1. Home
  2. IT development
  3. Audit Remediation Security Expert

Offers “Axa”

New
Axa

Audit Remediation Security Expert

  • Rabat, MOROCCO
  • IT development
Apply Now

Job description

*

BUSINESS UNIT STATEMENT:

To support our business strategy and digital transformation, AXA is setting up a new information security practice to ensure a coordinated response to the increasing threat of cybersecurity, enabling consistent decision-making across the organization.

Our vision of information security is to protect our stakeholders by securing our information resources, managing our cyber risks and enabling effective and efficient business strategies that are fully sponsored by executives and supported by all AXA employees.

MISSION:

The main mission is to perform local operations and processes for the security of privileged access (Accounts, privilege, recertification ...) with a contribution to standardize the management of all AXA privileged accounts and provide support to users on security topics in their accounts.

It is also needed to promote the policy, support the development of strong and sustainable processes.

Description

Level*

Security Management:

• Analyze the accounts current state at AXA privileged access level.

• Pilot and implement actions from the audit project

• Manage the recertification accounts campaign according to the process defined by the Group Operations PUAM central team

• Manage account security incidents and have a sense of analysis to detect authorization vulnerabilities granted to the accounts.

• Manage the relationship with different parties involved in the management of Windows accounts. (Not only) we still have to define the list of technologies to be controlled

• Manage security request management process in SILVA / Service Now

Critique

Reporting Service:

<-- [if supportLists]-->· <--[endif]-->Manage the weekly recertification report

<-- [if supportLists]-->· <--[endif]-->Participate in the monthly security incidents dashboard for windows accounts (not only)

<-- [if supportLists]-->· <--[endif]-->Provide a monthly analysis of service level trends.

Important

Desired profile

Qualifications :

QUALIFICATIONS:

Education and Experience:

·  Minimum Bac +4 in Security Engineering.
·  Minimum 4 years of IT Security, Risk, Audit, or information system experience in a dynamic enterprise IT environment is highly recommended

Certification:

·  An information Security Certification is highly desired (ISO27001 or/and equivalent),
·  ITIL V3 certified (Minimum Foundation level).

Overall work experience in the field:

·  Global technical vision of account management, AD.
·  Global technical vision of the main security tools / environments:
· 
·  PKI, SIEM, SOC, authentication, IPSEC, AD security, operating system security, Windows account security,
·  Knowledge of legal and compliance aspects.
·  Strong background in Identity & Access Management (CyberArk),
·  Relevant Experience in SharePoint Configuration and Administration
·  Knowledge in: Public cloud environment (Azure, AWS), PowerBI, Active Directory and LDAP,
·  Basic Knowledge in a data bae technology (Oracle, SQL, Mongo DB, …)
·  Strong communication skills
·  Good knowledge in scripting (Power shell)

SKILLS & ABILITIES:

·  Intercultural receptivity and flexibility,
·  Organized with proven ability to organize workload, meet deadlines and use time effectively,
·  Good interpersonal and communication skills to work effectively in a team,
·  Ability to operate in a matrix structure,
·  Good sense of analysis,
·  Professional working proficiency in English & French. (Written and verbal)
·  Strong learning aptitude and ability to learn new technologies independently.

Make every future a success.
  • Job directory
  • Business directory
    •