Job Description

Shift: Schedule: Full-time To support our business strategy and digital transformation, AXA is setting up a new information security practice to ensure a coordinated response to the increasing threat of cybersecurity, enabling consistent decision-making across the organization. Our vision of information security is to protect our stakeholders by securing our information resources, managing our cyber risks and enabling effective and efficient business strategies that are fully sponsored by executives and supported by all AXA employees. MISSION : The main mission is to perform local operations and processes for the security of privileged access (Accounts, privilege, recertification ...) with a contribution to standardize the management of all AXA privileged accounts and provide support to users on security topics in their accounts. (it is actually larger than the AD). It is also needed to promote the policy, support the development of strong and sustainable processes...

Security Management: . Analyze the accounts current state at AXA privileged access level. . Pilot and implement actions from the audit project . Manage the recertification accounts campaign according to the process defined by the Group Operations PUAM central team . Manage account security incidents and have a sense of analysis to detect authorization vulnerabilities granted to the accounts. . Manage the relationship with different parties involved in the management of Windows accounts. (not only) we still have to define the list of technologies to be controlled . Manage security request management process in SILVA / Service Now Reporting Service: . Manage the weekly recertification report . Participate in the monthly security incidents dashboard for windows accounts (not only) . Provide a monthly analysis of service level trends. Educational Background : Minimum Bac+4 in Networks and Security.

Certification : An information Security Certification is highly desired (ISO27001 or/and equivalent) ITIL V3 certified (Minimum Foundation level)

Overall work experience in the field : Global technical vision of account management, AD, network architectures (Lan, Wan). Global technical vision of the main security tools / environments: PKI, SIEM, SOC, authentication, IPSEC, AD security, operating system security, Windows account security. Knowledge of legal and compliance aspects