Information Security Risk Officer

il y a 3 semaines

Puteaux, France AXA Funds Management Temps plein

**Key Responsibilities**

The Information Security Risk Officer is responsible to identify security risks for the organization. This defines an effective Information Security Management System (ISMS) aligned with AXA IM Risk Management. Security efforts should address risks in an effective and timely manner where and when they are needed. Assessments conducted by the IS risk officer are an integral part of all information security management activities. They are applied both to the implementation and the ongoing operation of AXA IM ISMS.

The IS risk officer is charge of the Information Security Risk Management continual process, establishing the external and internal context, the threats and the controls to assess the risks affecting AXA IM through interviews conducted with senior business representatives. He/she analyses what could happen and what the possible consequences could be, before defining in collaboration with AXA IM management what should be done and when, to reduce the risk to an acceptable level.

**Risk Management**:

- Converged Security Risk Assessment (CSRA):

- Organize the annual security risk assessment in collaboration with Group Security, AXA IM Operational Risk team and AXA IM head of Business Continuity, Health & Safety, to ensure framework alignment and achievement of common goals.
- Prepare security risk assessment interviews, leverage on existing process such as previous year CSRA assessment, Business Continuity Business Impact Analysis (BIA), Physical Security, Health & Safety site security risk assessments, Operational Risk assessments and quantifications, as well as previous year incidents, audits and controls review.
- Define key stakeholders to interview amongst AXA IM senior managers, to ensure security risk are assessed across all business, all support functions, and, across all locations.
- Analyze interview conclusions to qualify security risks affecting AXA IM globally and to review AXA IM most sensitive information (“Crown Jewels”).
- Present during the Global Security Risk Committee the formalized conclusions for approval, and follow-up on remediation action plans.
- Application Information Security Risk Assessment (AISRA):

- Define the risk treatment plan in collaboration with the Application Owner and the Global IS Officer in line with AXA IM strategy and risk appetite.
- Document and maintain risks and their remediation action plan in AXA IM GRC tool (MEGA HOPEX).
- Present during the Global Risk Committee, formalized AISRA conclusions for approval and follow-up of risk remediation action plans.
- Contribution to the documentation, run and enhancement of AXA IM Information Security Management System (SMSI) to allow the improvement of AXA IM maturity improvement on ISO 27001 standard and achievement of a certification.

**Awareness**
- Communicate about Information Security on AXA IM intranet (Workplace and other communication means) to raise awareness with news, rising threats or successes articles.
- Contribute to security initiatives, such as cyber coffee-breaks.
- Promote security during the year and lead by example.

**Cyber security watch**
- Maintain continuous cybersecurity watch (from technological, news, to regulation) that might affect AXA IM businesses, Operations, IT and Security.
- Assess impacts on AXA IM Information Security Management System and Information and Communication Technologies.
- In collaboration with relevant teams, contribute to the action plan definition and to the implementation required.

Backup AXA IM Global IS officer in managing information security incident response team by ensuring proper investigations and coordination with stakeholders during a security incident. In high impact incidents, the IS Risk Officer interacts with the crisis management team.

**Operation management**:

- Coordinate daily operations of the SIRT team composed of 1 apprentice and a center of service.
- Provide operational support for crisis management in the event of major security incidents.
- Produce regular dashboards and reporting.

**Anticipation**:

- Monitor threat intelligence feeds over hacker groups, their attack methods, Indicators of Compromission and their motivations.
- Inform the security teams of important new threats and vulnerabilities and define remediation measures to counter them in collaboration with IT teams.
- Participate in cybersecurity crisis and incident management preparation exercises

**Incident response**:

- Ensure the proper execution of the incident response process from detection to resolution of the incident.
- Monitor and coordinate remediation actions.
- Improve processes with lessons learnt from incidents to capitalize on.

**QUALIFICATIONS**

**Education/Qualifications**
- Master’s degree-level education or equivalent
- A recognized technical information security certification (e.g., ISO 27005, ISO 27001, CISSP) is a plus.

