Services Description:

• To support our business strategy and digital transformation, AXA is building a new Group Security Practice to ensure a coordinated response to the increasing cyber security threat, enable risk decisions to be made consistently across the organization and establish sustainable security capabilities that are integrated with the business.
• Our vision for Cyber Security is to ‘protect our stakeholders by securing our information assets, managing our cyber risk and enabling business strategies in an efficient and effective way, fully supported by executive leadership and underpinned by all AXA employees’.

Deliverables

• Manage firewall rules reports from Algosec platform,
• Categorize and prioritize rules remediation,
• Redefine firewall rules in order to minimize risks,
• Dispatch firewall report to relevant stakeholders,
• Drive the firewall rules remediation,
• Raise change request for Group Operations perimeter,
• Support Operations Security team for the rules review and remediation,
• Document all remediation performed in order to be auditable,
• Professional communications and reporting to relevant stakeholders and customers.

Expertise:

Profile

·Bachelor’s degree in computer science or information Security would be desirable but is not essential,

·Network Security,

·Change management,

·Communication to Stakeholders,

·Security Incident Response documentation,

·Collect and document data from a variety of sources to assist firewall rules remediation,

·Coordination with other teams for effective implement firewall changes.

Certification preferred

·Security infrastructure certifications,

·ITIL foundation,

·Network Security certifications.

Demonstrated expertise in the field:

·In network / security infrastructure administration > 5 years,

·In large and complex organisation(s) > 3 years,

·In usage of ticketing tools.

Technical expertise

·Ability to identify risks, threats, vulnerabilities and associated attacks that might involve: malicious code, protocol/design/configuration flaws…,

·Strong troubleshooting and analytical skills,

·Understanding the Internet and detailed knowledge of network protocols (Ethernet, 802.11.X, IP, ICMP, TCP, UDP…),

·Expertise of application/services related protocols (DNS, SMTP, HTTP, FTP…),

·Expertise of network infrastructure elements and architecture (Firewall, Proxy, IPS, WAF…),

·Expertise of current security vulnerabilities and related attack methodologies,

·Detailed Expertise of packet capture analysis and usage of associated tools,

·