Application Security Officer (Cyber Security Officer)

Enforce Security by Design on all phases of Software Development Life Cycle.Monitor and validate progress on the remediation implemented to address outstanding issues/vulnerabilitiesManages internal and external VAPT engagements conducted by external vendor. Ensures closure of audit finding.Review result and methodology from vulnerability scan and penetration test conducted by vendorPerform manual or automated tests to validate remediationPerform technical and security reviews on assets impacting operations of applicationsWork with internal teams to resolve security findings on applicationsTake the corrective action needed to meet the standards required by security policy, procedures, network architectures and software designPromote security awareness program on secure coding and systems development life cycleOther tasks or duties that may be assigned in line with the Information Security Program KEY CUSTOMERS: Local Users of AXA applicationsIT Service Delivery Team and Solution Delivery TeamsBusiness owners and Product ownersVendorsAuditorsRegional/Group SecurityDev team WORKING RELATIONSHIPS WITHIN BUSINESS UNIT Work with CSO, CIO, IT Operations and Security Head, IT Security Director and Group Operations Security Leaders to gain a clear understanding on the overall corporate direction with regards to security initiatives and control implementation.Work with regional and local IT team heads to ensure they carry out the planned actions and projects to mitigate IT security risks.Work with business department heads to ensure that security is taken into consideration and implement the required actions that fall within the business area.Work with Regional/Group audit team for Pen test reportCoordinates with the application developers and owners for remediation