Information Security Specialist – Policy

Job Description - Information Security Associate Specialist – Policy & Standards (14003315D20231220)

Job Description

Information Security Associate Specialist – Policy & Standards ( Job Number: 14003315D20231220 )

DISCOVER your opportunity

Information Security Associate Specialist – Policy & Standards

The Policy & Standards Specialist is an expanding role and entails managing and communicating the changes to the AXA XL Information Security Policy (ISP) and supporting Standards, for the reference and benefit of all employees and contractors.

DISCOVERyour opportunity

The specialist will work under the responsibility of the Head of IS Services and Risk Management or delegate and will report to the Security Policy & Standards Lead. The responsibilities of the role will include the following:

• Maintaining the ISP and Standards, ensuring proposed changes are evaluated, writing additional Standards and Guidelines

• Capture updates from both AXA Group and AXA XL stakeholders

• Participate in the AXA Group Policy Working Group (PWG), make suggestions and provide feedback on proposed changes. Perform gap analysis of changes against AXA XL ISP and Standards, highlight differences and discuss with stakeholders to see what effort would be required to comply, if this is to be a BAU activity or project.

• Prepare the agenda and chair the regular Policy and Standards Review group (PSRG), ensuring proposed updates are discussed and decisions are captured in formal minutes for later reference

• Present amendments from the PSRG to the IS Steering Committee for validation

• When necessary, present ISP & Standards updates to the Security Committee

• Maintain and improve the Policy & Standards Tracker, ensuring all changes are accurately recorded

• Provide formal feedback to Group Security on changes agreed or rejected by AXA XL

• Maintain and update the Policies and Standards page of the IS SharePoint site

• Ensure all IS documentation is reviewed at least annually, recording approved updates

• Use diverse sources to monitor emerging threats and technologies, perform gap analysis against the existing ISP and Standards and produce recommended updates for the PSRG to review

• Promote use of the ISP and Standards across AXA XL by collaborating with Internal Communications and other team leads as required

• Provide guidance in response to questions on ISP and Standards requirements

We’re looking for someone who has these abilities and skills:

• Excellent knowledge of Information Security and Information Technology in relation to application of Policies

• Proficient in writing security policies and security standards

• Experience in implementing ISO 27001/NIST/CSA

• Expert analytical and reporting skills

• Expert in Microsoft Office (Word, Excel, PowerPoint, SharePoint)

• Ability to effectively communicate and positively influence diverse stakeholders and team members

• Excellent attention to detail and the ability to create clear, concise and engaging presentations

• Experience in information security management reporting and related methodologies

FIND your future

AXA XL, the P&C and specialty risk division of AXA, is known for solving complex risks. For mid-sized companies, multinationals and even some inspirational individuals we don’t just provide re/insurance, we reinvent it.

How? By combining a comprehensive and efficient capital platform, data-driven insights, leading technology, and the best talent in an agile and inclusive workspace, empowered to deliver top client service across all our lines of business − property, casualty, professional, financial lines and specialty.

With an innovative and flexible approach to risk solutions, we partner with those who move the world forward.

AXA XL is committed to equal employment opportunity and will consider applicants regardless of gender, sexual orientation, age, ethnicity and origins, marital status, religion, disability, or any other protected characteristic.

At AXA XL, we know that an inclusive culture and a diverse workforce enable business growth and are critical to our success. That’s why we have made a strategic commitment to attract, develop, advance and retain the most diverse workforce possible, and create an inclusive culture where everyone can bring their full selves to work and can reach their highest potential. It’s about helping one another — and our business — to move forward and succeed.

• Five Business Resource Groups focused on gender, LGBTQ+, ethnicity and origins, disability and inclusion with 20 Chapters around the globe
• Robust support for Flexible Working Arrangements
• Enhanced family friendly leave benefits
• Named to the Diversity Best Practices Index
• Signatory to the UK Women in Finance Charter

At AXA XL, Sustainability is integral to our business strategy. In an ever-changing world, AXA XL protects what matters most for our clients and communities. We know that sustainability is at the root of a more resilient future. Our 2023-26 Sustainability strategy, called “Roots of resilience”, focuses on protecting natural ecosystems, addressing climate change, and embedding sustainable practices across our operations.

• Valuing nature: How we impact nature affects how nature impacts us. Resilient ecosystems - the foundation of a sustainable planet and society – are essential to our future. We’re committed to protecting and restoring nature – from mangrove forests to the bees in our backyard – by increasing biodiversity awareness and inspiring clients and colleagues to put nature at the heart of their plans.
• Addressing climate change: The effects of a changing climate are far reaching and significant. Unpredictable weather, increasing temperatures, and rising sea levels cause both social inequalities and environmental disruption. We're building a net zero strategy, developing insurance products and services, and mobilizing to advance thought leadership and investment in societal-led solutions.
• Integrating ESG: All companies have a role to play in building a more resilient future. Incorporating ESG considerations into our internal processes and practices builds resilience from the roots of our business. We’re training our colleagues, engaging our external partners, and evolving our sustainability governance and reporting.
• AXA Hearts in Action : We have established volunteering and charitable giving programs to help colleagues support causes that matter most to them, known as AXA XL’s “Hearts in Action” programs. These include our Matching Gifts program, Volunteering Leave, and our annual volunteering day – the Global Day of Giving.

For more information, please see axaxl.com/sustainability

AXA XL is an Equal Opportunity Employer.

Location : GB-GB-Ipswich Work Locations : GB Ipswich 2nd floor, Civic Drive Civic Drive 2nd floor Ipswich

Job Field : Information Technology

Schedule : Full-time

Job Type : Standard

AXA XL is an Equal Opportunity Employer and does not discriminate against any colleague or applicant for employment on the basis of race, color, national origin, religion, sex, gender identity and/or expression, sexual orientation, age, disability, genetic information, veteran status, military status or any other category protected by local law.