IT Senior Auditor

Our business, protection. We protect people, property and assets.
Our purpose, Act for Human Progress by protecting what matters.
Does this speak to you? Then come and join 149,000 future colleagues who are committed to our 95 million clients in 50 countries around the world every day.

Your work environment

The headquarters of the AXA Group (GIE AXA) brings together our corporate activities. It provides guidance and support to subsidiaries around the world, to ensure the coordination and monitoring of the Group's global strategy, the application of its standards, the consistency of commercial approaches and the sharing of best practices.

The headquarters gathers approximately 1000 employees and is distinguished by its strong international culture (45 nationalities), which makes it a rich and stimulating place to work.

AXA is built around diversity and unity, which is why we are committed to promoting collective success through inclusion.

Within the Group, you will join the Group Audit IT Team:

The Central IT Audit team based in Paris 17th district is composed of 20 auditors and managers covering IT and Cyber Security audit matters at Group level and for various AXA entities, as well as providing expertise and audit resources for the Internal Service Providers and the Regional IT audit teams. Regular security trainings or CTF are organized within the team to upskill people and maintain the technical excellence of the team. During our reviews we have enough time to learn, develop ourselves and deep dive into the technical details.

Key activities:

• Lead and perform independent reviews of IT systems, projects and processes implemented or planned across the various Group entities.
• Share expertise and experience with the AXA IT Audit community by developing and maintaining IT Audit workprogram and tools.
• Lead or support up to 8 Internal Audit engagements each year across the entire AXA Group.
• All activities to be performed in compliance with international auditing and AXA standards, being tightly reviewed during external Quality Assessments and the French regulator (ACPR).
• Flexibility needed to manage schedules with Internal Audit teams across the Group.

Audit delivery:

• Lead the definition, planning, organization, management and realization of IT audits, including simple audit assignments and parts of complex audit assignments autonomously.
• Lead more junior auditors on audit engagements.
• Accountable for the reporting of findings and formalization of added value recommendations.

Issues follow-up:

• Accountable for the follow-up of past recommendations.
• Act as a sparring partner with issues owners to help remediate risks using a risk-based approach.

Contribute to Internal Audit Community:

• Lead or contribute to the development and maintenance of IT audit workprograms and tools.
• Lead or contribute to internal projects benefiting the global pool of IT auditors.
• Share expertise and experience with the IT Audit community.

Ideally, we are looking for someone with:

• Proven very strong expertise in one or several of the following domains: IT audit, data governance/management, data analytics, IT project/change management, business continuity, Solvency II.
• Knowledge of standard IT audit methodologies, frameworks, and tools is a clear plus.
• Inquiring and analytical mindset with strong perseverance skills.
• Ability to anticipate risks and take initiatives, handling unforeseen changes.
• Good organizational and time management skills with a high level of autonomy.
• Open-minded and dynamic, able to work within a multicultural team.
• Engineer, with a minimum of 3 years of IT audit experience or a minimum of 5 years of IT operational experience.
• Passionate about technology.
• Experience and good IT auditing skills regarding IT general matters; candidates may be experts in one particular domain of IT auditing but must also be able to manage reasonably complex audits in other IT domains.
• Previous experience of IT audit gained while working in an audit firm would be a clear plus.
• Professional certifications like CISA, CISM, CISSP, CGEIT, CRISC, and GSNA are a plus.