**Experience**
- At least 5 years of experience in Information Security, including

  • Information Security Risk Officer

    il y a 3 semaines

    Puteaux, France AXA Temps plein

    Référence de l’offre 2300013D Type de contrat CDI Niveau d'expérience Expérimentés Société du groupeAXA Investment Managers Famille métier IT, Data & Transformation Localisation PUTEAUX, Hauts-de-Seine **Votre rôle et vos missions**: **Key Responsibilities** The Information Security Risk Officer is responsible to identify security risks for...

  • Security Program Officer

    Il y a 2 mois

    Puteaux, France AXA Investment Managers Temps plein

    At AXA IM our purpose, to act for human progress by investing for what matters, is central to every action we take as a business. As a responsible asset manager, we actively invest for the long-term to help our clients, our people and the world to prosper. As a future Security Program Officer you will report to our Deputy Chief Security Officer and you will...

  • Security Program Officer

    il y a 2 semaines

    Puteaux, France AXA Investment Managers Temps plein

    At AXA IM our purpose, to act for human progress by investing for what matters, is central to every action we take as a business. As a responsible asset manager, we actively invest for the long-term to help our clients, our people and the world to prosper. As a future Security Program Officer you will report to our Deputy Chief Security Officer and you will...

  • Information Security Assurance

    il y a 3 jours

    Puteaux, Île-de-France AXA en France Temps plein

    Whatever their stage of life, we provide over 108 million customers with the products and services they need to progress. From insurance to personal protection, and savings to wealth management, no matter the need we're always there for them. And we're always there for our employees. In 50 countries, we work hard to inspire pride and a sense of belonging in...

  • Information Security Project Officer H/F

    il y a 3 semaines

    PUTEAUX, France AXA en France Temps plein

    Would you like to wake up every day driven and inspired by our noble mission and to work together as one global team to empower people to live a better life?Here at AXA we strive to lead the transformation of our industry. We are looking for talented individuals who come from varied backgrounds, think differently and want to BE part of this exciting...

  • Experienced Information Security Officer

    Il y a 2 mois

    Puteaux, France AXA Investment Managers Temps plein

    AXA IM est un gestionnaire d'actifs international faisant partie du groupe AXA, leader mondial de l'assurance. Notre équipe comprend de nombreuses compétences et expériences pour mieux répondre aux besoins de nos clients. Votre rôle d'Information Security Officer sera rattaché au Global Information Security Officer et vous ferez partie du département...

  • Information Security Project Officer H/F

    il y a 3 semaines

    PUTEAUX, 92800, Nanterre, France GIE Axa Temps plein

    Would you like to wake up every day driven and inspired by our noble mission and to work together as one global team to empower people to live a better life?Here at AXA we strive to lead the transformation of our industry. We are looking for talented individuals who come from varied backgrounds, think differently and want to BE part of this exciting...

  • Information Risk

    il y a 3 semaines

    Puteaux, France AXA Temps plein

    Référence de l’offre 230001LX Type de contrat CDI Niveau d'expérience Expérimentés Société du groupeGIE AXA Famille métierFinance et stratégie Localisation PUTEAUX, Hauts-de-Seine **Votre rôle et vos missions**: The AXA Group, world leader in Financial Protection, supports and advises its individual and corporate customers at every life...

  • Alternance - Information Security Officer

    Il y a 2 mois

    Puteaux, France AXA Investment Managers Temps plein

    AXA IM est un gestionnaire d'actifs international faisant partie du groupe AXA, leader mondial de l'assurance. Notre équipe comprend de nombreuses compétences et expériences pour mieux répondre aux besoins de nos clients. Votre rôle d'Alternant Information Security Officer sera rattaché au Global Information Security Officer et vous ferez partie du...

  • Alternance - Information Security Officer

    il y a 2 jours

    Puteaux, Île-de-France AXA Investment Managers Temps plein

    AXA IM est un gestionnaire d'actifs international faisant partie du groupe AXA, leader mondial de l'assurance. Notre équipe comprend de nombreuses compétences et expériences pour mieux répondre aux besoins de nos clients.Votre rôle d'Alternant Information Security Officer sera rattaché au Global Information Security Officer et vous ferez partie du...

