Application Security and DevSecOps Engineer, AXA DCP
vor 1 Monat
Job Description - Application Security and DevSecOps Engineer, AXA DCP (14003494D20240129)
Job Description
Application Security and DevSecOps Engineer, AXA DCP ( Job Number: 14003494D20240129 )
DISCOVER your opportunity
Application Security and DevSecOps Engineer, AXA DCP
London London – UK , Wroclaw – Poland, Paris – France, Milan – Italy, Barcelona or Madrid – Spain
AXA’s Management Committee is driving a unique strategic initiative - Digital Commercial Platform (DCP) – designed to transform AXA’s value proposition. Through DCP, AXA will serve existing and new clients and partners through an evolving business model, where thefocus is on risk prediction, prevention and management.
AXA DCP relies on creating a platform of AXA’s risk insights, risk management, and risk prevention capabilities to enhance and support our service offering to commercial clients and third parties. End users will be able to access a broad selection of data built on existing or developing AXA assets. The platform will also create value by monetizing unique capabilities and services for our customers, aggregating, and delivering insights from unique data sets with external partners, and fostering end-customer relationships in alignment with brokers.
AXA DCP aims to:
- Improve our underwriting pricing and claims capabilities across the commercial lines book of business of AXA Group
- Create a platform for risk management and prevention services
- Build an ecosystem of business partners
As Application security and DevSecOps engineer, your main mission will be to ensure the security and integrity of our applications and infrastructure. You will be responsible for implementing and maintaining security measures throughout the software development lifecycle, collaborating closely with development and operations teams to enforce security standards.
DISCOVER your opportunity
What will your essential responsibilities include?
- Utilize a variety of DevOps tools to identify, assess, and prioritize and manage security vulnerabilities across the organization's applications and systems and to automate and standardise system configuration.
- Support the selection and implementation of DevSecOps tools.
- Design, maintain and integrate security into the CI/CD pipeline, automating security checks and testing processes.
- Establish and monitor KPIs and KRIs related to DevOps and application security.
- Engage with stakeholders to facilitate and manage resolution, with tracking of work to report on progress.
- Foster effective partnerships with other teams (internal and external) to enhance the organization's overall security posture and minimize potential threats and to identify threats, vulnerabilities, and control improvements.
- Support the stakeholders to enable informed decision making.
- Design, implement and improve secure coding related practices, processes and standards.
- Collaborate with development and operations teams to implement security controls and best practices in the development and deployment processes.
- Participate in development and continuous improvement of security processes, policies, standards and other governing documents and ensure compliance.
- Participate in and support delivery of security audits, threat modelling and assessments and remediation of findings.
- Perform in-depth analysis of application code and infrastructure, architecture, and configurations to ensure compliance with security standards.
- Provide expert advice and guidance to development teams on secure coding practices and potential security risks in DevSecOps community meetings.
- Enforce and monitor security compliance.
- Participate in design reviews to ensure security considerations are integrated from the outset.
- Assist in the investigation and resolution of security incidents.
- Support the delivery of training sessions to increase awareness of security best practices among development and operational teams.
- Automate infrastructure provisioning and application deployment.
- Define and implement Infrastructure as Code patterns and practices
You will report to the Chief Security Officer, AXA DCP
We’re looking for someone who has these abilities and skills:
- Proven experience in security and software engineering or similar roles.
- Self-driven qualities and able to work independently as well as part of a team.
- You are fluent in English.
- Good communication (verbal/written) and influencing skills, with an ability to manage internal and external relationships up to senior levels of management.
Cloud infrastructure
- Good understanding of security standards such as ISO 27001, GDPR, OWASP, and common web application vulnerabilities.
- Experience with DevSecOps practices and tools (CI/CD, Infrastructure as code, SAST, DAST) and Agile development methodologies
- Experience with cloud platforms (e.g., AWS) , containerization technologies and security best practices (API Security, Container Security, and AWS Cloud Security)
- Experience on relational and NoSQL databases
- Experience on secure software development practices (e.g. OWASP Top 10, OWASP SAMM)
Will be a plus:
- Security Certifications (e.g., CISM, CISSP)
- Cloud Certifications (e.g. AWS Solutions Architect)
- Auditing and Compliance Certifications (e.g., CISA)
- Experience with machine learning tools and models
FIND your future
AXA XL, the P&C and specialty risk division of AXA, is known for solving complex risks. For mid-sized companies, multinationals and even some inspirational individuals we don’t just provide re/insurance, we reinvent it.
