The main mission of the Security Engineer Vulnerability and threat Management is to perform scans and reports using the Qualys Guard tool.
You’ll be responsible of performing and scheduling compliance and vulnerability scans on AXA network activity and infrastructure and generating reports to different teams (such as server admins, network administrators in order to mitigate scanned vulnerabilities).
The role consists also of integrating and managing different assets in the Qualys Guard modules.
Security Management :
Conduct vulnerability scanning and assessment functions related to various clients, environments, technologies, systems and appliances
Coordinate effectively with representatives of different Business Units and technology specialists
Integrate and manage assets in Qualys
Effectively communicate security vulnerabilities and risks to issue owners and assist in remediation efforts
Govern and enforce cybersecurity policies and vulnerability remediation deadlines
Develop and maintain executive dashboards and / or regular reports to communicate department-specific cybersecurity risks and threats
Reporting Service :
Provide a monthly / Weekly analysis of common vulnerabilities and compliance issues
Produce a periodic dashboard demonstrating remediation progress and cases’ status
Minimum Bac+5 in Networks and Security.
An information Security Certification is highly desired (CCNA R&S, CCNA Security, NSE4, PCCSA, MCSA, CEHv9 / v10 or / and equivalent)
Due to the sensitive nature of the task, the role holder must have a demonstrated high level of work ethics , secrecy and discretion .
A background check will be performed.
Overall work experience in the field :
Global technical vision of the main security tools / environments :
PKI, SIEM, SOC, authentication, IPSEC, AD security, operating system security, Windows account security
Experience managing data security programs like Password Vaulting, Privileged Access Management (Cyber Ark)
Experience with Identity Management concepts and processes including authorization, authentication, segregation of duties
Knowledge of best practices around data security
Experience using an ITSM tool such as ServiceNow
Strong fundamentals in networking protocols and troubleshooting
Knowledge of hacking techniques, cyber threats and security trends
At least 2 years’ experience in the cybersecurity industry
SKILLS & ABILITIES
Experience with vulnerability management tools Kenna, Nexpose, Tenable, Qualys, etc.)
Hands-on experience with Qualys , a certification is a plus
Work on maturing vulnerability management & Compliance program services and processes
Develop and improve KPIs, metrics, and trend analysis for vulnerability management functions
Take part of the implementation and operational best practices while taking ownership of tasks and / or project workstreams
PowerShell and Python scripting skills
Coding skills, such as HTML, CSS, Power Query and other languages
Analytical thinking, time management and coordination skills
Fluent English ( Very important )
Would youlike to wake up every day driven and inspired by our noble mission and to worktogether as one global team to empower people to live a better life?
Hereat AXA we strive to lead the transformation of our industry. We are looking fortalented individuals who come from varied backgrounds, think differently andwant to be part of this exciting transformation by challenging the status quoso we can push AXA - a leading global brand and one of the most innovativecompanies in our industry - onto even greater things.
In afast-evolving world and with a presence in 64 countries, our 166,000 employeesand exclusive distributors anticipate change to offer services and solutionstailored to the current and future needs of our 103 million customers.
To support our business strategy and digital transformation, AXA is setting up a new information security practice to ensure a coordinated response to the increasing threat of cybersecurity, enabling consistent decision-making across the organization.
Our vision of information security is to protect our stakeholders by securing our information resources, managing our cyber risks and enabling effective and efficient business strategies that are fully sponsored by executives and supported by all AXA employees
What We Offer
At AXA, we lead an HR policy that encourages diversity, maintains your professional and private life balance and accelerates the skills and career development : promotion of diversity, remuneration policy, training device, .
Discover everything that makes AXA an employer of choice.
Whatever your job is, we strive to offer you career opportunities. Our goal is to develop your skills to support the transformation of our changing business.