Pen Test Expert

About AXA
As a world-leading insurance company, we act for human progress by protecting what matters. With 153,000 employees in 54 countries working for 105 million customers, we've created a truly dynamic and vibrant community. Inclusion and diversity link closely with our values, and together we're nurturing a culture of respect, for each other, for our customers and the communities around us. Join AXA and you'll feel like you belong, are included and can thrive. You'll be able to shape the way you work and truly grow your potential as you seek out new opportunities, push boundaries and benefit people in critical moments of their lives. This is your chance to build the tomorrow you want. Know you can.

About The Entity
AXA is becoming a sustainable tech-led company and at AXA Group Operations we are one of the major catalysts for this transformation.

We set the tone by triggering and empowering the evolution of our insurance business model through technology and innovation, driving its concrete implementation globally at speed, with a high quality of advisory and execution.

We are present across 17 countries with committed, highly qualified teams. We leverage technology, data, sourcing, security and investment allocation in a global way, but also achieve economies of scale and synergies when necessary.

Main Mission
Execute web application penetration tests to identify vulnerabilities such as input validation issues, authentication flaws, and access control issues.

Assess web applications against acknowledged security best practices such as OWASP Top 10.

Conduct network and system-level penetration tests to identify vulnerabilities such as lack of patching, weak security configurations, and weak passwords.

Utilize security tools such as Kali Linux, Nmap, and Burp Suite to conduct manual and automated security testing.

Document testing procedures and results and provide detailed reports to stakeholders on vulnerabilities identified and potential impact.

Work with the security team to recommend and implement remediation plans, and with IT teams to ensure that assessments and remediations do not impact business operations.

Share Pentest knowledge and methodology with the other members of the Pentest team.

Experience
Bachelor's or Master's degree in computer science, Information Technology or a related field.

Experience with security assessment methodologies such as risk assessment, vulnerability assessment, and threat modeling.

At least 2-4 years of experience in penetration testing and vulnerability assessments.

Relevant certifications related to penetration testing.

Technical Skills
Proficient in vulnerability assessment tools (e.g., Nmap, Nessus, Burp Suite, Metasploit)

Strong understanding of network protocols and architectures (TCP/IP, DNS, HTTP/S)

Skilled in manual exploitation techniques and writing proof-of-concept exploits

Experience with web application security testing (OWASP Top 10, API fuzzing, authentication bypass)

Familiarity with Windows, Linux, and macOS environments

Scripting ability in Python, Bash, PowerShell, or JavaScript

Knowledge of Active Directory, LDAP, and privilege escalation techniques

Ability to document findings and deliver clear, actionable reports

Understanding of cloud security (AWS, Azure, GCP) and container environments (Docker, Kubernetes)

Soft Skills
Communication skills to handle different stakeholders (IT, Business, security teams.).

IT security expertise.

Ability to gather and analyze data and translate it into actionable insights.

Ability to work well in a team and cross-functional environment.

Ability to work with people from different culture and environment.

What We Offer
We bring together the expertise, cultural diversity and creativity of over 8,000 employees worldwide and we're committed to equal opportunities in all aspects of employment (gender, LGBT+, disabled persons, or people of different origins) and to promoting Diversity & Inclusion by creating a work environment where all employees are treated with dignity and respect, and where individual differences are valued.