyber Defense security services we need to protect AXAs technology, customers, and company. We manage the architecture portfolio of these Cyber Defense products, together with the Technology Office, product managers and (product) SMEs. SDT supports Group Operations (GO) IT security in general by providing security architecture support for the integration of its security products.

The Cyber Defense solutions are based sources, and risk expertise to build a stronger and safer society. To achieve our mission, we are committed to redefining the standards of our business so that we truly differentiate ourselves and earn the trust of our key stakeholders.

As an integral part on company instructions, regulations, and business needs around the globe. It is the role of SDT to find solutions that meet the often‑conflicting business requirements and mitigate the identified Cyber Risks.

SDT is a global team which currently consists of ten employees based in France, United Kingdom, and the United States.

As a Cyber Defense Security Designer for IBM Mainframe Z Series (and iSeries), your primary role is to maintain and improve the overall security posture of the organization’s IT infrastructure that is based on IBM Mainframe Z Series (and iSeries) technology.

You will work closely with the security team and other stakeholders to identify potential security risks and develop effective remediation strategies specific to IBM Mainframe Z Series and iSeries architecture.

You will also work closely with other Cyber Defense security product specialist/teams, on the architecture, vision and roadmap of the Cyber Security Products. The goal is to protect AXAs (including customer) data adequately.

• Conduct regular security assessments of our IBM Mainframe Z Series and iSeries infrastructure and identify potential vulnerabilities that need to be addressed
• Support the distributed and entities teams with the implement and maintenance IBM Mainframe Z Series and iSeries security policies, procedures, and standards in compliance with applicable legal and regulatory requirements
• Performs periodic detailed assessments of the operating system and infrastructure components' security configuration to identify security vulnerabilities and provides remediation alternatives
• Coordinate security incident response and investigation with the relevant parties in IBM Mainframe Z Series and iSeries area
• Provide IBM Mainframe Z Series and iSeries specific security guidance and support to other teams in the organization
• Support the implementation of IBM Mainframe Z Series and iSeries‑specific security controls for new systems and projects
• Contribute to IBM Mainframe Z Series‑specific security awareness training for employees and contractors
• Identify potential security threats for IBM Mainframe Z Series and iSeries systems and proactively recommend and take necessary actions to mitigate those risks.
• Stay up-to-date on the latest IBM Mainframe Z Series- and iSeries‑specific security threats and trends and recommend new technical, administrative, or process changes to improve security posture
• (co) lead the product vision (5y) development of a Cyber Security product.

Your responsibilities include :

• bringing the requirements of the Distributed/Mainframe teams, Entities, threat landscape and external regulations together in a clear plan to move ahead
• supporting IT project/products in their security risk mitigation by identifying the suitable prevention, detection and response methods
• improving the security level of the Mainframe and IBM iSeries
• improving the assigned Cyber Defense products, to keep them relevant in the threat landscape

We are looking for someone with the following experience and skills:

• Bachelor’s degree in computer science, Information Technology, Cybersecurity, or equivalent practical experience

• Relevant security certifications related to IBM Mainframe Z Series such as IBM Certified Administrator – Security z/OS, IBM Certified Specialist – z Security Technical Sales, etc., would be a plus
• Cloud Architecture qualification
• Cloud Security qualification

• Minimum of 8 years of experience in IT security operations, specifically related to IBM Mainframe Z Series and iSeries
• Experience with IBM Mainframe‑specific security tools and technologies, such as RACF, zSecure, Syslog, CARLA, ICSS, etc
• Knowledge of IBM Mainframe Z Series‑specific security standards and frameworks such as z/OS Security, RACF, zSecure, etc
• Experience with building out RACF reports in zSecure to support database authenticity
• Experience with onboarding and decommissioning applications into RACF structures.
• Extensive knowledge of SSO, Active Directory (AD), LDAP, public key infrastructure (PKI), privileged accounts, integration of application program interface (API), implementation and support of digital certificates, Kerberos, SSL, SSH
• USS experience is highly desired
• Understanding of IBM Mainframe Z Series‑specific network protocols, operating systems, and virtualization technologies
• Excellent analytical and problem‑solving skills for IBM Mainframe Z Series
• Strong written and verbal communication skills in providing advice, recommendations, or technical support in IBM Mainframe Z Series security
• Experience in Information Security discipline(s) > 10 years
• Experience in technical Information Security solution design > 10 years
• Hands on experience in a range of technologies e.g., Cloud, SOC, SIEM, IAM, IPS/IDS, WAF, HIPS, firewall, PUAM, Microsoft 365, Unix, Azure, Amazon Web Services, Forensics, etc. > 5 years
• Security Architecture experience, in creating and leading the security product roadmap development

• Ability to function effectively in a matrix structure
• Operate comfortably at management level
• Strong facilitation, negotiation, and conflict resolution skills
• Strong networking skills
• Team player
• Apply analytical rigor to understand complex business scenarios
• Fluent in English both spoken and written

We bring together the expertise, cultural diversity and creativity of over 8,000 employees worldwide and we’re committed to equal opportunities in all aspects of employment (gender, LGBT+, disabled persons, or people of different origins) and to promoting Diversity & Inclusion by creating a work environment where all employees are treated with dignity and respect, and where individual differences are valued.