Lead the definition, the planning, the organization, the management, and the realization of reasonably complex IT audits with an emphasize of security audit assignments.
Manage local auditors, or transversal audit teams across the Region
Accountable for the reporting of findings and formalization of added value recommendations.
Follow-up of past closure criteria.
Provide valuable insight and input to the owners of audit issues to help remediate risks using a risk-based approach.
Represent Internal Audit on audit debriefing to Senior Management.
Act as a valuable contributor to the stakeholders on a day-to-day basis (Audit executives, IT directors, Security officers, Audit remediation coordinators).
Management, training & development of IT auditors during the audit assignments.
Contribute to Internal Audit Community
Lead or contribute to the development and the maintenance of IT security audit workprograms and tools.
Lead or contribute to internal projects aiming to benefit to the global pool of IT auditors.
Share expertise and experience with the IT Global Audit community.
Computer Science or IT related degree
Min. 6 years of IT security audit experience or min. 9 years of security operational experience
Proven very strong expertise in one or several of the following domains is required : information security (including penetration testing), source code review, infrastructure & application & database & network security audits
Knowledge of standard IT & security audit methodologies, frameworks and tools is a clear plus.
Inquiring and analytical mindset. Rigorous with strong perseverance skills.
Ability to anticipate risks and to take initiatives. Can handle unforeseen changes.
Demonstrates capacities to convince his / her interlocutors, including in contexts of conflict and complex situations
Good organizational and time management skills. High level of autonomy.
Open-minded and dynamic, ability to work within a multicultural team and with stakeholders across the organisation
Keen to proactively play an active and constructive role in the global IT Audit function.
Produce quality reports requiring limited review workload from management.
Willing to travel to other Asia countries (15-20% travelling)
Good command of written and spoken English and Mandarin, and good report writing skill
Be passionate of technology and information security (e.g. know how to search for IT related knowledge, attend to information security conferences, follow information security news )
Have strong IT skills, including at least one programming language and good knowledge of operating systems (e.g. Windows, Linux), databases and network architecture and security principles
Professional certifications like CISA, CISM, CISSP, OSCP, CGEIT, CRISC and GSNA is a plus.
Would you like to wake up every day driven and inspired by our noble mission and to work together as one global team to empower people to live a better life?
Here at AXA we strive to lead the transformation of our industry. We are looking for talented individuals who come from varied backgrounds, think differently and want to be part of this exciting transformation by challenging the status quo so we can push AXA - a leading global brand and one of the most innovative companies in our industry - onto even greater things.
In a fast-evolving world and with a presence in 64 countries, our 166,000 employees and exclusive distributors anticipate change to offer services and solutions tailored to the current and future needs of our 103 million customers.
AXA in Asia is a market leading insurance player offering a differentiated composite proposition in Life and General Insurance with operational presence in Japan, Hong Kong, Singapore, Indonesia, China, India, Malaysia, the Philippines, and Thailand.
The Asian businesses are part of the AXA Group, headquartered in Paris and a worldwide leader in insurance and asset management with a presence in 64 countries.
AXA in Asia is committed to creating a sustainable, long-term business for our employees, customers and shareholders. AXA is an equal opportunity employer.
We are committed to promote Diversity and Inclusion (D&I) by creating a work environment where all employees are treated with dignity, respect, and where individual differences are valued.
We welcome and treasure diverse profiles to join our big family, and to build an inclusive culture together which allows everyone to maximize their personal potential.