Responsibilities
• Be part of a globally distributed team (24x7) that will use several security tools (, SIEM, email triage platform, cloud security tooling, EDR solutions, etc) to investigate suspicious events.
• Proactively monitor and respond to suspicious or true positive incidents across our security platforms.
• Perform initial incident analysis of various security alerts by analysing and investigating security-related logs harvested from various security signals.
• Provide rmendations and initial assessments to Tier 2 resources for deeper analysis and triage.
• Perform timely escalation of cybersecurity incidents to Tier 2 resources and incident responders using incident management tools and other available channels.
• Conduct research using various proprietary and open-source tools to identify current and emerging threats and risks to QBE.
• Provide assessment and rmendations to mitigate potential threats or suppress any occurring false positive alerts.
• Perform ad-hoc tasks andpletion of goals relating to ongoing projects and initiatives.
• Generating reports and providing insights on the efficacy of the current security tools, incident responses, procedures, and other security-related information.
Required Education
• Bachelor's Degree or equivalentbination of education and work experience
Required Experience
• 0-1 year relevant experience
Preferredpetencies/Skills
• Bachelor's degree inputer science, programming, or IT-related field. Fresh graduates are wee to apply.
• The ability to work in a fast-paced and time-sensitive role.
• Be able tomunicate effectively and update various stakeholders globally.
• Proactive, analytical, and able to solveplex investigations.
• Understanding of known threat actors, techniques, and procedures that modern attackers use topromise organisations.
Preferred Education
• Bachelor's Degree or equivalentbination of education and work experience
Preferred Experience
• 1-2 years relevant security experience performing similar duties working in a Security Operation Centre, Cybersecurity, and other IT-related fields.
• Advanced training or certifications (, ISC2, ISACA, SANS, Azure, etc.)
• Knowledge of security solutions and technologies like Windows, Linux, IPS/IDS, Firewalls, Email gateways, proxy technologies, cloud solutions, endpoints, and mobile devices.
• Be able to perform correlations and analytics with diverse types of logs, , network, active directory, database, DNS, firewalls, proxies, host-based security, cloud, and applications logs.
Preferred Licenses/Certifications
• ISC2, ISACA, SANS, Azure
Preferred Knowledge
• 1-2 years relevant security experience performing similar duties working in a Security Operation Centre, Cybersecurity, and other IT-related fields.
• Advanced training or certifications (, ISC2, ISACA, SANS, Azure, etc.)
• Knowledge of security solutions and technologies like Windows, Linux, IPS/IDS, Firewalls, Email gateways, proxy technologies, cloud solutions, endpoints, and mobile devices.
• Be able to perform correlations and analytics with diverse types of logs, , network, active directory, database, DNS, firewalls, proxies, host-based security, cloud, and applications logs.
QBE Cultural DNA
• Everything we do at QBE is underpinned by our DNA (which interlinks seven cultural elements) - because we know it's not just what we do that matters, it's how we do it that makes the difference. We expect all employees to role model and inspire the right behaviours that link to our cultural elements:
• We are customer-focused
• We are technical experts
• We are inclusive
• We are fast-paced
• We are courageous
• We are accountable
• We are a team
• All employees are expected to adhere to QBE's Code of Ethics and Conduct and apply sound risk management practices
US Only - Travel Frequency
• Infrequent (approximately 1-4 trips annually)
US Only - Physical Demands
• General office jobs: Work is generally performed in an office environment in which there is not substantial exposure to adverse environmental conditions. Must have the ability to remain in a stationary position for extended periods of time. Must be able to operate basic office equipment including telephone, headset andputer. Incumbent must be able to lift basic office equipment up to 20 lbs.
US Only - Disclaimer
• To successfully perform this job, the individual must be able to perform each essential job responsibility satisfactorily. Reasonable amodations may be made to enable an individual with disabilities to perform the essential job responsibilities.
Job Type
• Individual Contributor
Australia/New Zealand Only - Advice/Non-Advice
• Non-Advice: This role is not authorised to provide financial product advice to retail customers in respect of General Insurance products. Financial product advice, means a statement or rmendation made to a retail customer with the intention of influencing their decision in considering a general insurance product.
Global Disclaimer
• The duties listed in this job description do not limit the assignment of work. They are not to be construed as aplete list of the duties normally to be performed in the position or those occasionally assigned outside an employee's normal duties. Our Group Code of Ethics and Conduct addresses the responsibilities we all have at QBE to ourpany, to each other and to our customers, suppliers,munities andernments. It provides clear guidance to help us to make good judgement calls.
How to Apply:
To submit your application, click "Apply" and follow the step by step process.
Equal Employment Opportunity:
QBE is an equal opportunity employer and is required toply with equal employment opportunity legislation in each jurisdiction it operates. Job ID 321879