Job overview
The Chief Security Officer provides strategic leadership to protect AXA Global Healthcare's people, information, and operations by defining and delivering a robust security, governance, and resilience strategy aligned with corporate and regulatory requirements. The role oversees risk management, incident response, continuity planning, and regulatory compliance while ensuring security performance is understood at senior levels through KPIs/KRIs and board reporting. This role also drives a strong security culture, collaborates with Group security, and represents AXA Global Healthcare with external bodies and regulators, leading and developing the security function with managerial responsibilities for four direct reports.
Key responsibilities
* To lead the development and execution of the AXA Global Healthcare’s Business security strategy, ensuring alignment with corporate standards and regulatory requirements.
* Oversee security governance frameworks, monitor KPIs and KRIs, and report on security performance to senior leadership and the board.
* Manage security risk assessment and mitigation activities, drive incident response, business continuity, and resilience initiatives to safeguard physical and information security.
* Ensure ongoing compliance with EU, FCA, PRA, and other relevant regulatory standards. Promote a security-aware culture and embed security best practices across the organisation.
* Lead, motivate, and develop security teams and collaborate with Group security functions to ensure consistency and effectiveness.
* Represent AXA at external industry forums, regulators, and security bodies to influence standards and maintain the organisation’s reputation.
Work arrangements
At AXA, you will work at least two days a week (40%) away from home, with a future shift to three days a week (60%). This includes attending the office, visiting clients, or attending industry events as needed.
Your skills & experience
* Deep expertise within Business Continuity Management (BCP), Disaster Recovery (DR), and Crisis Management in an international business, preferably in the financial services or healthcare sector.
* Strong knowledge of FCA Operational Resilience (UK) and EU Digital Operational Resilience Act (DORA) requirements; the ability to interpret regulatory expectations and translate them into practical controls and programs.
* Experience in cross‑border regulatory environments, coordinating regulatory engagement, and vendor risk management.
* Demonstrated ability to design, implement, and test resilience capabilities across multi‑region operations.
* Excellent stakeholder management skills across senior leadership, business units, and regulators.
* Strong incident management, problem‑solving, and communication skills; producing concise reporting for executive and board audiences.
* Project/Program management experience and ability to lead multi‑workstream resilience initiatives with a pragmatic, risk‑based approach.
* Relevant certifications (e.g., BCM/DR, CISSP/CISM, ISO 22301 lead auditor, or equivalent) are desirable.
As a precondition of employment for this role, you must be eligible and authorised to work in the United Kingdom.
Please be aware that this position is a Senior Management Function role under the SM&CR regime, which means the successful candidate will be subject to an enhanced level of background screening requirements.
We’re proud to be an Equal Opportunities Employer and don’t discriminate against employees or potential employees based on protected characteristics. If you have a long‑term condition or disability and require adjustments during the application or interview process, we’re proud to offer access to the AXA Accessibility Concierge. For our support, please send an email to Bessie.Norris@axa-uk.co.uk.
#J-18808-Ljbffr