Primary Details Time Type: Full time
Worker Type: Employee
Reporting to regional team leads, the Security Analyst will be a key member of our rapidly growing Global Security Operations team. These are exciting hands-on technical roles in which the analyst will use their security skills and knowledge to classify, analyse, prioritise and remediate security alerts/events of interest that have been triaged and escalated by Tier 1 Security Analysts. The focus is to provide effective and proactive response to cyber security-related incidents and enquiries to better protect QBE's assets and services. In addition, the roles will advise business stakeholders in the event of a security incident, and support incident management and escalation processes to the appropriate Application and System Owners.
Primary Responsibilities
Working experience of security design/architecture for new security applications to improve the current security posture globally for QBE
Contributes to, monitors and advises on the planned developments and changes in order to ensure relevancy, compliance and optimal delivery
Provide recommendations for updates to IR handling processes and procedures
Contribute to the ongoing development of security operations "best practice" and support continuous improvement
Provide guidance regarding security technical support, and influence peers in following best practice
Manage business continuity plan, and information back-up procedures, to ensure minimal disruption in the event of Cyber Attack
Implement security initiatives aimed at improving the existing infrastructure
Review new security products and ascertain their suitability for the QBE environment
Execute threat hunting activities using various proprietary and open source tools to identify current and emerging threats that pose a risk to QBE
Build strong relationships with internal and external stakeholders to maintain and improve QBE security and enhance knowledge and information sharing
Actively communicate with staff and third parties to correctly identify and resolve problems and manage their expectations
Document incidents, requests and problem management information to ensure required compliance standards/SLAs are achieved
Use security tools and resources to correlate suspicious events, providing context around the event, determine root cause and provide regular updates and recommend modifications to existing systems and procedures
Perform deep-dive incident analysis of various data sources by analysing and investigating security related logs against short and medium-term threats and IOCs
Execute vulnerability and web application assessments; provide analysis and recommendations to mitigate potential threats
Proactively analyse threats to QBE's systems, assets and business operations and provide recommendations for mitigating controls and/or remediation
Act as a point of reference to guide and advise others to ensure the sharing of knowledge and best practice throughout the team
Required Education
Bachelor's Degree or equivalent combination of education and work experience
Required Experience
3 years relevant experience
Preferred Competencies/Skills
Good technical expertise of security solutions and technologies, including: Windows, Linux, Networking, Security Architecture experience and knowledge of packet flow/TCP/UDP traffic, Firewall and proxy technologies, cloud solutions, anti-virus, static and dynamic malware analysis techniques
Working experience of performing analytics with different types of logs, i.e. network, active directory, database, DNS, firewall, proxies, host-based security, cloud and applications logs etc.
Working experience in handling security incidents at all levels related to incident response
Working experience in managing 2nd/3rd level security events
Working experience on known SIEM and Log Correlation Tools
Working experience on Case Management Tool
Experience of establishing and maintaining strong relationships with global security operations colleagues and other departments, including network teams and incident managers
Demonstrated ability to make decisions on remediation and counter measures
Be able to communicate effectively and update senior stakeholders globally
Excellent troubleshooting and problem-solving skills
Highly organized, self-motivated and able to work without direction.
Able to anticipate problems and potential problems and take appropriate pre-emptive action
Good planning and prioritization ability. Ability to manage concurrent activities with varying/conflicting priorities
Personable, conscientious, ability to cope with pressure and to prioritise work
Ability to analyze, define and specify customer requirements
Preferred Licenses/Certifications
GIAC Certified Incident Handler (GCIH)
GIAC Certified Intrusion Analyst (GCIA)
GIAC Penetration Tester (GPEN)
GIAC Reverse Engineering Malware (GREM)
Certified Information Systems Security Professional (CISSP)
Certified Cloud Security Professional (CCSP)
Council for Registered Ethical Security Testers (CREST)
Offensive Security Certified Professional (OSCP)
Preferred Knowledge
Advanced understanding of tools, techniques and procedures that modern attackers use to compromise organisations.
Demonstrable understanding of various security frameworks and methodologies such as OWASP 10, SANS TOP 25, NIST Incident Reponses, CERT Model, Diamond Model, MITRE ATT&CK, and the Extended Cyber Kill Chain.
