PRESENTATION OF GROUP SECURITY
We live in an environment where social unrest, terrorism, disruptive technologies, unpredictable natural disasters, cyber risk, and misuse of information are a reality.
As a consequence, the decision of our customers to partner with an organization is going to be based on whether they trust that organization to keep them safe and secure.
Our role as Group Security is to monitor the security threats landscape, analyze and anticipate their impact on AXA Group, identify vulnerabilities and associated risks, define and oversee implementation of Group-wide security strategy, standards, instructions, and security awareness & training campaigns.
Vision: Group Security assures that AXA is trusted to be safe, secure, and resilient.
This is accomplished through:
Protect: to provide industry-leading security to assure our people, customers, and stakeholders that AXA protects them and their information.Support: to create an environment where security is embedded in everything we do.Innovate: to accelerate and support the delivery of innovations, to enable AXA's future growth plans.Enable: to ensure we have the right people, processes, technologies, and governance to drive the execution of AXA's security ambitions.Note that security includes Information Security, Operational Resilience, Physical Security, and Health and Safety.
POSITION MISSION & MAIN ACTIVITIES Job Purpose: As a second line of controls, measure and report on compliance with Security standards & instructions.
Lead Assurance activities to ensure compliance with AXA Group standards & instructions, Industry ISO standard, and internal controls.
Manage the delivery of Compliance assurance.
Direct and oversee the team conducting gap analyses with instructions and standards, Industry ISO standard, internal controls and provide recommendations and drive implementation.
Lead, manage, and coordinate reporting, investigations, and tracking of deviation identified during control assurance assessment.
Lead the definition of the Group ISO 27000 assessment strategy and approach to ensure continuous measurement and improvement in the entities.
Direct and oversee ISO 27000 program and support the entities in raising their security maturity levels through consultation, assessment, and consulting.
Lead and direct the development, implementation, and embed fit for purpose Integrated assurance management systems which meet the requirements of ISO 27000 and other relevant standards.
Direct and oversee formal ISO 27000 certification consulting and preparation to entities pursuing the certification.
The post holder will be responsible for leading a program of Governance and assurance activities across the AXA Group supporting the implementation of a cohesive QA strategy assisting entities to develop their governance and assurance strategies.
#J-18808-Ljbffr