Shift: Schedule: Full-time BUSINESS UNIT STATEMENT To support our business strategy and digital transformation, AXA is setting up a new information security practice to ensure a coordinated response to the increasing threat of cybersecurity, enabling consistent decision-making across the organization. Our vision of information security is to protect our stakeholders by securing our information resources, managing our cyber risks and enabling effective and efficient business strategies that are fully sponsored by executives and supported by all AXA employees. MISSION The main mission of the Cybersecurity Vulnerability Scanning Engineer is to check and analyze the different system servers if they contain any clear text passwords (in folders, text files, application files...) by running Script "CredzScanner", generate Reports illustrating the analysis result and analyses patterns in the result files for bulk-remediation. Share Reports with Servers Owners and offer it the necessary support to fix this critical vulnerability. Propose other methods to save and manage passwords (e.g. Keepass, Passbolt, Keeper, HyperVault, CyberArk...etc) and collaborate with stakeholders to elaborate a monitoring process to maintain the safety of system servers. Have the ability to upgrade and improve the Script in order to adapt it with the new needs. Security Management:
Analyze all system servers at AXA (SE/NE/ME/AP Datacenter's)
Perform the password hunting using CredzScanner in BAU-mode (initially the tool is run once per month in every data center)
Perform spot-checks on clear-text passwords in systems not covered by CredzScanner (e.g. in Confluence)
Pilot and implement actions from the audit project
Analyse patterns in the result files for bulk-remediation
Identifying issues owners per finding
Create SILVA tickets and assign these to issues owners
Following up with on issues not resolved within agreed timeframe
Update/Modify/Improve Scripts to cover all needs Reporting Service: . Provide a monthly analysis of " clear text password " rate in the different country/Datacenter . Produce a management dashboard demonstrating remediation progress Education
Minimum Bac+5 in Networks and Security. Certification . An information Security Certification is highly desired (CCNA R&S, CCNA Security, NSE4, PCCSA, MCSA, CEHv9/v10...or/and equivalent) Overall work experience in the field:
Global technical vision of the main security tools / environments: PKI, SIEM, SOC, authentication, IPSEC, AD security, operating system security, Windows account security
Experience managing data security programs like Password Vaulting, Privileged Access Management (Cyber Ark), Data Loss Prevention
Experience with Identity Management concepts and processes including authorization, authentication, segregation of duties
Knowledge of best practices around data security
Experience using an ITSM tool such as ServiceNow
Strong fundamentals in networking protocols and troubleshooting
At least 2 years' experience in the cybersecurity industry SKILLS & ABILITIES
Proven ability to work independently with minimal supervision; must be a self-motivated self-starter that can initiate ideas and take ownership of work
Ability to learn new technologies quickly and with minimal guidance
Capable of following and composing process and procedure documentation, training users in complex topics, and interacting positively with upper management
Critical thinking skills and the ability to solve problems as they arise
PowerShell scripting skills
Advanced knowledge in Python
Basic coding skills, such as HTML, CSS and other languages
Fluent English. (very important)
MNCJobsGulf.com will not be responsible for any payment made to a third-party. All Terms of Use are applicable.