QBE Cultural DNA
Everything we do at QBE is underpinned by our DNA (which interlinks seven cultural elements) - because we know it's not just what we do that matters, it's how we do it that makes the difference. We expect all employees to role model and inspire the right behaviours that link to our cultural elements:-We are customer-focused-We are technical experts-We are inclusive-We are fast-paced-We are courageous-We are accountable-We are a teamAll employees are expected to adhere to QBE's Code of Ethics and Conduct and apply sound risk management practices
US Only - Travel Frequency
Infrequent (approximately 1-4 trips annually)
US Only - Physical Demands
General office jobs: Work is generally performed in an office environment in which there is not substantial exposure to adverse environmental conditions. Must have the ability to remain in a stationary position for extended periods of time. Must be able to operate basic office equipment including telephone, headset and computer. Incumbent must be able to lift basic office equipment up to 20 lbs.
US Only - Disclaimer
To successfully perform this job, the individual must be able to perform each essential job responsibility satisfactorily. Reasonable accommodations may be made to enable an individual with disabilities to perform the essential job responsibilities.
Job Type
Individual Contributor
Australia/New Zealand Only - Advice/Non-Advice
Non-Advice: This role is not authorised to provide financial product advice to retail customers in respect of General Insurance products. Financial product advice, means a statement or recommendation made to a retail customer with the intention of influencing their decision in considering a general insurance product.
Global Disclaimer
The duties listed in this job description do not limit the assignment of work. They are not to be construed as a complete list of the duties normally to be performed in the position or those occasionally assigned outside an employee's normal duties. Our Group Code of Ethics and Conduct addresses the responsibilities we all have at QBE to our company, to each other and to our customers, suppliers, communities and governments. It provides clear guidance to help us to make good judgement calls.
Application Close Date: 30/08/2022 11:59 PM
How to Apply:
To submit your application, click "Apply" and follow the step by step process.
Equal Employment Opportunity:
QBE is an equal opportunity employer and is required to comply with equal employment opportunity legislation in each jurisdiction it operates.
QBE Insurance
Worker Type: Employee
Reporting to regional team leads, the Security Analyst will be a key member of our rapidly growing Global Security Operations team. These are exciting hands-on technical roles in which the analyst will use their security skills and knowledge to classify, analyse, prioritise and remediate security alerts/events of interest that have been triaged and escalated by Tier 1 Security Analysts. The focus is to provide effective and proactive response to cyber security-related incidents and enquiries to better protect QBE's assets and services. In addition, the roles will advise business stakeholders in the event of a security incident, and support incident management and escalation processes to the appropriate Application and System Owners.
Primary Responsibilities
Working experience of security design/architecture for new security applications to improve the current security posture globally for QBE
Contributes to, monitors and advises on the planned developments and changes in order to ensure relevancy, compliance and optimal delivery
Provide recommendations for updates to IR handling processes and procedures
Contribute to the ongoing development of security operations "best practice" and support continuous improvement
Provide guidance regarding security technical support, and influence peers in following best practice
Manage business continuity plan, and information back-up procedures, to ensure minimal disruption in the event of Cyber Attack
Implement security initiatives aimed at improving the existing infrastructure
Review new security products and ascertain their suitability for the QBE environment
Execute threat hunting activities using various proprietary and open source tools to identify current and emerging threats that pose a risk to QBE
Build strong relationships with internal and external stakeholders to maintain and improve QBE security and enhance knowledge and information sharing
Actively communicate with staff and third parties to correctly identify and resolve problems and manage their expectations
Document incidents, requests and problem management information to ensure required compliance standards/SLAs are achieved
Use security tools and resources to correlate suspicious events, providing context around the event, determine root cause and provide regular updates and recommend modifications to existing systems and procedures
Perform deep-dive incident analysis of various data sources by analysing and investigating security related logs against short and medium-term threats and IOCs
Execute vulnerability and web application assessments; provide analysis and recommendations to mitigate potential threats
Proactively analyse threats to QBE's systems, assets and business operations and provide recommendations for mitigating controls and/or remediation
Act as a point of reference to guide and advise others to ensure the sharing of knowledge and best practice throughout the team
Required Education
Bachelor's Degree or equivalent combination of education and work experience
Required Experience
3 years relevant experience
Preferred Competencies/Skills
Good technical expertise of security solutions and technologies, including: Windows, Linux, Networking, Security Architecture experience and knowledge of packet flow/TCP/UDP traffic, Firewall and proxy technologies, cloud solutions, anti-virus, static and dynamic malware analysis techniques
Working experience of performing analytics with different types of logs, i.e. network, active directory, database, DNS, firewall, proxies, host-based security, cloud and applications logs etc.
