Security Incident Analyst

Primary DetailsTime Type: Full time

Worker Type: Employee

The purpose of this role is to provide an effective and proactive response to cybersecurity incidents, protecting the organisation's assets and services. The role involves investigating a diverse set of alerts, supporting incident management processes, and adapting to changes in security operations to meet business requirements. As a key member of the Global Security Operations team, the Security Analyst will classify, analyse, and remediate security alerts, working closely with business stakeholders and escalating incidents as necessary to ensure the security of QBE's assets and services.

Responsibilities:

• Contribute to the ongoing development of security operations “best practice” and support continuous improvement.
• Actively communicate with staff and third parties to correctly identify and resolve problems and manage their expectations.
• Execute threat-hunting activities using various proprietary and open-source tools to identify current and emerging threats that pose a risk to QBE.
• Implement security initiatives aimed at improving the existing infrastructure.
• Perform deep-dive incident analysis of various data sources by analysing and investigating security-related logs against short and medium-term threats and Indicators of Compromise ( IOCs).
• Provide recommendations for updates to IR handling processes and procedures.
• Manage business continuity plan and information backup procedures to ensure minimal disruption in the event of a Cyber Attack.
• Build strong relationships with internal and external stakeholders to maintain and improve QBE security and enhance knowledge and information sharing.
• Review new security products and ascertain their suitability for the QBE environment.

Work Experience:

Necessary Work Experience includes:

• Some relevant work experience.

Preferred Work Experience includes:

• Experience working in a Security Operation Centre, Cybersecurity, and other IT-related fields.
• Knowledge of security solutions and technologies including Windows, Linux, IPS/IDS, Firewalls, Email gateways, proxy technologies, cloud solutions, endpoints, and mobile devices.
• Ability to perform correlations and analytics with diverse types of logs from various sources.

Qualifications:

Necessary Qualifications include:

• Tertiary Degree or equivalent combination of education and work experience.
   

Preferred Qualifications include:

• Advanced training or certifications in relevant areas such as ISC2, ISACA, SANS, Azure, etc.

Global Disclaimer:

The duties listed in this job description do not limit the assignment of work. They are not to be construed as a complete list of the duties normally to be performed in the position or those occasionally assigned outside an employee’s normal duties. Our Group Code of Ethics and Conduct addresses the responsibilities we all have at QBE to our company, to each other and to our customers, suppliers, communities and governments. It provides clear guidance to help us to make good judgement calls.

US Only Disclaimer:

To successfully perform this job, the individual must be able to perform each essential job responsibility satisfactorily. Reasonable accommodations may be made to enable an individual with disabilities to perform the essential job responsibilities.

US Only - Travel Frequency:

Infrequent (approximately 1-4 trips annually)

US Only - Physical Demands:

General office jobs: Work is generally performed in an office environment in which there is not substantial exposure to adverse environmental conditions. Must have the ability to remain in a stationary position for extended periods of time. Must be able to operate basic office equipment including telephone, headset and computer. Incumbent must be able to lift basic office equipment up to 20 lbs.

Skills:

Adaptability, Analytical Thinking, Business Continuity, Critical Thinking, Customer Service, Financial Systems, Forensic Investigations, Incident Response, Intentional collaboration, Malware Analysis, Managing performance, Prioritization, Process Improvements, Risk Management, Stakeholder Management

How to Apply:

To submit your application, click "Apply" and follow the step by step process.

Equal Employment Opportunity:

QBE is an equal opportunity employer and is required to comply with equal employment opportunity legislation in each jurisdiction it operates.