Cyber Security Analyst

**Job Description**:
**About AXA**

As a world-leading insurance company, we act for human progress by protecting what matters. With 153,000 employees in 54 countries working for 105 million customers, we’ve created a truly dynamic and vibrant community. Inclusion and diversity link closely with our values, and together we’re nurturing a culture of respect, for each other, for our customers and the communities around us. Join AXA and you’ll feel like you belong, are included and can thrive. You’ll be able to shape the way you work and truly grow your potential as you seek out new opportunities, push boundaries and benefit people in critical moments of their lives. This is your chance to build the tomorrow you want. Know you can.

**About the entity**

AXA is becoming a sustainable tech-led company and at AXA Group Operations we are one of the major catalysts for this transformation.

We set the tone by triggering and empowering the evolution of our insurance business model through technology and innovation, driving its concrete implementation globally at speed, with a high quality of advisory and execution.

We are present across 17 countries with committed, highly qualified teams. We leverage technology, data, sourcing, security and investment allocation in a global way, but also achieve economies of scale and synergies when necessary.

At AXA Group Operations, we want to be recognized in three fields of action:

- State-of-the-art Data Technology to drive customer experience
- State-of-the-art Procurement & Sourcing to drive efficiency and better manage risks
- High-Performing Global Team for stronger partnerships with AXA entities

DOMAINS OF RESPONSABILITY
With Group Operations, AXA has launched a global transversal Rapid Ransomware Response Readiness
(4R) Program to develop its Cyber Resilience. The objective is to be ready if AXA gets hit by a ransomware
attack, to limit the impact to the business by ensuring a fast containment of the attack, the eradication of
the threat and the mass recovery of the IT and business operations (the “technical response”). This
Program is part of the AXA global strategic tech & data programs portfolio sponsored by the Group CSO
and Group Head of IT Operations.
We are looking for a Secured Isolated Recovery Environment (SIRE) Intern.
Recovery environments are a fundamental requirement of modern backup infrastructure, essential to
resuming business operations after a cyberattack. A SIRE must be completely independent of a production
environment that has been compromised and include resources to verify and recover data. The SIRE is a
new workstream within the 4R Program and your assignment will consist in assisting with SIRE initial
definition and design phase, so we have a clear strategy, high-level design, implementation plan and
financial case validated by the appropriate AXA internal governances (“gating process”).
MISSIONS
For our on-prem and Cloud main platforms workloads, work with the SIRE architect lead, the Design
Advisory, the other Program workstreams, Cyber Defense, the new backup & mass restore software
external partner and other key SMEs contributors to:

- Support recovery testing sessions with Product teams & improve the process:
Preparation of the prerequisites for all testing sessions
Supporting Product teams during the testing sessions
Identifying area of improvements of the technical environment to prepare future
evolutions
Finalizing & resetting the environment for it to be ready for the next sessions
- Help work & resolve challenges on the following topics:
Internal
The recovery environment location (on-premises, Cloud, DR site )
The data transfer
The use cases (production from there? Verification & analysis ?)
The alignment with the cyber eradication and recovery plans being developed in parallel.
- Support the delivery & improvement the design (HLD) of the environment(s) by taking into

consideration the following:
Networking & isolation
Survivable backup
Infrastructure
Management & control pane
The security features (malware scan,)
- Define the implementation strategy & plan(s)
- Contribute & help prepare the governances, including:
Sponsor Meetings
Steering Committees
Operational committees
Weekly meetings
- Help steer and follow-up all ongoing activities (delivery of environment / study, define process &
mechanism to overcome challenges, identify & tackle issues, etc.
- Complete the implementation financial case based on the above

Deliverables:

- The recovery strategy leveraging a secured isolated recovery environment.
- The SIRE high-level design
- The implementation strategy and plan(s)
- The financial case

Follow standard PM good practices and quality delivery:
Internal
- Set up and facilitate project governance (animation of weekly meetings and steering committees)
- Anticipate, identify, and monitor risks along the project/manage inter dependencies (also

proposing risk mitigation or reduction activities)
- Respect of AXA Methodology, PM