Jobs
>
Brisbane

    Application Security And Devsecops Engineer, Axa Dcp - Brisbane City, Australia - Xl Catlin

    Xl Catlin
    Xl Catlin Brisbane City, Australia

    2 days ago

    Default job background
    Full time
    Description
    Job Description - Application Security and Dev Sec Ops Engineer, AXA DCP D Job Description Application Security and Dev Sec Ops Engineer, AXA DCP (

    Job Number:

    D DISCOVER your opportunity Application Security and Dev Sec Ops Engineer, AXA DCP London London – UK , Wroclaw – Poland, Paris – France, Milan – Italy, Barcelona or Madrid – Spain AXA's Management Committee is driving a unique strategic initiative - Digital Commercial Platform (DCP) – designed to transform AXA's value proposition.

    Through DCP, AXA will serve existing and new clients and partners through an evolving business model, where thefocus is on risk prediction, prevention and management.

    AXA DCP relies on creating a platform of AXA's risk insights, risk management, and risk prevention capabilities to enhance and support our service offering to commercial clients and third parties.

    End users will be able to access a broad selection of data built on existing or developing AXA assets.

    The platform will also create value by monetizing unique capabilities and services for our customers, aggregating, and delivering insights from unique data sets with external partners, and fostering end-customer relationships in alignment with brokers.


    AXA DCP aims to:

    Improve our underwriting pricing and claims capabilities across the commercial lines book of business of AXA Group Create a platform for risk management and prevention services Build an ecosystem of business partners As Application security and Dev Sec Ops engineer, your main mission will be to ensure the security and integrity of our applications and infrastructure.

    You will be responsible for implementing and maintaining security measures throughout the software development lifecycle, collaborating closely with development and operations teams to enforce security standards.

    DISCOVER your opportunity What will your essential responsibilities include? Utilize a variety of Dev Ops tools to identify, assess, and prioritize and manage security vulnerabilities across the organization's applications and systems and to automate and standardise system configuration.

    Support the selection and implementation of Dev Sec Ops tools.
    Design, maintain and integrate security into the CI/CD pipeline, automating security checks and testing processes.
    Establish and monitor KPIs and KRIs related to Dev Ops and application security.
    Engage with stakeholders to facilitate and manage resolution, with tracking of work to report on progress.

    Foster effective partnerships with other teams (internal and external) to enhance the organization's overall security posture and minimize potential threats and to identify threats, vulnerabilities, and control improvements.

    Support the stakeholders to enable informed decision making.
    Design, implement and improve secure coding related practices, processes and standards.

    Collaborate with development and operations teams to implement security controls and best practices in the development and deployment processes.

    Participate in development and continuous improvement of security processes, policies, standards and other governing documents and ensure compliance.
    Participate in and support delivery of security audits, threat modelling and assessments and remediation of findings.
    Perform in-depth analysis of application code and infrastructure, architecture, and configurations to ensure compliance with security standards.

    Provide expert advice and guidance to development teams on secure coding practices and potential security risks in Dev Sec Ops community meetings.

    Enforce and monitor security compliance.
    Participate in design reviews to ensure security considerations are integrated from the outset.
    Assist in the investigation and resolution of security incidents.
    Support the delivery of training sessions to increase awareness of security best practices among development and operational teams.
    Automate infrastructure provisioning and application deployment.

    Define and implement Infrastructure as Code patterns and practices You will report to the Chief Security Officer, AXA DCP We're looking for someone who has these abilities and skills: Proven experience in security and software engineering or similar roles.

    Self-driven qualities and able to work independently as well as part of a team.
    You are fluent in English.

    Good communication (verbal/written) and influencing skills, with an ability to manage internal and external relationships up to senior levels of management.

    Cloud infrastructure Good understanding of security standards such as ISO 27001, GDPR, OWASP, and common web application vulnerabilities.

    Experience with Dev Sec Ops practices and tools (CI/CD, Infrastructure as code, SAST, DAST) and Agile development methodologies Experience with cloud platforms (e.g., AWS) , containerization technologies and security best practices (API Security, Container Security, and AWS Cloud Security) Experience on relational and No SQL databases Experience on secure software development practices (e.g.