How? By combining a comprehensive and efficient capital platform, data-driven insights, leading technology, and the best talent in an agile and inclusive workspace, empowered to deliver top client service across all our lines of business − property, casualty, professional, financial lines and specialty.
With an innovative and flexible approach to risk solutions, we partner with those who move the world forward.
AXA XL is committed to equal employment opportunity and will consider applicants regardless of gender, sexual orientation, age, ethnicity and origins, marital status, religion, disability, or any other protected characteristic.
At AXA XL, we know that an inclusive culture and a diverse workforce enable business growth and are critical to our success. That’s why we have made a strategic commitment to attract, develop, advance and retain the most diverse workforce possible, and create an inclusive culture where everyone can bring their full selves to work and can reach their highest potential. It’s about helping one another — and our business — to move forward and succeed.
- Five Business Resource Groups focused on gender, LGBTQ+, ethnicity and origins, disability and inclusion with 20 Chapters around the globe
- Robust support for Flexible Working Arrangements
- Enhanced family friendly leave benefits
- Named to the Diversity Best Practices Index
- Signatory to the UK Women in Finance Charter
At AXA XL, Sustainability is integral to our business strategy. In an ever-changing world, AXA XL protects what matters most for our clients and communities. We know that sustainability is at the root of a more resilient future. Our 2023-26 Sustainability strategy, called “Roots of resilience”, focuses on protecting natural ecosystems, addressing climate change, and embedding sustainable practices across our operations.
- Valuing nature: How we impact nature affects how nature impacts us. Resilient ecosystems - the foundation of a sustainable planet and society – are essential to our future. We’re committed to protecting and restoring nature – from mangrove forests to the bees in our backyard – by increasing biodiversity awareness and inspiring clients and colleagues to put nature at the heart of their plans.
- Addressing climate change: The effects of a changing climate are far reaching and significant. Unpredictable weather, increasing temperatures, and rising sea levels cause both social inequalities and environmental disruption. We're building a net zero strategy, developing insurance products and services, and mobilizing to advance thought leadership and investment in societal-led solutions.
- Integrating ESG: All companies have a role to play in building a more resilient future. Incorporating ESG considerations into our internal processes and practices builds resilience from the roots of our business. We’re training our colleagues, engaging our external partners, and evolving our sustainability governance and reporting.
- AXA Hearts in Action : We have established volunteering and charitable giving programs to help colleagues support causes that matter most to them, known as AXA XL’s “Hearts in Action” programs. These include our Matching Gifts program, Volunteering Leave, and our annual volunteering day – the Global Day of Giving.
For more information, please see axaxl.com/sustainability
AXA XL is an Equal Opportunity Employer.
LocationLocation : GB-GB-London Other Locations : FR-FR-Paris, ES-CT-Barcelona, IT-IT-Milano, PL-PL-Wroclaw, ES-MD-Madrid Work Locations : GB London 20 Gracechurch Street 20 Gracechurch Street London London EC3V 0BG
Job FieldJob Field : Information Technology
ScheduleSchedule : Full-time
Job TypeJob Type : Standard
Local Title (France) : Application Security and DevSecOps engineer, AXA DCP
Local Class (France) : Class 5
AXA XL is an Equal Opportunity Employer and does not discriminate against any colleague or applicant for employment on the basis of race, color, national origin, religion, sex, gender identity and/or expression, sexual orientation, age, disability, genetic information, veteran status, military status or any other category protected by local law.
#J-18808-LjbffrWir haben weitere aktuelle Stellen in diesem Bereich, die Sie unten finden können
-
City of Melbourne, Österreich Australian Broadcasting Corporation VollzeitInformation Security Analyst – Application Security & DevelopmentInformation Security Analyst – Application Security & Development Security (Information & Communication Technology)Government - Federal (Government & Defence) Full time Add expected salary to your profile for insights Sydney or Melbourne: Convenient CBD locationJoin a growing team...
