Security Consultant, Information Security
- Employer
- AXA XL
- Location
- Ipswich, United Kingdom
- Salary
- Competitive
- Closing date
- 1 Nov 2024
View moreView less
- Sector
- Engineering, IT, Security
- Job Role
- Security Consultant
- Job Type
- Permanent
You need to sign in or create an account to save a job.
Security Consultant, Information Security
Onshore (UK) 3 days on site in Ipswich
The role will be to provide security expertise to programs as well as AXA XL sub-entities. You will provide dedicated support and security related technical expertise to your respective business partners to enable the business to deliver safe and secure services.
The role will involve working with key business partners and project managers to understand and guide them through the security due diligence process. This includes performing risk assessments of current product increments, provide guidance and acquire outcomes/decisions from the project managers, enterprise architect, technical architect, solutions architect, data privacy officer, portfolio management office, strategic change development, IT Infrastructure and Operations and penetration testers. This role entails supporting existing relationships, ensuring business partners are kept up to date with security initiatives, whilst supporting them to implement good security.
DISCOVER your opportunity
The Security Consultant will work under the responsibility and report into the Senior Program Manager. The responsibilities of the role will include the following:
• Partnering with AXA XL business units including Innovation and Data Analytics, AXA XL Re-Insurance and others to ensure security is managed effectively.
• Manage governance to support these activities.
• Raise awareness of all security activities with understanding of risk impact and reporting.
• Providing Information Security consultancy including advice for; projects, solution design, audit/assurance and application of security policy, standards, regulation, and good practice.
• Ensure ad-hoc review meetings with stakeholders take place, as needed.
• Supporting the assessment and interpretation of risk, recommending risk treatment options, tracking, and supporting remediation or acceptance.
• Develop and maintain relationship with business partners to proactively engage and understand plans and to ensure security requirements are considered.
• Review of in-scope project security requirements and evidence provided by the project manager or scrum master to support closure of Secure Project Lifecycle processes where the business units require support.
• Liaise between business units to support development of Risk Acknowledgement and Mitigation Plans (RAMPs).
SHARE your talent
SHARE your talent
We're looking for someone who has these abilities and skills:
• Bachelor's degree in computer science, Engineering, or related field
• Excellent knowledge of working within an Agile Framework such as SAFe
• Advanced knowledge of working in a DevSecOps environment
• Knowledge of performing project risk assessments
• Experience in performing Information Security technical risk assessments
• Proficient in information security risk and governance frameworks (ISO 27005, EBIOS)
• Expert analytical and reporting skills
• Expert in Microsoft Office (Word, Excel, PowerPoint, Access)
• Ability to effectively communicate and positively influence diverse stakeholders and team members.
• Excellent attention to detail and the ability to create clear, concise, and engaging presentations
• Information Security certification (CISSP, CISM or equivalent)
• Experience in articulating IS risks in business language and advising on the appropriate risk management action
• Experience in information security management reporting and related methodologies
• Experience in multinational companies
FIND your future
AXA XL, the P&C and specialty risk division of AXA, is known for solving complex risks. For mid-sized companies, multinationals and even some inspirational individuals we don't just provide re/insurance, we reinvent it.
How? By combining a comprehensive and efficient capital platform, data-driven insights, leading technology, and the best talent in an agile and inclusive workspace, empowered to deliver top client service across all our lines of business - property, casualty, professional, financial lines and specialty.
With an innovative and flexible approach to risk solutions, we partner with those who move the world forward.
Learn more at axaxl.com
Inclusion & Diversity
AXA XL is committed to equal employment opportunity and will consider applicants regardless of gender, sexual orientation, age, ethnicity and origins, marital status, religion, disability, or any other protected characteristic.
At AXA XL, we know that an inclusive culture and a diverse workforce enable business growth and are critical to our success. That's why we have made a strategic commitment to attract, develop, advance and retain the most diverse workforce possible, and create an inclusive culture where everyone can bring their full selves to work and can reach their highest potential. It's about helping one another - and our business - to move forward and succeed.
Learn more at axaxl.com/about-us/inclusion-and-diversity . AXA XL is an Equal Opportunity Employer.
Sustainability
At AXA XL, Sustainability is integral to our business strategy. In an ever-changing world, AXA XL protects what matters most for our clients and communities. We know that sustainability is at the root of a more resilient future. Our 2023-26 Sustainability strategy, called "Roots of resilience", focuses on protecting natural ecosystems, addressing climate change, and embedding sustainable practices across our operations.
Our Pillars:
For more information, please see axaxl.com/sustainability
Onshore (UK) 3 days on site in Ipswich
The role will be to provide security expertise to programs as well as AXA XL sub-entities. You will provide dedicated support and security related technical expertise to your respective business partners to enable the business to deliver safe and secure services.
The role will involve working with key business partners and project managers to understand and guide them through the security due diligence process. This includes performing risk assessments of current product increments, provide guidance and acquire outcomes/decisions from the project managers, enterprise architect, technical architect, solutions architect, data privacy officer, portfolio management office, strategic change development, IT Infrastructure and Operations and penetration testers. This role entails supporting existing relationships, ensuring business partners are kept up to date with security initiatives, whilst supporting them to implement good security.
