Corporate Chief Security Officer

**Job purpose** - Ensure Security is implemented within the scope in accordance to Group Security Strategy and Framework - Is accountable for leadership, development and implementation of a consistent approach to all security topics within the scope, including Information Security, Operational Resilience, PS, H&S - Provides leadership to Security (including Information Security, Operational Resilience, Physical Security, Health & Safety) - Provides 2nd line of defense governance and oversight of all security activities within the Market (shared with the Local CXO’s*) - Shares with the local CXO* the responsibility for oversight of the local security budgets (oversight and execution) and for managing the CSO communities in the Market - Identifies entity strategic requirements and supports the definition of the AXA Group security strategy, framework, operating model and capabilities, bringing expert knowledge, skills, experience, best practice and innovation to enhance security and improve security maturity throughout the Group - Ensures Crisis Coordinators are in place for all entities and provides leadership and professional support to the Market Leadership Teams, Entity and Group Crisis Management Teams - coordinating the response to multi-entity crises as required - Sets the security targets of his/her entities and monitors the achievement - Ensures alignment/coordination between the entity (CXOs and CSOs) and Group Security **Key responsibilities - accountabilities - DescriptionCrucial - Engage with relevant risk management disciplines plus geographic and other functional leadership (e.g. CEOs and Heads of Professional Families plus strategic supply partners) to align Information Security, Operational Resilience, Physical Security and Health & Safety to the requirements of the Group - Establish relationship with and build a community of security representatives - Lead the implementation of governance requirements for Security throughout the Group Important - Influence the business and functional agendas and build internal sponsorship at the top of the organization - Support the Group Security Programs, ensuring compliance to policy, identifying industry best practices that complement AXA governance and continuity strategy - Conduct in-depth reviews and formal assurance of Security in Markets, Countries and entities - Remain informed on trends and issues in the security industry. Understand the threats against the company and how to allocate the right resources to counter them. Advise, counsel and educate executive and management teams on Group Security strategy, policy, mandatory instructions and guidelines Necessary - Compile and consolidate and deliver compliance monitoring of global entities and provide executive governance reporting **Required technical competencies Note: The Corporate CSO is not expected to master the 3 pillars of Security (Information Security, Operational Resilience and Physical Security), nevertheless, he must master at least one and have experience the other two. This is why the competencies below show two level **Qualifications - Education & certification- A post-graduate degree in Security Management, Information Security Management, Health & Safety or general management (such as an MBA) is an advantage - Certification(Note: The Corporate CSO is not expected to master the 3 pillars of Security (Information Security, Operational Resilience and Physical Security), certification is recommended in at least one of the pillars) - Security Management - Information Security and /or Information Technology industry certification (CISSP-ISSAP, CRISC, GIAC or equivalent) - Member of Institute of Information Security Professionals (M. IISP) - Physical Security or Health & Safety certifications (CPP, PSP, SMCC, etc.) - Member of security or safety networks: ASIS, IOSH, etc. - Overall work experience in the field- Experience in Security Management, IT audit or related area > 15 years - Leadership/ management experience working with individuals and teams from diverse cultures > 10 years - Previous experience managing a remote/international team preferred - Previous experience as interim or acting CSO, Chief Information Security Officer, Chief Operational Resilience Officer, Chief Physical Security Officer, Chief Health & Safety Officer or extensive experience reporting toC-Level or other senior executive in an international organization. - Skills / abilities- Ability to effectively negotiate a decentralized and political corporate environment - Ability to function effectively in a matrix structure - Strong networking skills - Team player - Fluent in English