-
Information Security Analyst – Application Security
vor 2 Wochen
Council of the City of Sydney, Österreich Australian Broadcasting Corporation VollzeitInformation Security Analyst – Application Security & Development Security (Information & Communication Technology)Government - Federal (Government & Defence) Full time Add expected salary to your profile for insights Sydney or Melbourne: Convenient CBD locationJoin a growing team servicing cybersecurity needs to Australia’s largest public...
-
Technical Product Manager, AppSec and DevSecOps
vor 4 Wochen
Lake Macquarie City Council, Österreich theScore VollzeitTechnical Product Manager, AppSec and DevSecOpstheScore , a wholly-owned subsidiary ofPENN Entertainment , empowers millions of sports fans through its digital media and sports betting products. Its media app ‘theScore’ is one of the most popular in North America, delivering fans highly personalized live scores, news, stats, and betting information from...
-
Security Engineer
vor 1 Tag
Brisbane City, Österreich Canstar Blue Pty Ltd VollzeitCanstar, Australia's leading financial comparison site, is looking for a talented Security Engineer to join our team! 01st July, 2024 Are you a passionate and experienced Security Engineer looking to make a significant impact in a dynamic and innovative company? Canstar, Australia’s leading financial comparison site, is looking for a talented Security...
-
Information Security Specialist – Policy
vor 3 Wochen
Ipswich City, Österreich XL CATLIN VollzeitJob Description - Information Security Associate Specialist – Policy & Standards (14003315D20231220) Job Description Information Security Associate Specialist – Policy & Standards ( Job Number: 14003315D20231220 ) DISCOVER your opportunity Information Security Associate Specialist – Policy & Standards The Policy & Standards Specialist...
-
Senior Network Engineer
vor 4 Wochen
Brisbane City, Österreich PRA Australia VollzeitSenior Network Engineer - Cyber Security (GuardRails | CISCO) Contract Type: Contractor or Temp Location: Sydney - NSW IT Category: Contact Name: Contact Email: Date Published: 06-May-2024 6 Months (+extensions)Sydney Inner West / WFH (Hybrid)Interviewing immediately – Apply Now! 6 Months (+extensions)Sydney Inner West / WFH...
-
Senior DevSecOps Engineer
vor 1 Tag
City of Salisbury, Österreich Lockheed Martin VollzeitAdd expected salary to your profile for insights Lockheed Martin is a dynamic, growing, and energetic organisation offering stimulating, challenging work at the forefront of technology. Lockheed Martin is a leader in Australia’s National Security, and our collaboration with Australian industry spans the Aeronautics, Maritime, Surveillance and Defence...
-
Security Technician
vor 4 Wochen
Brisbane City, Österreich Bravis Security VollzeitBravis Security – it’s not just a job it’s a culture…….Do you strive to go the extra mile for customers, ensuring their complete satisfaction? At Bravis Security, we value that dedication. Join us and be part of a culture where excellence is a habit.Bravis Culture – We encourage you to take the extra time to exceed customer expectations....
-
Senior Security Engineer
Vor 6 Tagen
Brisbane City, Österreich Hamilton Barnes Associates Limited VollzeitEver dreamt of shaping the future of IT security?You'll have the opportunity to lead as a Senior Security Engineer, contributing to the development and implementation of cutting-edge IT security concepts, with a specific focus on infrastructure and perimeter security.You'll:You'll be at the forefront of consulting, conceptualizing, and implementing...
-
Fire And Security Engineer
vor 4 Wochen
City of Melbourne, Österreich FS Recruity Ltd VollzeitFire Alarm Service Engineer Opportunity About our client Our client provides bespoke fire and security solutions to commercial and industrial businesses throughout the UK; and is a highly respected name within the fire protection and security industry. Our recognises that each customer s requirements are unique so by choosing it to protect your people,...
