Principal Technical Security Expert Applications and Development

Principal Technical Security Expert Applications and Development

Wroclaw Poland

AXA XL has an exciting opportunity for a Principal Technical Security Expert who will be responsible for embedding security (people processes and technology) within AXA XLs application and development teams. You will be required to work with projects and operational teams to develop an appropriate security strategy architecture and practices that will be embedded into our cloud and identity solutions securing appropriately our IT platforms and solutions.

DISCOVER your opportunity

The successful candidate will have a track record associated with technical security consulting / security architecture with knowledge of secure application development and testing:

• Provide thought leadership across Group Technology regarding the design and implementation of secure development techniques and testing mechanisms
• Manage and influence key stakeholders (capability owners) to provide input and support initiatives related to application development and testing improvements and enhancements
• Drive the development and enhancement of the secure development across the AXA XL IT estate
• Challenge the application testing status quo to enable the application lifecycle to be secure but also meet the needs of the business
• Take input from key stakeholder to develop and maintain the secure development and testing roadmap
• Be the global security expert / owner for largescale complex projects that are related to the development of new applications
• Managing the input from multiple architectures engineers and operations personnel to secure development and testing artefacts
• Drive the development of the security control environment for the AXA XL secure development and testing utilized by AXA XL
• Lead the security remediation projects technically related to the application development and testing
• Represent AXA XL to other AXA Group and other entities in the field of application development and testing
• Be able to demonstrate how proposed designs comply to AXA XL security policies and AXA Group Security standards
• Responsible for taking security architecture designs through AXA XLs governance processes
• Development and continuous evolution of our security target architecture and roadmaps based on sound enterprise architecture practices
• Working with Global Technology Information Security Data Protection Office and IRM teams to align the cloud and identity security control environment
• Work with Project Managers and other stake holders to produce agreed sets of deliverables work to project plans and report progress. Provide input to planning forecasting process and RAID logs where required.
• Review security technologies tools and services and make recommendations to the broader security and development teams for their use based on security financial and operational metrics

You will report within the AXA XL Cyber Defense Team that is part of the AXA XL IT team.

SHARE your talent

Were looking for someone who has these abilities and skills:

• Previous experience in either application development or application security testing
• Experience embedding security into development pipelines
• Experience of creating secure development process and governance; implemting those structures within development pipelines to secure the design coding and testing of applications
• Knowledge of industry standards such as ISO 27001 HIPAA FedRAMP Cloud Security Alliance NIST frameworks and risk methodologies
• Experience with developing security architecture within frameworks such as SABSA
• Understanding of threat landscapes and threat modeling security threat and vulnerability management and security monitoring
• Awareness of tools and techniques used by attackers to compromise applications including common application and the flaws and vulnerabilities that make them insecure
• Experience working in a consulting (internal or external) type of role
• Working knowledge of design principles relating to DLP IDS/ IPS Firewalls Proxies Identity Access Management Certificate Management SIEM Endpoint Protection Antimalware vulnerability management.
• Experience in working with the Solutions and Technical Architects to ensure solutions designs include the appropriate security guardrails to reduce risk and protect sensitive internal and external client information.
• Demonstrated experience in communicating complex security concepts both verbally and in writing to a variety of audiences
• Experience in taking ownership of tasks and demonstrate high degree of automony to ensure completion
• Personable and foster good stakeholder and peer group working relationships
• Experience in driving and supporting RFP/RFIs & SOWs including managing suppliers
• Recognised Cyber Security certifications such as CISSP CIISEC (member of fellow) CISM SANS SABSA OSCP are advantageous

FIND your future

AXA XL the P&C and specialty risk division of AXA is known for solving complex risks. For midsized companies multinationals and even some inspirational individuals we dont just provide re/insurance we reinvent it.

How By combining a comprehensive and efficient capital platform datadriven insights leading technology and the best talent in an agile and inclusive workspace empowered to deliver top client service across all our lines of business property casualty professional financial lines and specialty.

With an innovative and flexible approach to risk solutions we partner with those who move the world forward.

Learn more at

Inclusion & Diversity

AXA XL is committed to equal employment opportunity and will consider applicants regardless of gender sexual orientation age ethnicity and origins marital status religion disability or any other protected characteristic.

At AXA XL we know that an inclusive culture and a diverse workforce enable business growth and are critical to our success. Thats why we have made a strategic commitment to attract develop advance and retain the most diverse workforce possible and create an inclusive culture where everyone can bring their full selves to work and can reach their highest potential. Its about helping one another and our business to move forward and succeed.

• Five Business Resource Groups focused on gender LGBTQ ethnicity and origins disability and inclusion with 20 Chapters around the globe
• Robust support for Flexible Working Arrangements
• Enhanced family friendly leave benefits
• Named to the Diversity Best Practices Index
• Signatory to the UK Women in Finance Charter

Learn more at AXA XL is an Equal Opportunity Employer.

Sustainability

At AXA XL Sustainability is integral to our business strategy. In an everchanging world AXA XL protects what matters most for our clients and communities. We know that sustainability is at the root of a more resilient future. Our 202326 Sustainability strategy called Roots of resilience focuses on protecting natural ecosystems addressing climate change and embedding sustainable practices across our operations.

Our Pillars:

• Valuing nature: How we impact nature affects how nature impacts us. Resilient ecosystems the foundation of a sustainable planet and society are essential to our future. Were committed to protecting and restoring nature from mangrove forests to the bees in our backyard by increasing biodiversity awareness and inspiring clients and colleagues to put nature at the heart of their plans.
• Addressing climate change: The effects of a changing climate are far reaching and significant. Unpredictable weather increasing temperatures and rising sea levels cause both social inequalities and environmental disruption. Were building a net zero strategy developing insurance products and services and mobilizing to advance thought leadership and investment in societalled solutions.
• Integrating ESG: All companies have a role to play in building a more resilient future. Incorporating ESG considerations into our internal processes and practices builds resilience from the roots of our business. Were training our colleagues engaging our external partners and evolving our sustainability governance and reporting.
• AXA Hearts in Action: We have established volunteering and charitable giving programs to help colleagues support causes that matter most to them known as AXA XLs Hearts in Action programs. These include our Matching Gifts program Volunteering Leave and our annual volunteering day the Global Day of Giving.

For more information please see Experience:

Staff IC