Social network you want to login/join with:
Senior Specialist, Agile Security and Risk Management Assessment, Ipswich
Client: AXA Group
Location:
Job Category: Other
-
EU work permit required: Yes
Job Reference: 1f588fc845ee
Job Views: 3
Posted: 02.06.2025
Expiry Date: 17.07.2025
Job Description:
Security Consultant – Project Risk Assessments
The Secure Project Lifecycle process has been established to perform risk assessments, ensuring security is considered as part of the design and throughout the project lifecycle. The SPL process governs projects within the Planview time recording and management system and those that are managed outside such as Move to the Cloud (MttC) programme.
The role will be to augment the Information Security team to perform risk assessments of projects, provide guidance, and acquire outcomes/decisions from the project manager, enterprise architect, technical architect, solutions architect, data privacy officer, project management office, strategic change development, IT Infrastructure and Operations, and penetration testers.
Discover your opportunity
The specialist will work under the responsibility of the Head of IS Services and Risk Management and will report to the Secure Project Lifecycle Team Lead. The responsibilities of the role will include the following:
* Review submission of IS Criticality Assessment (ISCA) questionnaire (ISCA Dashboard)
* Determine high-level security requirements and project criticality, based on standard project activities and data classification from DP pre-screening
* Work with assigned architect to ensure security requirements are finalized in design (High Level Design), review with Enterprise Architecture, Solutions Architecture, Cyber Security, and Cyber Assurance
* Review all security requirements and evidence provided by the project manager to support closure of each requirement, including review and feedback on ISCA questionnaire, High Level Design (HLD), and participation in technical reviews and sign-offs
* Obtain necessary reports and sign-offs such as TPREP scorecard, security baseline compliance, cloud permits, code reviews, vulnerability assessments, penetration testing, and digital registration
* Produce Project Security Assessment closure report
* Perform final review of all open security requirements before stage gate approval, ensuring adherence to AXA XL SDLC processes
* Maintain records of evidence and update project status regularly
* Manage project RAG status, highlighting trending issues to management and project managers
* Support risk acceptance development in collaboration with project managers
* Attend meetings with stakeholders, challenge design decisions, escalate issues, and offer resolution options
All deliverables are subject to internal quality assurance and peer reviews by the Information Security team.
We’re looking for someone with these skills and abilities:
* Bachelor’s degree in computer science, Engineering, or related field with senior-level experience (Required)
* Experience in performing project risk assessments and information security technical risk assessments (Required)
* Proficiency in security frameworks (ISO 27005, EBIOS)
* Strong analytical, reporting, and communication skills (Required)
* Expertise in Microsoft Office suite (Word, Excel, PowerPoint, Access) (Required)
* Ability to influence and communicate effectively with diverse stakeholders (Required)
* Attention to detail and presentation skills (Required)
* Industry certifications such as CISSP, CISM, CRISC, GIAC, or equivalent (Required)
* Experience articulating IS risks in business language and advising on risk management
* Experience in security management reporting and methodologies
* Experience working in multinational companies (Preferred)
Find your future
AXA XL, the P&C and specialty risk division of AXA, specializes in solving complex risks for mid-sized companies, multinationals, and individuals. We provide re/insurance solutions by combining a comprehensive capital platform, data-driven insights, leading technology, and top talent in an agile, inclusive workspace, delivering excellent client service across various lines of business.
Our innovative and flexible approach to risk solutions partners with those who move the world forward.
#J-18808-Ljbffr