-
Senior Network Security Engineer
vor 1 Woche
Brisbane City, Österreich CyberCX Pty Ltd VollzeitJoin a leading Managed Security Services team and be mentored by inspiring leaders. 14th June, 2024 CyberCX is Australia’s leading independent cyber security consultancy organisation. To continue delivering a world-class service to our clients, we are looking for a passionate Senior Security Engineer to join our Managed Security Services team. This role is...
-
MQ28 - Senior Product Security Engineer
vor 3 Wochen
Brisbane City, Österreich Boeing Company VollzeitMQ28 - Senior Product Security Engineer | BrisbaneMQ28 - Senior Product Security Engineer Posted on 31-May-2024 Application Close Date: 14-Jun-2024 Location: Brisbane Category: Position Type: Permanent Job Reference: BOE/1795122BNE Attachments: Share This: The OpportunityThe Boeing MQ-28 Ghost Bat is a globally-significant program that will...
-
Senior Solutions Engineer, Enterprise
vor 4 Wochen
Brisbane City, Österreich CloudFlare VollzeitAvailable Location: Brisbane, Queensland We have an exciting opportunity for an experienced Senior Solutions Engineer to work with our top tier customers and become their Trusted Advisor for their security and business goals. The successful applicant will have a track record of working with large enterprise organisations in driving business and technical...
-
Senior Security Technician
vor 2 Wochen
City Of Stirling, Österreich Securitas Electronic Security (WA) VollzeitAre you looking to take a senior technical leadership role?We are delighted to offer a role to join our Balcatta based team.Attitude and attention to detail, along with a willingness to learn new skills are key selection criteria. If you have a minimum of 5 year's experience as a security technician or security commissioning engineer, then we would like to...
-
Senior Network Security Engineer
Vor 7 Tagen
Brisbane, Österreich CyberCX Pty Ltd VollzeitJoin a leading Managed Security Services team and be mentored by inspiring leaders.14th June, 2024CyberCX is Australia’s leading independent cyber security consultancy organisation. To continue delivering a world-class service to our clients, we are looking for a passionate Senior Security Engineer to join our Managed Security Services team.This role is...
-
Product Security Engineer
vor 2 Wochen
Brisbane City, Österreich The Boeing Company VollzeitJob DescriptionAt Boeing, we innovate and collaborate to make the world a better place. From the seabed to outer space, you can contribute to work that matters with a company where diversity, equity and inclusion are shared values. We’re committed to fostering an environment for every teammate that’s welcoming, respectful and inclusive, with great...
-
Security Systems Engineer
vor 4 Wochen
Brisbane City, Österreich Emanate Technology VollzeitSecurity (Information & Communication Technology) Work for a leading organisation within Financial Services as a System Security Engineer as part of a collaborative, tight knit team, working with both the Network and Security teams on exciting projects across both areas, focusing on Network Security uplift, and cloud security. ResponsibilitiesUtilise...
-
Security Guard/Crowd Controller
vor 3 Wochen
Brisbane City, Österreich Security Australia VollzeitWe are hiring for Crowd Controllers & Security Officers who are ready to commence working in some of Brisbane’s most prestigious licensed premises as well as corporate venues and static sites. We’re looking for Security Officers with the initiative and drive to deliver exceptional outcomes for our clients. Our Teams are expanding and we have...
-
Deployment Engineer
vor 3 Wochen
Brisbane City, Österreich Accucom Systems Integration Pty Ltd VollzeitPresent, Design and Deploy client solutions Active onsite and remote customer engagement Work remotely as part of a larger team – Brisbane-based About us:Accucom is an established, growing business that has been operating in the education and mid-market corporate for over 36 years. We have an excellent reputation for delivering reliable customer-focused...
-
Application Engineer
vor 3 Wochen
Brisbane City, Österreich Mine Site Technologies Pty Ltd VollzeitOther (Information & Communication Technology) MST’s dedication to quality & safety has allowed us to become a leader in our industry – we are committed to maintaining quality systems and practices that ensure our products and services empower our clients with bespoke safety solutions.Entrepreneurial, innovative, and optimistic, our vision is to be...