    OWASP Top 10, OWASP SAMM)

    Will be a plus:
    Security Certifications (e.g., CISM, CISSP) Cloud Certifications (e.g.

    AWS Solutions Architect) Auditing and Compliance Certifications (e.g., CISA) Experience with machine learning tools and models FIND your future AXA XL, the P&C and specialty risk division of AXA, is known for solving complex risks.

    For mid-sized companies, multinationals and even some inspirational individuals we don't just provide re/insurance, we reinvent it.

    How? By combining a comprehensive and efficient capital platform, data-driven insights, leading technology, and the best talent in an agile and inclusive workspace, empowered to deliver top client service across all our lines of business − property, casualty, professional, financial lines and specialty.

    With an innovative and flexible approach to risk solutions, we partner with those who move the world forward.

    AXA XL is committed to equal employment opportunity and will consider applicants regardless of gender, sexual orientation, age, ethnicity and origins, marital status, religion, disability, or any other protected characteristic.

    At AXA XL, we know that an inclusive culture and a diverse workforce enable business growth and are critical to our success.

    That's why we have made a strategic commitment to attract, develop, advance and retain the most diverse workforce possible, and create an inclusive culture where everyone can bring their full selves to work and can reach their highest potential.

    It's about helping one another — and our business — to move forward and succeed.

    Five Business Resource Groups focused on gender, LGBTQ+, ethnicity and origins, disability and inclusion with 20 Chapters around the globe Robust support for Flexible Working Arrangements Enhanced family friendly leave benefits Named to the Diversity Best Practices Index Signatory to the UK Women in Finance Charter At AXA XL, Sustainability is integral to our business strategy.

    In an ever-changing world, AXA XL protects what matters most for our clients and communities.
    We know that sustainability is at the root of a more resilient future.
    Our Sustainability strategy, called "Roots of resilience", focuses on protecting natural ecosystems, addressing climate change, and embedding sustainable practices across our operations


    Valuing nature:
    How we impact nature affects how nature impacts us.
    Resilient ecosystems - the foundation of a sustainable planet and society – are essential to our future.

    We're committed to protecting and restoring nature – from mangrove forests to the bees in our backyard – by increasing biodiversity awareness and inspiring clients and colleagues to put nature at the heart of their plans.


    Addressing climate change:
    The effects of a changing climate are far reaching and significant.
    Unpredictable weather, increasing temperatures, and rising sea levels cause both social inequalities and environmental disruption.

    We're building a net zero strategy, developing insurance products and services, and mobilizing to advance thought leadership and investment in societal-led solutions.

    Integrating


    ESG:
    All companies have a role to play in building a more resilient future.
    Incorporating ESG considerations into our internal processes and practices builds resilience from the roots of our business.
    We're training our colleagues, engaging our external partners, and evolving our sustainability governance and reporting.

    AXA Hearts in Action : We have established volunteering and charitable giving programs to help colleagues support causes that matter most to them, known as AXA XL's "Hearts in Action" programs.

    These include our Matching Gifts program, Volunteering Leave, and our annual volunteering day – the Global Day of Giving.
    For more information, please see AXA XL is an Equal Opportunity Employer.

    Location Location :

    GB-GB-London Other Locations : FR-FR-Paris, ES-CT-Barcelona, IT-IT-Milano, PL-PL-Wroclaw, ES-MD-Madrid Work Locations : GB London 20 Gracechurch Street 20 Gracechurch Street London London EC3 V 0 BG Job Field Job Field : Information Technology Schedule Schedule : Full-time Job Type Job Type : Standard Local Title (France) : Application Security and Dev Sec Ops engineer, AXA DCP Local Class (France) : Class 5 AXA XL is an Equal Opportunity Employer and does not discriminate against any colleague or applicant for employment on the basis of race, color, national origin, religion, sex, gender identity and/or expression, sexual orientation, age, disability, genetic information, veteran status, military status or any other category protected by local law.


    #J-18808-Ljbffr