Incident Response Specialist, Group Cyber

Incident Response Specialist, Group Cyber

**Primary Details**
Time Type: Full time

Worker Type: Employee
- Location: Sydney
- Type: Permanent, full time
- Hybrid role, Happy to talk flexible working

**The opportunity**

**Your new role**
- Provide expert technical support to coordinate and resolve enterprise-wide cybersecurity incidents, ensuring prompt and effective incident handling.
- Continuously monitor and analyse security alerts from various sources within the network, identifying potential threats and determining their root causes.
- Communicate cybersecurity incidents clearly and effectively to both technical teams and business stakeholders, ensuring understanding across all levels.
- Act as a point of escalation, guiding and advising security analysts on proper triage processes and best practices to ensure accurate incident management.
- Assist in designing and enhancing incident response capabilities by leveraging recognised cybersecurity frameworks (e.g., NIST, MITRE ATT&CK) for structured and effective responses.
- Collect, analyse, and organise incident data to identify vulnerabilities and provide actionable recommendations for remediation and risk mitigation.
- Track and document the lifecycle of cybersecurity incidents from initial detection through to final resolution, ensuring all steps are properly recorded.
- Collaborate with threat intelligence partners to correlate threat data, enhancing proactive defense measures and supporting the development of a comprehensive Cybersecurity Incident Management Plan.

**About you**
- Proven experience in security operations, including roles within a Security Operations Center (SOC), Cybersecurity, Incident Response, or similar IT security functions.
- Strong ability to proactively address security incidents, lead investigations, and develop solutions, with a focus on complex problem-solving in time-sensitive environments.
- In-depth understanding of known threat actors, attack techniques, and procedures commonly used by modern attackers to compromise organisations.
- Proficient in performing detailed log analysis across various types of logs such as network, active directory, database, DNS, firewall, proxies, host-based security, and cloud technologies.
- Exceptional communication skills with the ability to engage and collaborate with global stakeholders, including C-level executives and senior management, particularly in high-pressure situations.
- Capable of taking charge of a situation, providing guidance to team members, and acting as the go-to person in the absence of the GSOC Manager. Proactive mindset with strong initiative and a passion for cybersecurity.
- Ability to work in a diverse, culturally rich team environment, with experience in navigating global operations and working effectively with stakeholders from different regions and backgrounds.

**Preferred Licenses/Certifications**:

- GIAC Certification (GCIH), (GCIA), (GPEN), (GREM)
- Offensive Security Certified Professional (OSCP)

**About QBE**

We can never really predict what's around the corner, but at QBE we're asking the right questions to enable a more resilient future - helping those around us build strength and embrace change to their advantage. We're an international insurer that's building momentum towards realising our vision of becoming the most consistent and innovative risk partner.

And our people will be at the centre of our success. We're proud to work together, and encourage each other enable resilience for our customers, our environment, our economies and our communities. With more than more than 13,000 people working across 27 countries, we're big enough to make a real impact, but small enough to provide a friendly workplace, where people are down-to-earth, passionate and kind.

We believe this is our moment - what if it was yours too? Your career at QBE - let's make it happen

**Benefits**

We offer a range of benefits to help provide holistic support for your work life, whatever your circumstances. As a QBE employee you will have access to and benefit from:

- 'Hybrid Working' - a mix of working from home and in the office to enhance your work/life balance
- Our 'Thriving at our Best' wellbeing program, including free holistic wellbeing coaching, nutritional, confidential counselling, financial and legal advice
- 18 weeks' gender-equal flexible leave for all new parents, including paid super
- The ability to maximise retirement savings through voluntary super contributions and company matching
- Income protection insurance & reimbursed Death and Total Permanent Disability insurance premiums
- Discounts on insurance products, car hire, hotels, goods and services including benefits through our various sports and arts sponsorship partners

**Rewards & Recognition**

We value our employee's experience with us and are proud to have been recognised for the following awards:

- 2021 LinkedIn Top Employer & HRD Employer of Choice
- 2020 Best Workplace Diversity & In