Enable job alerts via email!

Senior Specialist, Agile Security and Risk Management Assessment

AXA Group

Ipswich

On-site

GBP 60,000 - 90,000

Full time

11 days ago

Boost your interview chances

Create a job specific, tailored resume for higher success rate.

Job summary

A leading company, specializing in risk solutions, is seeking a Senior Specialist in Agile Security and Risk Management Assessment. This role involves performing risk assessments, guiding project managers, and ensuring that security requirements are prioritized and met throughout the project lifecycle. The ideal candidate will have senior-level experience in security assessments and hold relevant industry certifications, contributing to creating secure and compliant project designs.

Qualifications

Senior-level experience in project risk assessments and information security.
Industry certifications such as CISSP, CISM, CRISC, GIAC, or equivalent.
Experience articulating IS risks in business language.

Responsibilities

Perform risk assessments of projects and ensure security compliance.
Work with architects to finalize security requirements in designs.
Produce closure reports for Project Security Assessments.

Skills

Analytical skills

Reporting skills

Communication skills

Attention to detail

Influencing skills

Education

Bachelor's degree in computer science, Engineering, or related field

Tools

Microsoft Office suite

Security frameworks (ISO 27005, EBIOS)

Social network you want to login/join with:

Senior Specialist, Agile Security and Risk Management Assessment, Ipswich

Client: AXA Group

Location:

Job Category: Other

EU work permit required: Yes

Job Reference: 1f588fc845ee

Job Views: 3

Posted: 02.06.2025

Expiry Date: 17.07.2025

Job Description:

Security Consultant – Project Risk Assessments

The Secure Project Lifecycle process has been established to perform risk assessments, ensuring security is considered as part of the design and throughout the project lifecycle. The SPL process governs projects within the Planview time recording and management system and those that are managed outside such as Move to the Cloud (MttC) programme.

The role will be to augment the Information Security team to perform risk assessments of projects, provide guidance, and acquire outcomes/decisions from the project manager, enterprise architect, technical architect, solutions architect, data privacy officer, project management office, strategic change development, IT Infrastructure and Operations, and penetration testers.

Discover your opportunity

The specialist will work under the responsibility of the Head of IS Services and Risk Management and will report to the Secure Project Lifecycle Team Lead. The responsibilities of the role will include the following:

Review submission of IS Criticality Assessment (ISCA) questionnaire (ISCA Dashboard)
Determine high-level security requirements and project criticality, based on standard project activities and data classification from DP pre-screening
Work with assigned architect to ensure security requirements are finalized in design (High Level Design), review with Enterprise Architecture, Solutions Architecture, Cyber Security, and Cyber Assurance
Review all security requirements and evidence provided by the project manager to support closure of each requirement, including review and feedback on ISCA questionnaire, High Level Design (HLD), and participation in technical reviews and sign-offs
Obtain necessary reports and sign-offs such as TPREP scorecard, security baseline compliance, cloud permits, code reviews, vulnerability assessments, penetration testing, and digital registration
Produce Project Security Assessment closure report
Perform final review of all open security requirements before stage gate approval, ensuring adherence to AXA XL SDLC processes
Maintain records of evidence and update project status regularly
Manage project RAG status, highlighting trending issues to management and project managers
Support risk acceptance development in collaboration with project managers
Attend meetings with stakeholders, challenge design decisions, escalate issues, and offer resolution options

All deliverables are subject to internal quality assurance and peer reviews by the Information Security team.

We’re looking for someone with these skills and abilities:

Bachelor’s degree in computer science, Engineering, or related field with senior-level experience (Required)
Experience in performing project risk assessments and information security technical risk assessments (Required)
Proficiency in security frameworks (ISO 27005, EBIOS)
Strong analytical, reporting, and communication skills (Required)
Expertise in Microsoft Office suite (Word, Excel, PowerPoint, Access) (Required)
Ability to influence and communicate effectively with diverse stakeholders (Required)
Attention to detail and presentation skills (Required)
Industry certifications such as CISSP, CISM, CRISC, GIAC, or equivalent (Required)
Experience articulating IS risks in business language and advising on risk management
Experience in security management reporting and methodologies
Experience working in multinational companies (Preferred)

Find your future

AXA XL, the P&C and specialty risk division of AXA, specializes in solving complex risks for mid-sized companies, multinationals, and individuals. We provide re/insurance solutions by combining a comprehensive capital platform, data-driven insights, leading technology, and top talent in an agile, inclusive workspace, delivering excellent client service across various lines of business.

Our innovative and flexible approach to risk solutions partners with those who move the world forward.

Get your free, confidential resume review.

or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.