Senior Manager - Technology and Information Security Internal Control in London

About AXA XL:

AXA XL, the P&C and specialty risk division of AXA, is renowned for tackling complex risks. We provide innovative re/insurance solutions for mid-sized companies, multinationals, and inspirational individuals by leveraging a robust capital platform, data-driven insights, leading technology, and exceptional talent. Our agile and inclusive workspace empowers us to deliver top-tier client service across all business lines, including property, casualty, professional, financial lines, and specialty.

Discover Your Opportunity:

Role Overview:

As the Senior Manager for Technology and Information Security Internal Control, you will lead a dynamic team within the AXA XL Divisional Risk Management, specifically in the Risk Governance & Control and Operational Risk department. You will oversee the IT IFRS Internal Financial Control (IFC) program and manage the Internal Control Framework for IT and Information Security-related processes across AXA XL worldwide. This role emphasizes adapting to changes in Digital Operational Resilience Regulations, such as DORA, and integrating AI-related considerations, ensuring control measures are consistently reviewed and adopted.

Essential Responsibilities:

• Lead the IT IFRS IFC framework, coordinating with AXA Group and external auditors, and spearhead projects impacting the IT IFRS IFC framework, including IFRS 17.
• Drive the maintenance and continuous enhancement of the IT, Information, Security and Data Management Internal Control Framework, incorporating new regulatory requirements (DORA) and AI-related topics.
• Ensure the definition, implementation, documentation, assessment, and monitoring of key IT, Information Security (IS), and Data related internal controls against material risks, making necessary enhancements to strengthen the control framework.
• Challenge the first line of defense to ensure IT, IS and Data controls are accurately formalized and regularly updated.
• Manage and lead teams to ensure effective delivery of testing of IT, Information Security, and Data controls, focusing on both design and operational effectiveness.
• Facilitate quarterly self-assessment for the first line of defense.
• Monitor IT, IS and Data controls for compliance with internal policies and external regulations.
• Oversee the definition and closure of action plans addressing IT IFC and other internal control related deficiencies.
• Foster ongoing coordination on IT, IS and Data control topics among the Internal Control team, local Risk Management teams, Information Risk Team, and relevant first-line stakeholders.

Share Your Talent:

Qualifications:

• Extensive experience in public accounting, large company IT, IS and Data Management audit, IT, IS and Data Management related risk consulting, or leading SOX program support/execution, preferably with Big 4 experience.
• Experience in managing teams and working in a matrix organization.
• Professional certification such as CISSP, CISA, CIA, and/or CPA.
• Bachelor’s degree in IT, Computer Science, Accounting, Finance, or equivalent experience.
• Experience interacting with senior management, Audit & Risk Committees, multiple stakeholders, External Auditors and Regulators.
• In-depth knowledge of IT, IS and Data Management Internal Control/IT Internal Financial Control frameworks, including audit and operational risks.
• Expertise in technology environments, information security, infrastructure, data management, and software development.
• Proven ability to design, implement, and operate an international entity-wide reporting process.
• Robust communication, negotiation, and presentation skills, with the ability to provide opinions.
• Fluent in written and spoken English.
• Demonstrated reliability, quality, and timeliness in deliverables and presentations.
• Passion for working in an international and intercultural environment, fostering teamwork and collaboration.
• Robust organizational and management skills.