Working experience in handling security incidents at all levels related to incident response
Working experience in managing 2nd/3rd level security events
Working experience on known SIEM and Log Correlation Tools
Working experience on Case Management Tool
Experience of establishing and maintaining strong relationships with global security operations colleagues and other departments, including network teams and incident managers
Demonstrated ability to make decisions on remediation and counter measures
Be able to communicate effectively and update senior stakeholders globally
Excellent troubleshooting and problem-solving skills
Highly organized, self-motivated and able to work without direction.
Able to anticipate problems and potential problems and take appropriate pre-emptive action
Good planning and prioritization ability. Ability to manage concurrent activities with varying/conflicting priorities
Personable, conscientious, ability to cope with pressure and to prioritise work
Ability to analyze, define and specify customer requirements
Preferred Licenses/Certifications
GIAC Certified Incident Handler (GCIH)
GIAC Certified Intrusion Analyst (GCIA)
GIAC Penetration Tester (GPEN)
GIAC Reverse Engineering Malware (GREM)
Certified Information Systems Security Professional (CISSP)
Certified Cloud Security Professional (CCSP)
Council for Registered Ethical Security Testers (CREST)
Offensive Security Certified Professional (OSCP)
Preferred Knowledge
Advanced understanding of tools, techniques and procedures that modern attackers use to compromise organisations.
Demonstrable understanding of various security frameworks and methodologies such as OWASP 10, SANS TOP 25, NIST Incident Reponses, CERT Model, Diamond Model, MITRE ATT&CK, and the Extended Cyber Kill Chain.
QBE Cultural DNA
Everything we do at QBE is underpinned by our DNA (which interlinks seven cultural elements) - because we know it's not just what we do that matters, it's how we do it that makes the difference. We expect all employees to role model and inspire the right behaviours that link to our cultural elements:-We are customer-focused-We are technical experts-We are inclusive-We are fast-paced-We are courageous-We are accountable-We are a teamAll employees are expected to adhere to QBE's Code of Ethics and Conduct and apply sound risk management practices
US Only - Travel Frequency
Infrequent (approximately 1-4 trips annually)
US Only - Physical Demands
General office jobs: Work is generally performed in an office environment in which there is not substantial exposure to adverse environmental conditions. Must have the ability to remain in a stationary position for extended periods of time. Must be able to operate basic office equipment including telephone, headset and computer. Incumbent must be able to lift basic office equipment up to 20 lbs.
US Only - Disclaimer
To successfully perform this job, the individual must be able to perform each essential job responsibility satisfactorily. Reasonable accommodations may be made to enable an individual with disabilities to perform the essential job responsibilities.
Job Type
Individual Contributor
Australia/New Zealand Only - Advice/Non-Advice
Non-Advice: This role is not authorised to provide financial product advice to retail customers in respect of General Insurance products. Financial product advice, means a statement or recommendation made to a retail customer with the intention of influencing their decision in considering a general insurance product.
Global Disclaimer
The duties listed in this job description do not limit the assignment of work. They are not to be construed as a complete list of the duties normally to be performed in the position or those occasionally assigned outside an employee's normal duties. Our Group Code of Ethics and Conduct addresses the responsibilities we all have at QBE to our company, to each other and to our customers, suppliers, communities and governments. It provides clear guidance to help us to make good judgement calls.
Application Close Date: 30/08/2022 11:59 PM
How to Apply:
To submit your application, click "Apply" and follow the step by step process.
Equal Employment Opportunity:
QBE is an equal opportunity employer and is required to comply with equal employment opportunity legislation in each jurisdiction it operates.
QBE Insurance
Other Info
Manila City, Metro Manila
Permanent
Full-time
Permanent
Full-time
Submit profile
QBE Insurance
About the company
QBE Insurance jobs
Manila, Metro Manila
Position Security analyst recruited by the company QBE Insurance at MetroManila, Manila, Joboko automatically collects the salary of , finds more jobs on Security Analyst or QBE Insurance company in the links above
About the company
QBE Insurance jobs
Manila, Metro Manila