  • Information Security Assurance

    Il y a 2 mois

    Puteaux, France AXA Group Temps plein

    Whatever their stage of life, we provide over 108 million customers with the products and services they need to progress. From insurance to personal protection, and savings to wealth management, no matter the need we’re always there for them. And we’re always there for our employees. In 50 countries, we work hard to inspire pride and a sense of...

  • Information Security Assurance

    il y a 3 semaines

    Puteaux, France AXA Group Temps plein

    Whatever their stage of life, we provide over 108 million customers with the products and services they need to progress. From insurance to personal protection, and savings to wealth management, no matter the need we’re always there for them. And we’re always there for our employees. In 50 countries, we work hard to inspire pride and a sense of...

  • Information Security Pentest PMO

    il y a 3 semaines

    Puteaux, France AXA Funds Management Temps plein

    **1. Department description: (main responsibilities, team size...)** Within the Security Department, Information security department is in charge of the design of the information security strategy, standards for AXA IM and of the management and the control of risks related to information and systems. The team is in charge of the program management,...

  • Information Security Assurance

    il y a 3 semaines

    PUTEAUX, France AXA en France Temps plein

    Whatever their stage of life, we provide over 108 million customers with the products and services they need to progress. From insurance to personal protection, and savings to wealth management, no matter the need we're always there for them. And we're always there for our employees. In 50 countries, we work hard to inspire pride and a sense of...

  • Security Program Officer

    il y a 2 semaines

    Puteaux, France AXA Investment Managers Temps plein

    AXA IM est un gestionnaire d'actifs international faisant partie du groupe AXA, leader mondial de l'assurance. Notre équipe comprend de nombreuses compétences et expériences pour mieux répondre aux besoins de nos clients. Votre rôle de Security Program Officer sera rattaché au Deputy Chief Security Officer et vous ferez partie du département AXA IM...

  • Security Program Officer

    il y a 2 semaines

    Puteaux, France AXA Temps plein

    Référence de l’offre 240002B2 Type de contrat CDI Niveau d'expérience Expérimentés Société du groupeAXA Investment Managers Famille métierIT, Data & Transformation Localisation PUTEAUX, Hauts-de-Seine **Votre rôle et vos missions**: AXA IM est un gestionnaire d'actifs international faisant partie du groupe AXA, leader mondial de...

  • Information Security Assurance

    il y a 3 semaines

    PUTEAUX, 92800, Nanterre, France GIE Axa Temps plein

    Whatever their stage of life, we provide over 108 million customers with the products and services they need to progress. From insurance to personal protection, and savings to wealth management, no matter the need we're always there for them. And we're always there for our employees. In 50 countries, we work hard to inspire pride and a sense of...

  • Information Security Assurance

    il y a 3 semaines

    Puteaux, Hauts-de-Seine, France AXA Group Temps plein

    Whatever their stage of life, we provide over 108 million customers with the products and services they need to progress. From insurance to personal protection, and savings to wealth management, no matter the need we’re always there for them. And we’re always there for our employees. In 50 countries, we work hard to inspire pride and a sense of belonging...

  • IT Risk Advisory Expert F

    il y a 3 jours

    Puteaux, Île-de-France AXA en France Temps plein

    Whatever their stage of life, we provide over 108 million customers with the products and services they need to progress. From insurance to personal protection, and savings to wealth management, no matter the need we're always there for them. And we're always there for our employees. In 50 countries, we work hard to inspire pride and a sense of belonging in...

  • IT Risk Advisory Expert

    il y a 4 semaines

    Puteaux, France AXA Group Temps plein

    Whatever their stage of life, we provide over 108 million customers with the products and services they need to progress. From insurance to personal protection, and savings to wealth management, no matter the need we’re always there for them. And we’re always there for our employees. In 50 countries, we work hard to inspire pride and a sense of...