Chief Security Officer

About AXA: AXA is a global leader in insurance and financial services, dedicated to helping customers protect what matters most to them. As the sixth-largest insurance company in the world, we provide a wide range of services, including health, car, home, and business insurance. We support millions of customers worldwide, helping them navigate life's uncertainties with confidence. AXA Global Healthcare offers global healthcare support and protection to individuals and businesses in more than 200 countries, building on over 55 years of experience through its international hubs. Job overview: The Chief Security Officer provides strategic leadership to protect AXA Global Healthcare’s people, information, and operations by defining and delivering a robust security, governance, and resilience strategy aligned with corporate and regulatory requirements. The role oversees risk management, incident response, continuity planning, and regulatory compliance while ensuring security performance is understood at senior levels through KPIs/KRIs and board reporting. This role also drives a strong security culture, collaborates with Group security, and represents AXA Global Healthcare with external bodies and regulators. This role leads and develops the security function with man management responsibilities comprising of 4 direct reports. Key responsibilities: To lead the development and execution of the AXA Global Healthcare's Business security strategy, ensuring alignment with corporate standards and regulatory requirements. Overseeing security governance frameworks, monitoring KPIs and KRIs, and reporting on security performance to senior leadership and the board. Manage security risk assessment and mitigation activities, drive the incident response, business continuity, and resilience initiatives to safeguard physical and information security. Ensure ongoing compliance with EU, FCA, PRA, and other relevant regulatory standards. Promoting a security-aware culture and embedding security best practices across the organisation. Lead, motivate, and develop security teams and collaborate with Group security functions to ensure consistency and effectiveness. Represent AXA at external industry forums, regulators, and security bodies to influence standards and maintain the organisation’s reputation. Work arrangements: At AXA we work smart, empowering our people to balance their time between home and the office in a way that works best for them, their team and our customers. You'll work at least two days a week (40%) away from home, moving to three days a week (60%) in the future. Away from home means attending the office, visiting clients or attending industry events. We know that some candidates may be discouraged from applying if they don't meet every requirement. If you’re excited by this job and the prospect of working at AXA but you’re not sure you tick every box, we’d still encourage you to apply. Your skills & experience: Deep expertise within Business Continuity Management (BCP), Disaster Recovery (DR), and Crisis Management in an international business, preferably in the financial services or healthcare sector. Strong knowledge of FCA Operational Resilience (UK) and EU Digital Operational Resilience Act (DORA) requirements; and the ability to interpret regulatory expectations and translate them into practical controls and programs. Experience in cross-border regulatory environments, coordinating regulatory engagement, plus vendor risk management experience. Demonstrated ability to design, implement, and test resilience capabilities across multi-region operations. Excellent stakeholder management skills across senior leadership, business units, and regulators. Strong incident management, problem-solving and communication skills; producing concise reporting for executive and board audiences. Project/Program management experience; and the ability to lead multi-workstream resilience initiatives with a pragmatic, risk-based approach. Relevant certifications (e.g., BCM/DR, CISSP/CISM, ISO 22301 lead auditor, or equivalent) are desirable. As a precondition of employment for this role, you must be eligible and authorised to work in the United Kingdom. Please be aware that this position is a Senior Management Function role under the SM&CR regime, which means the successful candidate will be subject to an enhanced level of background screening requirements. How to apply: To apply, click on the ‘apply now’ button, you’ll then need to log in or create a profile to submit your CV. We’re proud to be an Equal Opportunities Employer and don’t discriminate against employees or potential employees based on protected characteristics. If you have a long-term condition or disability and require adjustments during the application or interview process, we’re proud to offer access to the AXA Accessibility Concierge. For our support, please send an email to [email protected]. We encourage you to apply for this opportunity as soon as possible, as we may close this advert earlier than the listed closing date. #LI-Hybrid