Incident Response Specialist

Primary DetailsTime Type: Full time

Worker Type: Employee

Incident Response Specialist, Group Cyber

Reporting to the GSOC Lead, the Incident Response Specialist will be a key member of our rapidly growing Global Security Operations team. This dynamic role combines hands-on technical analysis with stakeholder engagement and incident coordination. The successful candidate will analyze cyber threats, prioritize security events, and drive remediation efforts. Additionally, they will serve as an escalation point for the analyst team, ensuring efficient incident management and effective response to key cyber threat events.

A key focus of the role is to provide effective, proactive, and analytical responses to cybersecurity-related incidents to prevent QBE from becoming compromised by threat actors and techniques. The successful candidate will be a technical advisor for the Regional GSOC Lead/Managers, Divisional Cybersecurity teams and various key stakeholders.

Primary Responsibilities:

• Provide expert technical support to coordinate and resolve enterprise-wide cybersecurity incidents, ensuring prompt and effective incident handling.

• Act as a point of contact and escalation point for Tier 1 and Tier 2 analysts during incidents or when further review of the ticket is required.

• Ensure quality assurance of ticket handling and analysis, maintaining high standards in incident management. Be the go-to person for the region in the absence of the GSOC lead/manager.

• Manage stakeholders and act as a technical SME on GSOC-related matters during operational hours, requiring good communication skills and the ability to articulate to non-technical audiences.

• Work closely with the global team and other regional IR teams to support the improvement of operational efficiency and maturity of SOC through initiatives or project work using several security tools (e.g., SIEM, email triage platform, cloud security tooling, EDR solutions, etc)​

• Provide recommendations and initial assessments to Lead/Manager resources on timely manner

• Conduct research using various proprietary and open-source tools to identify current and emerging threats and risks to QBE. ​

• Support the region with research and analysis via threat intelligence.

Required Qualifications:

Education: Degree or higher in a security related field or substantial relevant experience.

Experience:

• Minimum of 3 years’ experience within a security operations centre environment doing security incident response, particularly in coordinating communications during, post-incident and ensuring effective resolution.

• You possess strong technical knowledge in incident response, threat intelligence, and SOC operations.

• Hands-on experience with security monitoring tools, incident response procedures, and threat analysis.

• Experience in leading and managing a team, preferably within a SOC or IT security context.

• Strong ability to coordinate and support team members, ensuring efficient and effective shift operations.

Preferred Qualifications:

Security certifications in any of the following: CISSP, CISM, SANS, or CEH are a plus.

Preferred Knowledge

• Advanced understanding of tools, techniques and procedures that modern attackers use to compromise organisations.
• Familiarity with threat intelligence platforms and methodologies.
• Specialized knowledge of global security standards and regulations.
• Experience with security platforms, tools and technologies.

Preferred Competencies/Skills

• Strong leadership skills with the ability to motivate and guide a team.
• Experience in managing shift schedules and ensuring adequate coverage.
• Ability to make quick, informed decisions independently and under pressure.

Additional Benefits

• Gain global exposure and experience in the insurance sector, which is part of critical infrastructure.
• Opportunities to make a mark and build a bright career pathway.
• Attend local and regional conferences and have speaking opportunities based on your own initiatives.
• Access to a cybersecurity training platform provided by a vendor to GSOC.
• Enjoy work-life balance with the flexibility of working hybrid – 2 days in the office.
• Benefit from a management team that is ready to support your personal and professional growth.

QBE Cultural DNA

Everything we do at QBE is underpinned by our DNA (which interlinks seven cultural elements) – because we know it's not just what we do that matters, it's how we do it that makes the difference. We expect all employees to role model and inspire the right behaviours that link to our cultural elements:

• We are customer-centred
• We are technical experts
• We are diverse
• We are fast-paced
• We are courageous
• We are accountable
• We are a team
• All employees are expected to adhere to QBE’s Code of Ethics and Conduct and apply sound risk management practices

US Only Section

Work environment

Travel frequency: Infrequent (approximately 1-4 trips annually)

Physical demands: General office jobs: Work is generally performed in an office environment in which there is not substantial exposure to adverse environmental conditions. Must have the ability to remain in a stationary position for extended periods of time. Must be able to operate basic office equipment including telephone, headset and computer. Incumbent must be able to lift basic office equipment up to 20 lbs.

US disclaimer

To successfully perform this job, the individual must be able to perform each essential job responsibility satisfactorily. Reasonable accommodations may be made to enable an individual with disabilities to perform the essential job responsibilities.

Job Type

Individual Contributor

Australia/New Zealand Only Section

Click the appropriate radio button but jobs that are located in ANZO/NZL

Advice / Non-Advice: Non-Advice: This role is not authorised to provide financial product advice to retail customers in respect of General Insurance products. Financial product advice, means a statement or recommendation made to a retail customer with the intention of influencing their decision in considering a general insurance product.

Global Disclaimer

Standard

The duties listed in this job description do not limit the assignment of work. They are not to be construed as a complete list of the duties normally to be performed in the position or those occasionally assigned outside an employee’s normal duties. Our Group Code of Ethics and Conduct addresses the responsibilities we all have at QBE to our company, to each other and to our customers, suppliers, communities and governments. It provides clear guidance to help us to make good judgement calls.

Skills:

Client Counseling, Commercial Acumen, Conflict Management, Critical Thinking, Customer Service, Cybersecurity, Cyber Security Governance, Cyber Security Management, Individual Resilience, Information Security, Intentional collaboration, Managing performance, Problem Solving, Quality Control (QC), Risk Management

How to Apply:

To submit your application, click "Apply" and follow the step by step process.

Equal Employment Opportunity:

QBE is an equal opportunity employer and is required to comply with equal employment opportunity legislation in each jurisdiction it operates.