Digital Presence Assurance Lead

Description

Company statement

With over 102 million customers in 56 countries, AXA's strong global franchises and three lines of expertise - Property & Casualty, Life & Savings and Asset Management - provide a distinctive business portfolio. As a company whose business is to protect people, we have a responsibility to leverage our skills, resources and risk expertise to build a stronger and safer society. To achieve our mission, we are committed to redefining the standards of our business so that we truly differentiate ourselves and earn the trust of our key stakeholders. AXA is setting-up a Group Information Security practice in order to reinforce its short-term risk reduction strategy, aligned with AXA strategy & culture and based on the industry standards.

Business unit statement

The position is part of the Information Security Risks & Assurance / Red Team department within AXA Group Security division. Group Security mission is to ensure that AXA is safe, secure and resilient. Throughout the Group, 1000 security professionals are working daily to protect our customers, employees, operations and brand. Our operating model gathers the three security disciplines Information Security, Operational Resilience, and Physical Security, Health & Safety to anticipate and face threats.

Red Team is an assurance function. Its mission is to present an Attacker/ Outside-in view of the robustness of our security controls. The main activities are:

Cybersecurity reputation monitoring,
Security Testing Assurance to verify AXA's entities are compliant with Group Security testing policies,
Attack Surface & Digital Presence monitoring making sure Group has a holistic and accurate view of its exposure,
Red Team & Offensive security testing of the AXA's entities Worldwide,
Identify security vulnerabilities and deviation from AXA Group standards & policies related to Security testing, provide recommendations and monitor remediations,
Report on those activities to the main AXA Group governance bodies (Group Audit Committee, ExCom etc.).

Job purpose

The Digital Presence Assurance Lead works mainly on the Attack Surface & Digital Presence monitoring part.

The main activities are:
Ensure AXA Group's large growing digital assets portfolio is adequately managed (all domain names, websites, mobile applications and social media pages used by AXA across the world)
Identify and report security risks linked to Digital Presence, follow-up on the management of those risks
Perform assurance on the controls design and effectiveness
In collaboration with Group Information Security, maintain a corpus of Group policies; guidelines and best practices consistent with the Digital Presence risk
Animate the community of Digital Presence managers in the entities and drive engagement in the topic in entities.
Report on the good application of digital presence policies across the Group and security posture of our digital assets
Support the continuous improvement of Digital Presence processes
Actively contribute to M&A in collaboration with Brand & IT Teams in order to transfer or acquire domain
Maintain the dotAXA (Meet all ICANN requirements in order to keep the dotAXA gTLD functional and operational)
Manage contract & relationship with third parties such as Registrars, Brand Protection providers, etc.
Lead a team of 4 people (2 in Spain, 1 in India and 1 in France).
Act as the subject matter expert for the team.

Key responsibilities - accountabilities Information Security
Support leadership, governance and oversight of the Group Information Security Function and act as a deputy to the Executive Manager - including budgetary management and people leadership for the Information Security function.
Support the Executive Manager to lead the Information Security team and provide oversight of Information Security activity throughout the Group - to ensure an integrated Information Security capability that supports the Group strategic intent.
Contribute to the definition of the Security strategy, framework, operating model and capabilities, bringing expert knowledge, skills, experience, best practice and innovation to enhance Information Security throughout the Group.
Be a primary Subject Matter Expert with key technical skills and high-level exposure within GO or AXA or key external parts, serving as a global point of contact for Information Security; broadens a comprehensive expertise in leading-edge theories, techniques and/or technologies within own function or discipline.
Help to influence the business and functional agendas and build internal sponsorship at the top of the organization.
Engage with relevant risk management disciplines plus geographic and other functional leadership (e.g. CEOs and Heads of Professional Families plus strategic supply partners) to align information Security to the requirements of the group.
Establish relationships with and help build a community of entity information Security representatives to support the Groups Information Security objectives and programs, ensuring compliance to policy, identifying industry best practices that complement AXA governance and security strategy.
Help to design and lead the implementation of governance requirements for Information Security throughout the Group.
Oversee and drive improvement of Information Security in Regions, Countries and entities and provide timely, accurate and relevant advice to leadership and practitioners to ensure effective implementation of security arrangements in accordance with the defined requirement.
Act as subject matter expert / key point of contact during incidents and crises providing leadership and professional support to the Group Crisis Management Teams and helping to coordinate the Information Security response to multi-entity crises as required.
Analyze emerging technology trends. Assess the impact on the business environment and drive the evolution of the framework.
Support oversight of IT implementations to ensure security is properly embedded.
Collaborate with global and regional technology, business and IS managers.

