Employer: QBE Management Services (UK) Limited Salary: Date Added: 20/11/2023
Primary Details
Time Type: Full time Worker Type: Employee
Cyber Security Lead
London/Hybrid
Who we are:
At QBE, our purpose is to enable a more resilient future. We’re an international insurer and reinsurer with a local presence in 27 countries. Leveraging our deep expertise and insights, QBE offers commercial, personal and specialty products and risk management solutions to help people and businesses manage risks, build strength, and embrace change to their advantage.
The Opportunity:
Leading a significant transformational change in the way Cyber and information security risk is considered and mitigated across the core business, 3rd party suppliers, programs and projects.
This role will play a pivotal part in making QBE safe, secure and resilient; working to continuously out pace and outsmart cyber threat faced by our business.
This is part of our Group Cyber Security team accountable for safeguarding QBE from increasingly sophisticated Cyber and information security threats.
This is a highly collaborative consulting and delivery position requiring a sustained level of curiosity and a continuous ability to grow deep technical knowledge that translates into insight to solve root cause problems and supports strategic business outcomes.
Your responsibilities for this role may include, but are not limited to:
Deliver an effective Cyber and information security Capability across QBE, partnering to deliver appropriate levels of engagement and risk mitigation
Drive building cyber and information security experience across QBE, coaching understanding, building awareness and engendering healthy curiosity
Build strong collaborative relationships, providing advice and working together to identify and solve root cause problems; demonstrating great tenacity in reducing potential threats and risks
Take personal accountability for seeking out and identifying security weaknesses; seeing mitigation through to a secure conclusion
Drive Cyber engagement across QBE to ensure issues are identified, self-reported and notified to key stakeholders
Act with integrity and transparency in threat and risk identification and problem solving
Role model the creation, innovation and negotiation of solutions and risk mitigation strategies; driving fast paced and agile behaviours
Drive the development, execution and assurance of an effective Cyber practice; including the adoption of relevant policy, standards, processes and templates
Manage and quality assure staff augmentation and outsourced security arrangements; ensuring delivery to SLAs, quality controls and alignment with QBE requirements
Promote collaboration across Technology Services and IT suppliers to avoid security problems manifesting as business problems
Track compliance and security benefits to demonstrate impact and mitigation success
You will need to be able to display you have the following qualifications and experience:
Demonstrates exceptional resilience and tenacity in managing and mitigating 24×7 cyber threats whilst successfully managing work life balance
Problem solving mindset with tenacity to see solutions through to delivery
Demonstrable ability to coach a Cyber team to develop Cyber talent to build technical excellence and decision-making confidence
Insightful and expert ability to consider where and how people or technology could be exploited; getting into the mindset of an adversary
Exceptional ability to get deeply technical and apply that skill to the business environment
Decision-making ability when faced with complex and business critical threats
Excellent communication, negotiation and conflict management skills, with an ability to anticipate and pre-empt potential obstacles; strong listening skills
Good ability to write and articulate, summarise and present complex problems and messages in a succinct and comprehensible manner
Exceptionally curious and enquiring mindset with a fast paced and agile personal drive to meet business needs
Preferred Experience
Knowledge of front-end Agile tech SecOps practices and principles
Background in Application Security development
Demonstrable experience with security and risk-based standards such as ISO2700X, ISO31000, NIST800 and PCI-DSS and other relevant security risk standards and technologies.
Experienced in helping a business, its’ partners and customers to become more innovative and fast paced delivering improved business agility
Exposure to multiple in-house and outsourced service models, time zones and collaborating in a multi-cultural environment
Why QBE?
We understand that one size doesn’t fit all and that priorities can change depending on your life stage. That is why our blend of wellbeing initiatives and benefits offer flexibility to suit what matters most to you. It’s in the culture of our business, our QBE DNA, to support our people. Everything we do is underpinned by our QBE DNA – because we know it’s not just what we do that matters, it’s how we do it that makes the difference. In addition to this, we also offer flexible parental leave for both parents and have several employee network groups that support and empower our diverse workforce.
At QBE, we view our people as our most precious asset. We understand the importance of fostering a work environment that is responsive to the changing needs of today’s workforce. QBE aims to build a workplace that is fair and inclusive because we want to attract and retain the best people to do the job, we have adopted flexible working across the company and welcome this conversation(https://careers/flex-qbe/).
Some of the award’s QBE are proud to have won, been a finalist for, and shortlisted for include;
