DLP (Data Leakage Prevention) Product Manager

Company statement
With over 105 million customers in 61 countries, AXA's strong global franchises and three lines of expertise - Property & Casualty, Life & Savings and Asset Management - provide a distinctive business portfolio. As a company whose business is to protect people, we have a responsibility to leverage our skills, resources and risk expertise to build a stronger and safer society. To achieve our mission, we are committed to redefining the standards of our business so that we truly differentiate ourselves and earn the trust of our key stakeholders.

Business unit statement
As part of Cyber Defense, within End User & Data Product Line, DLP product is a shared service to support AXA entities comply with DLP requirements. Cyber Defense has developed a DLP service considering significant demands from entities (process & technical solutions).

What: Cyber Defense DLP offer meets AXA Group entities needs to comply with Group Requirements and reduce their data leakage risk exposure. Cyber Defense DLP offer provides:

1. A coherent and globally consistent protection against data leakage risk
2. Help reduce local spend and performing as a global service across the organization
3. Comply with Group Security and legal/regulatory requirements

How: Cyber Defense DLP offer provides a service with a fully integrated DLP Endpoint & DLP Microsoft features (including reporting capabilities) for managing data leakage risk. Endpoints & O365 Environments are covered. 4 Main modules within the current version of the offer:

1. O365 AIP manual & automatic data classification
2. O365 DLP rules for email, One Drive & SharePoint Online
3. O365 eDiscovery for scanning & data breach investigation
4. Endpoint DLP (Symantec for Windows Basic & Microsoft for Windows Edition) for detection & prevention at endpoint level

The DLP Product Manager will join the Product team, working on initiatives, development and extending the perimeter of the DLP product (relying on Microsoft & Broadcom technology). The Product Manager ensures overall business coherence within its functional scope.

Main activities and responsibilities

1. Build and communicate the product vision with team members and through exchanges with relevant stakeholders
2. Maximize the customer and business value in the team's achievements
3. Own the backlog, the product delivery, the quality of the service and the product performance
4. Prioritize the backlog according to business and relevant stakeholder value
5. Ensure the Product is operated E2E in compliance with AXA standards (Project/Program, Build, Run and Continuous Improvement)
6. Define and manage the product life cycle end-to-end
7. Build the product Roadmap and cascade it to relevant stakeholders
8. Manage the Product budget, monitor costing and sourcing with the help of support functions
9. Set up product governance with Entity (expectation, satisfaction)
10. Develop the product promotion and marketing strategy
11. Implement agile methodologies and continuous improvement processes to optimize product development and delivery
12. Ensure Product is following security, compliance, data privacy guidelines
13. Formalize the Delivery Model based on Product’s vision and strategy

Job purpose

1. Entities onboarding within DLP product
2. Work with entities’ security teams to ensure Cyber Defense services are delivered to the agreed QoS
3. Define, implement, and communicate the applicable security processes with the AXA entities CSOs for the DLP product.
4. Work in close collaboration with Workplace and Cyber Defense teams to define the product roadmap and lifecycle
5. Work with the security technology teams and distributed teams to ensure maximum risk reduction is obtained from existing security solutions
6. Work with AXA Group Procurement to manage the relationship with key security vendors

Roadmap

1. Create, own and maintain the tactical roadmap in alignment with Product Forum decisions
2. Work with the Technology Lead to ensure consistency between the tactical roadmap and the strategic roadmap
3. Align with and manage the vendor relationship in order to receive inputs on the next releases. Estimate the potential impact on the current product delivered to the entities. Communicate/explain the tactical roadmap on a regular basis to the entities
4. Drive the day to day delivery of the tactical product roadmap

Budget Management

1. Manage, communicate and optimize the budget for DLP product
2. Update the chargeback model to the entities

Project delivery

1. Deliver the projects related to DLP product roadmap
2. Act as primary project sponsor for all projects related to DLP product
3. Estimate the required project costs in July for the next year in alignment with the tactical roadmap

Key responsibilities – accountabilities

1. Drive DLP product activities
2. Enhance the product in alignment with business needs and security requirements
3. Manage and coordinate Incidents and escalation related to DLP Product & features
4. Deliver a service/product aligned with the Service Level Agreement signed with the entities
5. Develop and manage the relationships with AXA entities on security products and technologies
6. Evangelize the product delivered by Cyber Defense at entities’s CSO Level
7. Lead an annual productivity plan review in order to optimize the running costs of the product
8. Liaise with vendors and suppliers to understand their current and future security product-lines and service offerings
9. Work with Procurement & Finance to optimise product pricing
10. Support AXA Group entities to develop plans to transition to globally selected products provided as part of AXA GO Products catalogue
11. Delivery of comprehensive and clear documentation
12. Working alongside technical teams, provider’s Technical account manager, security and operational stakeholders
13. Assist in the design, creation and standardisation of procedures
14. Audit and assess security policies and ensure their consistency with the design
15. Host or participate to regular calls with stakeholders
16. Translate technical requirements and communicate at all levels
17. Support the operational teams and coordinate tasks

Required soft skills & behavioral competencies

1. Leadership
2. Strategic Thinking
3. Problem solving
4. Planning
5. Decision making
6. Coaching and Mentoring
7. Interpersonal skills

Qualifications

Education

1. Bachelor degree in Computer Science, Engineering, or related field
2. Post-graduate degree in Project/Product Management, IT or a closely-related subject

Certification
Certifications in Information Security domain are desirable but is not essential

Overall work experience in the field

1. Experience in IT field > 8 years
2. Experience in Information Security field > 5 years (advantage)
3. Proven experience in product management
4. Proven experience in international, multicultural and large scale enterprise

Skills / abilities

1. Cross cultural sensitivity, flexibility
2. Organized with a proven ability to prioritize workload, meet deadlines, and utilize time effectively
3. Strong interpersonal and communication skills; able to deal effectively with diverse skill sets and personalities, works effectively as a team player
4. Ability to function effectively in a matrix structure
5. Strong analytical skills
6. Apply analytical rigor to understand complex business scenarios
7. Fluent in French and English