Key responsibilities - accountabilities
Contribute to and support development and implementation of the 3-year Strategy cycles for the Digital Presence and communicate it in a comprehensive manner.
Contribute to the building and implementation of the roadmap and operational projects following the strategy.
Ensure Digital and Brand / Marketing teams in all entities understand the importance of Digital Governance and their equal responsibility and ownership in partnership with Security functions.
Ensure the Digital Presence team are supported with industry best practice and Digital expertise knowledge to enhance their efficiency.
Ensure entities see Digital Governance as adding value to their local activities, improving their efficiency and reducing risk rather than a Group mandated process.
Ensure business strategy is considered at every stage of the Digital Presence function (e.g. : IA, web 3.0, accessibility & inclusion, etc.).
Establish and maintain strong relationships with key stakeholders: CIOs, CSOs and C-level of Group functions such as Group Risk, Group Brand, Group Legal or Group Communication.
Benchmark AXA's Digital governance maturity level against industry standards.
Contribute to and support the definition and enforcement of a number of controls, act as a 2nd line of defense in the Group internal control governance model Identify and track current and future risks, issues and alerts and ensure appropriate action plans are established and actively monitored. Provide status updates in a timely manner to the necessary stakeholders.
Assure efficient Standards & Policies stewardship to guarantee standardization and consistency across the Group, taking into account different regulatory environments.
Support the governing committee, with representation from key Group functions. Ensure decisions are made in accordance with AXA's digital roadmap & risk appetite. Make sure they're communicated & well-understood by entities.
Guarantee completeness, accuracy, and efficiency of the processes implemented for maintaining an inventory of all domain names, websites, mobile applications and social media pages used by AXA across the world.
Provide knowledge and expertise in Digital governance, processes and tools.
Represent the company when needed. As .axa Top Level Domain's owner, contribute to workgroups & meetings organized by ICANN (Internet Corporation for Assigned Names & Numbers), and other applicable working groups such as Brand Registry Group Important.

Required soft skills & behavioral competencies
Problem solving: Recommends solutions relevant to the complexity, scope, risk and magnitude of problems.
Interpersonal skills: Assertiveness, empathy, active listening.
Curiosity: Oral communication, persuasive skills.
Leadership: Creates an environment for developing and fostering leadership excellence.
Effectively communicates the group vision and goals and the benefits in achieving the strategy.
Takes calculated risks in decision-making and seeks inputs from the team/stakeholders for the same.
Creates mechanisms to recognize individual/group contributions & achievements.
Can effectively mentor others to acquire this competency.
Strategic Thinking: Articulates a vision, develops organizational goals and strategies.
Maintains a wider perspective, aligns actions and contributes to the enhancement of overall organizational strategy including outputs from benchmarking activities and reviews.
Understands and articulates the projected direction of the organization and how changes to it might impact the group.
Is aware of the trends in the external environment and key differentiators vis-a-vis competition and uses this information to anticipate how these changes would impact the organization.
Planning: Plans up to 2-5 years ahead, in accordance with the project/program portfolio to ensure its successful delivery. Provides input into planning and prioritization of project activities.
Required to analyze and critically evaluate information as well as formulate plans based on multiple sources of information.
Forward planning required e.g. target setting and forecasting trends.
Ability to manage action plans, review progress and make adjustments where required.
Intermediate Decision making: Advises on decisions regarding strategy, policy, and structures.
Quick to assimilate and integrate new information for informed decision making.
Monitor changes in the operating environment, quick to act upon potential opportunities.
Able to quickly evaluate a situation or issue and take the initiative within limits of authority.
Coaching and Mentoring: Coaching: The process of assisting individuals to set goals then supports the execution of the goals through establishing strategy and providing feedback, insight and guidance to enable the individual to reach their fullest potential.
Mentoring: The process in which an experienced colleague is assigned to an inexperienced individual and assists in a training and development or general support role.

Qualifications

Education

Degree or equivalent in Digital Marketing / Brand discipline or 10+ years' experience

Certification

Digital / Marketing qualifications an advantage

Overall work experience in the field

Overall experience in Digital Marketing > 10 years

Experience of working in large and matrix organizations > 10 years

Management experience working with individuals and teams from diverse cultures > 5 years

Experience of working in a multi-vendor and outsourced IT environment > 10 years

Experience in Digital Presence management > 3 years

Skills / abilities

Ability to function effectively in a matrix structure

Operate comfortably at management level

Facilitation, negotiation and conflict resolution skills

Apply analytical rigor to understand complex business scenarios

Good networking skills

Result driven / Delivery oriented

Fluent in English

About AXA

As a world-leading insurance company, we act for human progress by protecting what matters. With 153,000 employees in 54 countries working with 105 million customers, we've created a truly dynamic and vibrant community. Inclusion and diversity link closely with our values, and together we're nurturing a culture of respect, for each other, for our customers and the communities around us. Join AXA and you'll feel like you belong, are included and can thrive. You'll be able to shape the way you work and truly grow your potential as you seek out new opportunities, push boundaries and benefit people in critical moments of their lives. This is your chance to build the tomorrow you want. Know you can.

AXA is becoming a sustainable tech-led company and at AXA Group Operations we are one of the major catalysts for this transformation.

We set the tone by triggering and empowering the evolution of our insurance business model through technology and innovation, driving its concrete implementation globally at speed, with a high quality of advisory and execution.

We are present across 17 countries with committed, highly qualified teams. We leverage technology, data, sourcing, security and investment allocation in a global way, but also achieve economies of scale and synergies when necessary.

At AXA Group Operations, we want to be recognized in three fields of action: State-of-the-art Data Technology to drive customer experience
State-of-the-art Procurement & Sourcing to drive efficiency and better manage risks
High-Performing Global Team for stronger partnerships with AXA entities

#J-18808-Ljbffr