Cyber Security %26 Resilience – Rapid Ransomware Response Readiness Trainee

Job description

*

CONTEXT
As an integral part of AXA, at AXA Group Operations (AXA GO) we create innovative technology and data solutions to help AXA fulfil its ambition of being a customer-focused, tech-led company. AXA GO is a young and dynamic division launched in 2019 and comprises 8,000 employees across 17 countries all around the globe from Paris, France to Pune, India. We are the ones providing advice, steering technological choices and giving AXA
access to innovations that will support its transformation into a customer-centric tech-led company. For this, we work in close partnership with all AXA entities.
With Group Operations, AXA has launched a new global transversal Ransomware Response Readiness Program to develop its Cyber Resilience. The objective is to be ready if AXA gets hit by a ransomware attack, to limit the impact to the business by ensuring a fast containment of the attack, the eradication of the threat and the restoration of the IT operations.

More specifically :
• An upfront analysis of ransomware attack scenarios risks and the associated detailed procedures to support the prompt identification of weaknesses exploited by cyber criminals and “backdoors”.
• The technical ability to fast isolate affected portions of our infrastructure through “isolation buttons” to stop the attack from spreading
• The definition of a decision-making protocol with clear roles and responsibilities, key alert & escalation and communications processes
• The safe recovery from the attack through a methodical eradication approach of the malware and a “massive restoration” on our key IT platforms
• A sustainable operating model to continuously test and exercise with all the key stakeholders (incl. entities) the end-to-end containment, eradication and restoration plans.

The PMO trainee will report directly to the AXA Program Director.

DOMAINS OF RESPONSABILITY
1. Technical Delivery Support
Provide technical delivery support to one or several of the following 3 projects: (1) backup and mass restoration,
(2) secured isolated recovery environment and (3) Cyber eradication and recovery plan. Some examples of
support areas that will need to fine-tuned depending on your precise arrival date and projects phase:
• Cyber eradication automation initiative to expel the hackers
• Cyber recovery readiness assessment with several technical teams (network, identity…)
• Crisis exercises simulation
• Cyber recovery benchmarking exercise with other organisations & through the Cyber Campus
• Backup & mass restore technical tests follow up

2. Project Management Support
Support the technical project managers efforts to secure the OTOBOSOQ* delivery:
• Ensure the maintenance of the projects roadmap and associated projects planning
• Track projects execution Vs the baseline plan and key milestones
• Follow project execution KPIs
• Contribute to the preparation of major governance meetings
• Manage project execution risks and associated mitigation plan
• Knowledge Management: common principles and tooling to manage the projects documentation
• Overall financial follow-up

What you will learn and develop
• Ability to work in a very multi-cultural and global environment
• 360° understanding of key streams of work required to run a very large transformation Program
• The tools and frameworks to organise the work efficiently when running a complex Program
• The knowledge of the Cyber Resilience key topics and challenges
• The understanding of the ransomware threats landscape and the stakes for a company like AXA
• Take end-to-end ownership of some deliverables
• Get exposed to senior stakeholders in the organisation

Desired profile

Qualifications :

SKILLS
Technical skills and Experiences
o English: Very advanced level (spoken and written)
o Good general knowledge of IT Infrastructure and the IT ecosystem overall
o Ability to digest complex information (sometimes technical) to present a clear summary for decisionmaking and actions
o Nice to have but not mandatory
o Knowledge of the processes and practices around operational resilience and cyber security
o Knowledge and experience of PM standards and tools (project management life cycle, planning…)

Behavioural skills
o Embraces diversity and can manage disagreements to deliver mission objectives in respect of individuals, opinions, background, and values.
o Good listening skills, ability to understand organizational complexities, and work under pressure.
o Ability to analyse complex information, connect the dots, understand the big picture and to synthesise ideas.
o Communication, the profile is able to animate meetings ensuring the achievement of set objectives, workshop with heterogeneous attendance
o Results oriented: ability to work in an agile project mode in an autonomous way, keeping the focus on achieving his/her objectives and showing perseverance. The candidate is able to exchange information in a pragmatic and efficient way in a matrix organization, understanding and respecting roles and responsibilities in the organization.
o Adapts quickly to changes, demonstratesspeediness to perform complex tasks efficiently in fast - paced, moving or uncertain environments.
o Stakeholder management skills, the profile is able to adapt and to rate with various stakeholders at all levels (seniority and role) in AXA.
o Rigorous, ensuring discussions and taken decision are recorded and followed-up with particular care of details.

*OTOBOSOQ: On Time, On budget, On Scope, On Quality