Cyber Detection and Response Specialist

About Youi

At Youi, we don't believe in conforming to the status quo. We're not your typical insurance company - and that goes for our approach to both selling insurance and hiring our team. With over 1,800 employees, we have ambitious goals to keep growing and continue delivering awesome insurance solutions across new products and distribution channels.

We pride ourselves on our diversity and individuality, both among our employees and the customers we serve. We believe that it is the unique combination of skills, perspectives, and experiences of our people that makes us truly stand out. Our company values reflect this - we are a dynamic, human-focused, honest, and passionate team who is dedicated to providing awesome service to our customers.

We recognise and value the contributions of each team member to our culture and success. At Youi, we're not afraid to be different, and we're looking for people who share our values and want to be part of a team that is making a difference in the insurance industry.

If you want a career that lets you, be you, and rewards you for your hard work, Think Youi.

About the Role

This position provides cyber security incident detection and response to Youi's computing, network environment and application services. Detection and Response is achieved by reviewing and investigating potential security vulnerabilities, threats and cyber security incidents as reported by security tools; performing security data analytics; reviewing and responding to identified Managed Security Service Partner (MSSP) / Security Operations Centre (SOC) events/incidents and staying ahead of potential security challenges through the gathering and processing of cyber intelligence.

The role includes development, customisation, and operation of the Managed Security Service Partner (MSSP) platform and requires hands-on experience with automation, and skills in scripting and programming.

You will work closely with other Cyber Security and IT personnel to ensure appropriate controls are in place and monitored to ensure that the MSSP platform is managed effectively. Specifically addressing Critical, High, and Medium findings according to the cyber security incident response policy and plan.

About you 

• Bachelor of Science degree in Information Technology or related field.
• Demonstrated Security Enterprise experience (3 years' is a general indicator).
• Information Security Certification (SPLUNK, SANS, ISC2 certifications, and CompTIA Cybersecurity Analyst (CySA)) are considered favourably.
• Proven experience working with and managing incident detection and response.
• Prior experience performing SIEM content development (Arcsight, Splunk, Qradar, Nitro, or similar SIEM platform).
• Prior experience performing incident response and threat hunting.
• Ability to comprehend various log formats and source data for SIEM Analysis.
• Knowledge of programming/scripting fundamentals including regex.
• Demonstrated competency with information security fundamentals and technical concepts-including networking and various cyber-attacks.
• Knowledge of windows and UNIX platforms (security or system administration).
• Understanding of the capabilities and types of security controls used in a corporate environment.
• Thorough understanding of incident detection and response processes and procedures.
• Security Information and Event Management.
• Relevant exposure to Vendor products might include Splunk, F5, Palo Alto and Qualys.
• Excellent communication and interpersonal skills including verbal, written (email) and presentation (PowerPoint).
• Exceptional problem-solving capabilities.
• Strong documentation skills.
• Able to balance deliverables according to priority and agreed dates.

How to apply 

We would love the opportunity to get to know you better, but we know it works both ways. Get to know a little more about us at and click "APPLY NOW" to take that next step. 

No agencies thanks, we've got this one covered.