Pentest Expert

CONTEXT:

• AXA is a French international group specialized in insurance and asset management. The AXA brand is the world's top insurance brand for the 10th consecutive year.
• AXA Group Operations - Operational center of excellence of the AXA Group.
• At AXA, our mission is to empower people to live a better life. Through innovation and execution, we must transition from being a "Payer" to a trusted partner in our customers' lives. The concrete objectives of the group's activities are to create value for the global AXA organization, to collaborate with the Business Innovation Group to encourage innovation, and to incorporate simplicity and empowerment into our contribution to AXA's mission and strategy.
• Present in more than 18 countries, AXA Group Operations is the operational center of excellence of the AXA Group. Operating in the fields of IT (Information Technology), Data & Innovation, IT Security, Finance, Procurement, Transformation and Outsourcing, we support the Group's strategy: To become an innovative "customer-driven & tech-led" company.

DESCRIPTION:

The Penetration Testing Expert is responsible for:

• Execute web application penetration tests to identify vulnerabilities such as input validation issues, authentication flaws, and access control issues.
• Assess web applications against acknowledged security best practices such as OWASP Top 10.
• Conduct network and system-level penetration tests to identify vulnerabilities such as lack of patching, weak security configurations, and weak passwords.
• Utilize security tools such as Kali Linux, Nmap, and Burp Suite to conduct manual and automated security testing.
• Document testing procedures and results and provide detailed reports to stakeholders on vulnerabilities identified and potential impact.
• Work with the security team to recommend and implement remediation plans, and with IT teams to ensure that assessments and remediations do not impact business operations.
• Share Pentest knowledge and methodology with the other members of the Pentest team.

QUALIFICATION:

Technical & functional skills:

• Bachelor’s or Master’s degree in computer science, Information Technology or a related field.
• Experience with security assessment methodologies such as risk assessment, vulnerability assessment, and threat modeling.
• At least 2-4 years of experience in penetration testing and vulnerability assessments.
• Relevant certifications related to penetration testing.
• Communication skills to handle different stakeholders (IT, Business, security teams.).
• IT security expertise.
• Ability to gather and analyze data and translate it into actionable insights.
• Ability to work well in a team and cross-functional environment.
• Ability to work with people from different culture and environment.

Languages:

• English – Mandatory.
• French – Optional.

Présente au Maroc depuis 2009, AXA Group Opérations Maroc est une entité d’offshoring. Avec ses 300 collaborateurs et ses différents centres d’expertise opérant dans les domaines de l’informatique, de la Gestion de projet, de la Finance et des Ressources Humaines, AXA GO Maroc soutient Group Operations dans la réalisation de sa mission.

Nous célébrons l'expertise, la diversité culturelle et la créativité de plus de 8 000 employés de par le monde.  Nous nous engageons à assurer l'égalité des chances en matière d'emploi (parité hommes-femmes, communauté LGBT+, personnes handicapées ou personnes d'origines diverses) et à promouvoir la diversité et l'inclusion en créant un environnement de travail où tous les employés sont traités avec dignité et respect, et où les différences individuelles sont valorisées.