Information Security Project Officer - (F / H)

Would you like to wake up every day driven and inspired by our noble mission and to work together as one global team to empower people to live a better life?

Here at AXA, we strive to lead the transformation of our industry. We are looking for talented individuals from varied backgrounds who think differently and want to be part of this exciting transformation by challenging the status quo. Our goal is to push AXA as a leading global brand and one of the most innovative companies in our industry onto even greater things.

In a fast-evolving world and with a presence in 64 countries, our 166,000 employees and exclusive distributors anticipate change to offer services and solutions tailored to the current and future needs of our 103 million customers.

AXA Group headquarters, based in Paris 8th, brings together the Group's corporate activities. It coordinates the Group's strategy with its entities and is responsible for managing international projects. The 800 employees working at headquarters are distinguished by their strong international mix (39 nationalities).

Direction Presentation:

The CSO team ensures global security for GIE AXA and AXA SA across three critical security domains: IT, Physical, and Operational Resilience. We provide expertise to stakeholders to leverage a risk-driven approach and support critical and vital activities for both projects and business as usual activities.

Primary Mission:

• Maintain the GIE AXA Application/Systems Perimeter at an adequate level in compliance with Group standards on Information Security.
• Provide security guidance (technical architecture review, security risk analysis, DPIA, etc.) and assist the Business, DPO, and IT counterparts throughout projects.
• Ensure the Business adheres to security recommendations when contracting external providers and establishing Service Level Agreements.
• Ensure current and future applications adhere to Group standards with a risk-oriented approach.
• Ensure the GIE AXA and all internal suppliers properly implement follow-up actions to perpetually improve Network Security.
• Integrate security into project development and lifecycle to improve and optimize the Security Policy.
• Contribute to furthering a vision and formalizing a policy to address Cloud Security.
• Ensure project infrastructure, application, and 3rd-party risks are systematically and appropriately tested.
• Ensure operational security by implementing IT processes, upgrading existing processes, and documenting both.

Key Accountabilities:

• Ensure the GIE AXA and AXA SA Security Policy (technical and 3rd parties) fully comply with Group Security Requirements.
• Foster security as an inherent element in all Group initiatives and other OPCOs activities.
• Provide ongoing expertise and insights to the CSO to further the Security Strategy.
• Contribute to enhancing and optimizing the efficiency of control activities by working closely with all concerned stakeholders.

Core Activities:

• Assess, challenge, and review vulnerabilities and criticality to deliver risk-based insights usable by business stakeholders (DPO, workplace).
• Ensure follow-up of remediation actions post-assessment.
• Support project and business stakeholders on deficiencies found and remediations to implement.

Background and Experience:

• Bachelor's degree in Computer Science, Engineering, or related field.
• Experience in information security > 5 years.
• Experience in information risk approach and risk analysis is mandatory.
• Experience in advisory roles on IT security for business projects is a plus.
• Experience managing complex stakeholder relationships is mandatory.

Technical and Professional Skills:

• Information Security and/or Information Technology industry certifications (CISSP, CISSP, CISM, ISO27001 Lead Auditor, GIAC, or equivalent) strongly preferred.

Soft Skills and Competencies:

• Cross-cultural sensitivity and flexibility.
• Organized with proven ability to prioritize workload, meet deadlines, and use time effectively.
• Strong interpersonal and communication skills; able to deal effectively with diverse skill sets and personalities, work effectively as a team player.
• Able to explain security challenges and recommendations to non-IT stakeholders.
• Ability to function effectively in a matrix structure.
• Proven facilitation, negotiation, and conflict resolution skills.
• Strong analytical skills, applying rigor to understanding complex business scenarios.

If you wish to give a new orientation to your career within an international and dynamic group, join us. Apply online!