Data Loss Prevention Team Lead

PHL - Three/NEO, Philippines

Full Time Senior-level / Expert USD 28K - 67K *

QBE Insurance

QBE Insurance Group is one of the world's top 20 insurance and reinsurance companies, located in 27 countries. Visit us for company information.

View all jobs at QBE Insurance

Apply now Apply later

Posted 3 days ago

Primary DetailsTime Type: Full time

Worker Type: Employee

Lead a significant transformational change in the way Cyber and information security risk is considered and mitigated across the core business, 3rd party suppliers, programs and projects. The role works to make QBE safe, secure and resilient; working to continuously out pace and outsmart cyber threat faced by our business. This intellectually challenging and highly influential role is part of a Group Cyber Security team accountable for safeguarding QBE from increasingly sophisticated Cyber and information security threats. This is a highly collaborative consulting and delivery role, requiring a sustained level of curiosity and a continuous ability to grow deep technical knowledge that translates into insight to solve root cause problems and supports strategic business outcomes.

Primary Responsibilities

• Deliver an effective Cyber and information security Capability across QBE, partnering to deliver appropriate levels of engagement and risk mitigation

•Drive building cyber and information security experience across QBE, coaching understanding, building awareness and engendering healthy curiosity

•Build strong collaborative relationships, providing advice and working together to identify and solve root cause problems; demonstrating great tenacity in reducing potential threats and risks

•Take personal accountability for seeking out and identifying security weaknesses; seeing mitigation through to a secure conclusion

•Drive Cyber engagement across QBE to ensure issues are identified, self-reported and notified to key stakeholders

•Act with integrity and transparency in threat and risk identification and problem solving

•Role model the creation, innovation and negotiation of solutions and risk mitigation strategies; driving fast paced and agile behaviours

•Drive the development, execution and assurance of an effective Cyber practice; including the adoption of relevant policy, standards, processes and templates

•Manage and quality assure staff augmentation and outsourced security arrangements; ensuring delivery to SLAs, quality controls and alignment with QBE requirements

•Drive collaboration across Technology Services and IT suppliers to avoid security problems manifesting as business problems

•Track compliance and security benefits to demonstrate impact and mitigation success

Required Education

• Bachelor's Degree or equivalent combination of education and work experience

Required Experience

• 5 years relevant experience

Preferred Competencies/Skills

• Demonstrates exceptional resilience and tenacity in managing and mitigating 24x7 cyber threats whilst successfully managing work life balance

•Solution orientated

•Coaching mentality

•Problem solving mindset with tenacity to see solutions through to delivery

•Demonstrable ability to coach a Cyber team to develop Cyber talent to build technical excellence and decision-making confidence

•Insightful and expert ability to consider where and how people or technology could be exploited; getting into the mindset of an adversary

•Exceptional ability to get deeply technical and apply that skill to the business environment

•Strong decision-making ability when faced with complex and business critical threats

•Excellent communication, negotiation and conflict management skills, with an ability to anticipate and pre-empt potential obstacles; strong listening skills

•Good ability to write and articulate, summarise and present complex problems and messages in a succinct and comprehensible manner

•Exceptionally curious and enquiring mindset with a fast paced and agile personal drive to meet business needs

Preferred Education

• Bachelor's Degree or equivalent combination of education and work experience

Preferred Education Specifics

• Degree in cyber / information security, Information technology, management or business

Preferred Experience

• Strong demonstrable experience with security and risk-based standards such as ISO2700X, ISO31000, NIST800 and PCI-DSS and other relevant security risk standards and technologies.

•Experienced in helping a business, its’ partners and customers to become more innovative and fast paced delivering improved business agility

•Experienced in working across multiple in house and outsourced service models, time zones and collaborating in a multi-cultural environment

Preferred Licenses/Certifications

• Certified Risk and Information Systems Controls (CRISC)

•Certified Information Systems Auditor (CISA)

•Sherwood Applied Business Security Architecture (SABSA) or equivalent, highly regarded.

•Certified Cloud Security Professional (CCSP) or equivalent

•Other security certifications such as Certified Information Security Manager (CISM)

Preferred Knowledge

• Strong knowledge and understanding of business and technical cyber security and risk management concepts and methods, including policy concepts, risk assessment procedures, and role-based authentication and authorization methodologies and technologies.

QBE Cultural DNA

• Everything we do at QBE is underpinned by our DNA (which interlinks seven cultural elements) – because we know it's not just what we do that matters, it's how we do it that makes the difference. We expect all employees to role model and inspire the right behaviours that link to our cultural elements:

•We are customer-focused

•We are technical experts

•We are inclusive

•We are fast-paced

•We are courageous

•We are accountable

•We are a team

•All employees are expected to adhere to QBE’s Code of Ethics and Conduct and apply sound risk management practices

US Only - Travel Frequency

• Infrequent (approximately 1-4 trips annually)

US Only - Physical Demands

• General office jobs: Work is generally performed in an office environment in which there is not substantial exposure to adverse environmental conditions. Must have the ability to remain in a stationary position for extended periods of time. Must be able to operate basic office equipment including telephone, headset and computer. Incumbent must be able to lift basic office equipment up to 20 lbs.

US Only - Disclaimer

• To successfully perform this job, the individual must be able to perform each essential job responsibility satisfactorily. Reasonable accommodations may be made to enable an individual with disabilities to perform the essential job responsibilities.

Job Type

• People Leader

Global Disclaimer

• The duties listed in this job description do not limit the assignment of work. They are not to be construed as a complete list of the duties normally to be performed in the position or those occasionally assigned outside an employee’s normal duties. Our Group Code of Ethics and Conduct addresses the responsibilities we all have at QBE to our company, to each other and to our customers, suppliers, communities and governments. It provides clear guidance to help us to make good judgement calls.

Skills:

Client Counseling, Critical Thinking, Customer Service, Cybersecurity, Cyber Security Management, Financial Systems, Information Security, Intentional collaboration, Managing performance, Negotiation, Problem Solving, Risk Management, Stakeholder Management, Team Management, Waterfall Project Management

How to Apply:

To submit your application, click "Apply" and follow the step by step process.

Equal Employment Opportunity:

QBE is an equal opportunity employer and is required to comply with equal employment opportunity legislation in each jurisdiction it operates.

Apply now Apply later

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats: 0 0 0

Category: Leadership Jobs

Tags: Agile CCSP CISA CISM Cloud Compliance CRISC ISO 27000 Risk assessment Risk management SLAs