DISCOVER your opportunity
The Security Consultant will work under the responsibility and report into the Senior Program Manager. The responsibilities of the role will include the following:
• Partnering with AXA XL business units including Innovation and Data Analytics, AXA XL Re-Insurance and others to ensure security is managed effectively.
• Manage governance to support these activities.
• Raise awareness of all security activities with understanding of risk impact and reporting.
• Providing Information Security consultancy including advice for; projects, solution design, audit/assurance and application of security policy, standards, regulation, and good practice.
• Ensure ad-hoc review meetings with stakeholders take place, as needed.
• Supporting the assessment and interpretation of risk, recommending risk treatment options, tracking, and supporting remediation or acceptance.
• Develop and maintain relationship with business partners to proactively engage and understand plans and to ensure security requirements are considered.
• Review of in-scope project security requirements and evidence provided by the project manager or scrum master to support closure of Secure Project Lifecycle processes where the business units require support.
• Liaise between business units to support development of Risk Acknowledgement and Mitigation Plans (RAMPs).
SHARE your talent
SHARE your talent
We're looking for someone who has these abilities and skills:
• Bachelor's degree in computer science, Engineering, or related field
• Excellent knowledge of working within an Agile Framework such as SAFe
• Advanced knowledge of working in a DevSecOps environment
• Knowledge of performing project risk assessments
• Experience in performing Information Security technical risk assessments
• Proficient in information security risk and governance frameworks (ISO 27005, EBIOS)
• Expert analytical and reporting skills
• Expert in Microsoft Office (Word, Excel, PowerPoint, Access)
• Ability to effectively communicate and positively influence diverse stakeholders and team members.
• Excellent attention to detail and the ability to create clear, concise, and engaging presentations
• Information Security certification (CISSP, CISM or equivalent)
• Experience in articulating IS risks in business language and advising on the appropriate risk management action
• Experience in information security management reporting and related methodologies
• Experience in multinational companies
FIND your future
AXA XL, the P&C and specialty risk division of AXA, is known for solving complex risks. For mid-sized companies, multinationals and even some inspirational individuals we don't just provide re/insurance, we reinvent it.
How? By combining a comprehensive and efficient capital platform, data-driven insights, leading technology, and the best talent in an agile and inclusive workspace, empowered to deliver top client service across all our lines of business - property, casualty, professional, financial lines and specialty.
With an innovative and flexible approach to risk solutions, we partner with those who move the world forward.
Learn more at axaxl.com
Inclusion & Diversity
AXA XL is committed to equal employment opportunity and will consider applicants regardless of gender, sexual orientation, age, ethnicity and origins, marital status, religion, disability, or any other protected characteristic.
At AXA XL, we know that an inclusive culture and a diverse workforce enable business growth and are critical to our success. That's why we have made a strategic commitment to attract, develop, advance and retain the most diverse workforce possible, and create an inclusive culture where everyone can bring their full selves to work and can reach their highest potential. It's about helping one another - and our business - to move forward and succeed.
- Five Business Resource Groups focused on gender, LGBTQ+, ethnicity and origins, disability and inclusion with 20 Chapters around the globe
- Robust support for Flexible Working Arrangements
- Enhanced family friendly leave benefits
- Named to the Diversity Best Practices Index
- Signatory to the UK Women in Finance Charter
Learn more at axaxl.com/about-us/inclusion-and-diversity . AXA XL is an Equal Opportunity Employer.
Sustainability
At AXA XL, Sustainability is integral to our business strategy. In an ever-changing world, AXA XL protects what matters most for our clients and communities. We know that sustainability is at the root of a more resilient future. Our 2023-26 Sustainability strategy, called "Roots of resilience", focuses on protecting natural ecosystems, addressing climate change, and embedding sustainable practices across our operations.
Our Pillars:
- Valuing nature: How we impact nature affects how nature impacts us. Resilient ecosystems - the foundation of a sustainable planet and society - are essential to our future. We're committed to protecting and restoring nature - from mangrove forests to the bees in our backyard - by increasing biodiversity awareness and inspiring clients and colleagues to put nature at the heart of their plans.
- Addressing climate change: The effects of a changing climate are far reaching and significant. Unpredictable weather, increasing temperatures, and rising sea levels cause both social inequalities and environmental disruption. We're building a net zero strategy, developing insurance products and services, and mobilizing to advance thought leadership and investment in societal-led solutions.
- Integrating ESG: All companies have a role to play in building a more resilient future. Incorporating ESG considerations into our internal processes and practices builds resilience from the roots of our business. We're training our colleagues, engaging our external partners, and evolving our sustainability governance and reporting.
- AXA Hearts in Action : We have established volunteering and charitable giving programs to help colleagues support causes that matter most to them, known as AXA XL's "Hearts in Action" programs. These include our Matching Gifts program, Volunteering Leave, and our annual volunteering day - the Global Day of Giving.
For more information, please see axaxl.com/sustainability
Get job alerts
Create a job alert and receive personalised job recommendations straight to your inbox.
Create alert