Entrepreneurship in the territories: is it the right time?
La Raison d’être d’AXA Climate est d’aider la planète Terre à devenir une véritable partie prenante de toutes les entreprises.
La Mission d’AXA Climate, c’est l’adaptation climatique et environnementale. Au service de cette mission, 4 différents métiers !
- La formation - via des contenus digitaux, scientifiques pour mettre en mouvement tous les collaborateurs, leur donner les compétences et les outils.
- Le conseil - pour impacter en local, via des actions d’adaptation concrètes.
- L’assurance et le financement - pour sécuriser celles et ceux qui s’adaptent, et impactent.
Primary mission:
AXA Climate is looking for candidate with an entrepreneurial mindset who can support Security Officer into project management and security operation during a transition phase for IT operation.
Candidate must have a strong ability to organize its activities and ability to cooperate with different business domain to consolidate and develop security procedures and operations across the whole AXA Climate business.
Main domain of activities will be around Information Security but it’s possible, depending on available time and based on candidate appetite to works on other security domains, as physical security, health & safety, business continuity and crisis management.
Candidate will operate inside AXA Climate Risk domain, in security team.
Key accountabilities:
• ISO27001 Assessment
- Review the ISO27001 Control plan and operate the controls
- Suggest ISO27001 remediation actions
- Support the ISO27001 control plan execution
• Information Security policies and processes development
- Review the Information Security policies to align AXA Climate IS policies and process witt AXA Group Security requirements
- Works with Domain Tech and IS Architect to adjust operational activities according to AXA Climate IS policies
- Suggest AXA Climate tooling and process improvement for efficient IS controls into a DevOps oriented company
• Security controls and remediation (various security domains)
- Review the Information security controls and remediation plan provided by operational team (Domain Tech)
- Review the Physical Security framework and suggest improvement – depending on candidate will and capacity
- Review the Operational Resilience framework and suggest improvement – depending on candidate will and capacity
• Security assessment
- Prepare and controls the security assessment, as a control line or the audited body
