Detection Engineering Lead

AXA
Paris
EUR 80 000 - 100 000
Description du poste

JOB ENVIRONMENT

With over 102 million customers in 56 countries, AXA's strong global franchises and three lines of expertise Property & Casualty, Life & Savings and Asset Management provide a distinctive business portfolio. As a company whose business is to protect people, we have a responsibility to leverage our skills, resources and risk expertise to build a stronger and safer society. To achieve our mission, we are committed to redefining the standards of our business so that we truly differentiate ourselves and earn the trust of our key stakeholders.

As an integral part of AXA, at AXA Group Operations (AXA GO) we create innovative technology and data solutions to help AXA fulfil its ambition of being a customer-focused, tech-led company. AXA GO is a young and dynamic division launched in 2019 and comprises 8,000 employees across 17 countries all around the globe from Paris, France to Pune, India. We are the ones providing advice, steering technological choices and giving AXA access to innovations that will support its transformation into a customer-centric tech-led company. For this, we work in close partnership with all AXA entities.

PRESENTATION OF THE CONTEXT AND AXA GROUP SECURITY

Throughout AXA, the security community represents 1000 security professionals, working daily to protect our employees, customers, operations and brand. Our operating model gathers the three security disciplines Information Security, Operational Resilience and Physical Security & Safety. Our security mission is to ensure that AXA is safe, secure and resilient.

AXA Group Security, as part of AXA GO, defines the security strategy, standards and provides assurance to the Group on the security maturity of all entities across AXA. In its role, it also supports our professional family in entities in maintaining their security posture and respond and coordinate responses to crisis.

This is accomplished through four strategic levers:

  1. Safe: It is about our people, have them ready to face security challenges including third parties, health professionals.
  2. Secure: Secure the business of today and tomorrow, by increasing security effectiveness on a risk-based approach for all entities.
  3. Resilient: Enhance anticipation, detection and reaction capabilities in case of events & Security by design.
  4. Simple: Simplify, converge and automate our services and activities.

CYBER DEFENSE

Within Group Security, the Cyber Defense department provides the entities and markets with first line of defense services. Under Cyber Defense, Security Operations Center (Security Operations Centre) is designed to prevent, detect, and react to cyber threats.

POSITION MAIN ACTIVITIES

Security Operations Center (SOC) delivers the following capabilities to the AXA entities around the globe: Security Incident Detection, Threat Hunting, Security Incident Response and Threat Intelligence.

The Detection Engineering Lead is a critical role within our Global SOC, responsible for leading the development, implementation, and optimization of advanced detection capabilities. This role requires deep expertise in threat detection, security technologies, and leadership to drive the SOC's mission of protecting the organization's digital assets. The successful candidate will work closely with cross-functional teams, focusing on designing and implementing effective detection strategies that can anticipate and mitigate threats in a dynamic and complex global environment. Collaboration with dedicated threat hunting and incident response teams is key to ensuring seamless operations.

Key Responsibilities

  1. Detection Strategy Development: Lead the creation, refinement and delivery of detection strategies that address both current and emerging threats across the global organization.
  2. Detection Engineering: Design, implement, and optimize detection use cases, rules, and algorithms within SIEM, EDR, and other detection platforms.
  3. Collaboration with Threat Intelligence Teams: Timely leverage actionable threat intelligence for designing better detections and continuously improving them.
  4. Collaboration with Security and Detection Teams: Ensure Security Analysts have the necessary information and means to properly analyse alerts from detections delivered.
  5. Collaboration with Threat Hunting Teams: Partner closely with dedicated threat hunting teams to share insights and refine detection capabilities based on their findings and intelligence, ensuring that detection strategies remain proactive and responsive to emerging threats.
  6. Collaboration with Incident Response Teams: Work closely with incident response teams by providing them with robust detection capabilities and ensuring that the tools and techniques in place are effectively identifying and categorizing threats for timely response.
  7. Automation & Orchestration: Lead efforts to automate detection processes and integrate advanced detection techniques using SOAR platforms.
  8. Collaboration & Communication: Work closely with global SOC analysts, IT, and business units to ensure alignment of detection capabilities with business priorities and risk profiles.
  9. Leadership & Mentorship: Lead and mentor a team of detection engineers and experts, fostering a culture of continuous improvement and innovation.
  10. Metrics & Reporting: Develop and report on key performance indicators (KPIs) related to detection efficiency, effectiveness, and coverage to senior management.
  11. Technology Evaluation: Stay abreast of emerging technologies and trends in cybersecurity, leading the evaluation and implementation of new tools and techniques that enhance detection capabilities.
  12. Compliance & Best Practices: Ensure that detection strategies and operations comply with relevant regulations, standards, and best practices.

Scope: All AXA entities

Team structure: Security Operations Center comprises of Security Monitoring and Detection, Security Incident Response & Forensics, Platform Management, Lifecycle & Integration and Quality Assurance teams.

Stakeholders:

  1. Internal actors: Group IT and Cyber Defense teams, Group Security, Entities, Group Procurement, Group Finance, GO Markets, GO Partnership Office, Security Operations Center operational teams.
  2. External actors: vendors, professional bodies, industry peers.

PROFILE, SKILLS & COMPETENCIES

Experience

· Experience in Information Security > 8 years

· Experience in a similar role > 2 years

Education

· University degree in information security or equivalent work experience.

Skills and Competencies

  1. Analytical Mindset: Strong analytical and problem-solving skills with the ability to think critically and identify patterns in complex datasets.
  2. Leadership and Teamwork: Excellent leadership abilities with a proven track record of building and developing high-performing teams.
  3. Communication: Strong verbal and written communication skills, with the ability to articulate complex technical concepts to non-technical stakeholders.
  4. Adaptability: Ability to work in a fast-paced environment and adapt to evolving threats and technologies.
  5. Proactive Attitude: Strong sense of initiative, with a proactive approach to identifying and mitigating security risks.
  6. Global Awareness: Understanding of global cybersecurity regulations and standards, particularly in the insurance industry.
Obtenez un examen gratuit et confidentiel de votre CV.
Sélectionnez le fichier ou faites-le glisser pour le déposer
TrustpilotStars
Noté « Excellent » sur la base de 12 700 évaluations
Avatar
Coaching en ligne gratuit
Multipliez vos chances de décrocher un entretien !
Faites partie des premiers à découvrir de nouveaux postes de Detection Engineering Lead à Paris
Suivez-nous
JobLeads Youtube ProfileJobLeads Linkedin ProfileJobLeads Instagram ProfileJobLeads Facebook ProfileJobLeads Twitter AccountJobLeads Xing Profile
Entreprise
Services
Ressources gratuites
Assistance

© JobLeads 2007 - 2024 | Tous droits réservés