Risk Analyst (Information Security)
Job Description
Job Number:
Risk Analyst (Information Security) (Job Number: 12002571D20240730)
DISCOVER your opportunity
UK, Ipswich
The RAMP Analyst is an expanding role and entails driving AXA XL’s security risk posture. The role includes working with multiple subject matter experts on a wide variety of topics to determine if temporary exceptions to the Information Security Policy are acceptable. Strong communication skills are a must as the candidate will be working with colleagues globally.
DISCOVER your opportunity
The Risk Analyst will work under the responsibility of the Head of IS Services and Risk Management or delegate. The responsibilities of the role will focus on the Risk Acknowledgement and Mitigation Plan (RAMP) process that handles the exceptional noncompliance to the policies and include the following:
- Support the business and IT stakeholders in the creation of RAMPs
- Ensure that created RAMPs are properly formatted and complete to be able to go through the RAMP process without issues & delays
- Communicate weekly on the RAMPs that are new or need a review in the RRG
- Animate the weekly RAMP Review Group
- Maintain a proper audit track on all RAMP associated decisions and act as a secretary for RRG meetings
- Manage and maintain the RAMPs register, a consistent record of all RAMPs raised, their current status, expiry date and details of any mitigation to be carried out and by whom
- Ensure that all Risks Acknowledgement go through due process in a timely manner
- Become familiar with changes to the policy and supporting standards, so that all RAMPs reference the correct risk and RAMP metrics can accurately reflect the overall status.
- Produce monthly reporting to the local IT, Security and Risk governance on the residual risk that were acknowledged / accepted and the most important monitored risks
- Act as a champion for Information Security when dealing with areas of the business, providing assistance with the raising of information risks and explaining current policy as required
We’re looking for someone who has these abilities and skills:
- Master’s degree in Computer Science, Engineering, or related field with a minimum of 5 years of professional experience in Risk Management (Required) and/or Information Security (Preferred)
- Expert in synthesizing and clearly communicating complex information to all audiences up to C-Level leaders (Required)
- Experience in articulating risks in business language and advising on the appropriate risk management action (Required)
- Excellent attention to detail and the ability to create clear, concise and engaging presentations breaking down difficult problems (Required)
- Expert analytical and reporting skills (Required)
- Excellent interpersonal and collaborative skills (Required)
- Expert in Microsoft Office (Word, Excel, PowerPoint, SharePoint) (Required)
- Experience in multinational companies (Required)
- Strong knowledge of Risk management (Required)
- Strong knowledge of Risk management frameworks (ISO 3100X, NIST 800-30/37/39, ENISA, EBIOS, OCTAVE, FAIR) (Required)
- Effective knowledge of Information Security frameworks (Mitre ATT&CK, NIST, ISO 2700X …) (Preferred)
- Experience in information security management reporting and related methodologies (Preferred)
- Information Security and/or Information Technology industry certification (CISSP, CISM, or equivalent) (Preferred)
FIND your future
AXA XL, the P&C and specialty risk division of AXA, is known for solving complex risks. For mid-sized companies, multinationals and even some inspirational individuals we don’t just provide re/insurance, we reinvent it.
How? By combining a comprehensive and efficient capital platform, data-driven insights, leading technology, and the best talent in an agile and inclusive workspace, empowered to deliver top client service across all our lines of business − property, casualty, professional, financial lines and specialty.
With an innovative and flexible approach to risk solutions, we partner with those who move the world forward.
AXA XL is committed to equal employment opportunity and will consider applicants regardless of gender, sexual orientation, age, ethnicity and origins, marital status, religion, disability, or any other protected characteristic.
At AXA XL, we know that an inclusive culture and a diverse workforce enable business growth and are critical to our success. That’s why we have made a strategic commitment to attract, develop, advance and retain the most diverse workforce possible, and create an inclusive culture where everyone can bring their full selves to work and can reach their highest potential. It’s about helping one another — and our business — to move forward and succeed.
- Five Business Resource Groups focused on gender, LGBTQ+, ethnicity and origins, disability and inclusion with 20 Chapters around the globe
- Robust support for Flexible Working Arrangements
- Enhanced family-friendly leave benefits
- Named to the Diversity Best Practices Index
- Signatory to the UK Women in Finance Charter
At AXA XL, Sustainability is integral to our business strategy. In an ever-changing world, AXA XL protects what matters most for our clients and communities. We know that sustainability is at the root of a more resilient future.
- Valuing nature: How we impact nature affects how nature impacts us. Resilient ecosystems - the foundation of a sustainable planet and society – are essential to our future. We’re committed to protecting and restoring nature – from mangrove forests to the bees in our backyard – by increasing biodiversity awareness and inspiring clients and colleagues to put nature at the heart of their plans.
- Addressing climate change: The effects of a changing climate are far-reaching and significant. Unpredictable weather, increasing temperatures, and rising sea levels cause both social inequalities and environmental disruption. We're building a net zero strategy, developing insurance products and services, and mobilizing to advance thought leadership and investment in societal-led solutions.
- Integrating ESG: All companies have a role to play in building a more resilient future. Incorporating ESG considerations into our internal processes and practices builds resilience from the roots of our business. We’re training our colleagues, engaging our external partners, and evolving our sustainability governance and reporting.
- AXA Hearts in Action: We have established volunteering and charitable giving programs to help colleagues support causes that matter most to them, known as AXA XL’s “Hearts in Action” programs. These include our Matching Gifts program, Volunteering Leave, and our annual volunteering day – the Global Day of Giving.
For more information, please see axaxl.com/sustainability
AXA XL is an Equal Opportunity Employer.
Location
Work Locations
Location:
GB-GB-IpswichWork Locations:
GB Ipswich 2nd floor, Civic Drive Civic Drive 2nd floor IpswichJob Field
Job Field:
Information TechnologySchedule
Schedule:
Full-timeJob Type
Job Type:
StandardAXA XL is an Equal Opportunity Employer and does not discriminate against any colleague or applicant for employment on the basis of race, color, national origin, religion, sex, gender identity and/or expression, sexual orientation, age, disability, genetic information, veteran status, military status or any other category protected by local law.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
