AUS - Parramatta - 32 Smith Street, AustraliaQBE InsuranceQBE Insurance Group is one of the world's top 20 insurance and reinsurance companies, located in 27 countries. Visit us for company information.Primary Details:Time Type: Full timeWorker Type: EmployeeLocation: SydneyType: Permanent, full timeHybrid role, Happy to talk flexible workingThe opportunityReporting to the GSOC Manager, the Incident Response Specialist will be a key member of our rapidly growing Global Security Operations team. This is an exciting hands-on technical role in which the successful candidate will perform advanced analysis of cyber threats using various investigation methods in classifying, analysing, prioritising, and remediating security alerts/events.A key focus of the role is to provide effective, proactive, and analytical responses to cybersecurity-related incidents to prevent QBE from becoming compromised by threat actors and techniques. The successful candidate will be a technical advisor for the Regional GSOC Managers, Divisional Cybersecurity teams and various key stakeholders.Your new roleProvide expert technical support to coordinate and resolve enterprise-wide cybersecurity incidents, ensuring prompt and effective incident handling.Continuously monitor and analyse security alerts from various sources within the network, identifying potential threats and determining their root causes.Communicate cybersecurity incidents clearly and effectively to both technical teams and business stakeholders, ensuring understanding across all levels.Act as a point of escalation, guiding and advising security analysts on proper triage processes and best practices to ensure accurate incident management.Assist in designing and enhancing incident response capabilities by leveraging recognised cybersecurity frameworks (e.g., NIST, MITRE ATT&CK) for structured and effective responses.Collect, analyse, and organise incident data to identify vulnerabilities and provide actionable recommendations for remediation and risk mitigation.Track and document the lifecycle of cybersecurity incidents from initial detection through to final resolution, ensuring all steps are properly recorded.Collaborate with threat intelligence partners to correlate threat data, enhancing proactive defense measures and supporting the development of a comprehensive Cybersecurity Incident Management Plan.About youProven experience in security operations, including roles within a Security Operations Center (SOC), Cybersecurity, Incident Response, or similar IT security functions.Strong ability to proactively address security incidents, lead investigations, and develop solutions, with a focus on complex problem-solving in time-sensitive environments.In-depth understanding of known threat actors, attack techniques, and procedures commonly used by modern attackers to compromise organisations.Proficient in performing detailed log analysis across various types of logs such as network, active directory, database, DNS, firewall, proxies, host-based security, and cloud technologies.Exceptional communication skills with the ability to engage and collaborate with global stakeholders, including C-level executives and senior management, particularly in high-pressure situations.Capable of taking charge of a situation, providing guidance to team members, and acting as the go-to person in the absence of the GSOC Manager. Proactive mindset with strong initiative and a passion for cybersecurity.Ability to work in a diverse, culturally rich team environment, with experience in navigating global operations and working effectively with stakeholders from different regions and backgrounds.Preferred Licenses/Certifications:GIAC Certification (GCIH), (GCIA), (GPEN), (GREM)Offensive Security Certified Professional (OSCP)Benefits‘Hybrid Working’ – a mix of working from home and in the office to enhance your work/life balanceOur ‘Thriving at our Best’ wellbeing program, including free holistic wellbeing coaching, nutritional, confidential counselling, financial and legal advice18 weeks’ gender-equal flexible leave for all new parents, including paid superThe ability to maximise retirement savings through voluntary super contributions and company matchingIncome protection insurance & reimbursed Death and Total Permanent Disability insurance premiumsAdditional leave and support through QBE’s Family Domestic Violence First Responder NetworkDiscounts on insurance products, car hire, hotels, goods and services including benefits through our various sports and arts sponsorship partnersAPPLY NOW and let’s make it happen!Click APPLY to submit your application. Successful applicants will need to complete work rights, police and credit checks through our online provider as a condition of employment.QBE recognise the value of diverse perspectives and experience. We are committed to an inclusive workplace where everyone feels valued and respected for who they are. If we can provide support with access requirements, alternative work arrangements or you would like to connect with one of our networks please contact us at recruitment@qbe.comSkills:AdaptabilityBusiness ContinuityCommunicationCritical ThinkingCustomer ServiceCybersecurity Risk ManagementDigital ForensicsForensic InvestigationsIntentional collaborationMalware AnalysisManaging performanceProcess ImprovementsReporting and AnalysisRisk ManagementStakeholder ManagementApplication Close Date: 06/02/2025 11:59 PMHow to Apply:To submit your application, click "Apply" and follow the step by step process.Equal Employment Opportunity:QBE is an equal opportunity employer and is required to comply with equal employment opportunity legislation in each jurisdiction it operates.
#J-18808-Ljbffr