385 Cybersecurity Specialist jobs in the Philippines

Job Description: Cybersecurity Specialist

Responsibilities:

·    Detect and respond to security incidents across the Applus company.

·    Log analysis.

·    Develop and implement preventive security measures (detection, monitoring, exploitation).

·    Develop security tools that enable the Applus security team to operate at high speed and scale.

·    Vulnerability management and mitigation.

·    Maintenance of security tools.

·    Test and evaluate security products.

·    Stay up to date with the latest developments in security and technology.

Knowledge and Skills:

·    Strong knowledge of networks and operating systems (Windows/Linux).

·    Understanding of network and system administration, virtualization, software development processes, security evaluation, and penetration testing.

·    Fluent English (spoken and written).

·    The ability to perform penetration testing and technical audits will be positively valued.

·    Ability to work in a team.

·    A responsible and motivated individual.

Required Experience:

·    Cybersecurity analyst with 2–3 years of experience in cybersecurity incident management.

·    Experience in Cybersecurity Operations environments, particularly in SOC Level 1–2, will be valued.

·    Knowledge of managing security tools such as:

·    Firewalls (FW)

·    Endpoint Detection and Response (EDR)

·    Intrusion Detection/Prevention Systems (IDS/IPS)

·    Network Access Control (NAC)

·    Mobile Device Management (MDM)

·    Security Information and Event Management (SIEM)

·    Cloud Access Security Broker (CASB)

·    Secure Email Gateway (SEG)

·    Web Application Firewall (WAF)

Experience with vulnerability analysis tools such as nmap, Nessus, Nexpose, OpenVAS, etc.

Cyber Security Analyst

Location: Remote / Flexible (with overlap to US CST)

Department: Security Operations

Schedule: Monday–Friday, 8:00 AM–5:00 PM US CST (flexibility +/- 3 hours)

Salary: PHP80,000 to 95,000/mo (paid bimonthly)

About the Role

As a Cyber Security Analyst, you will play a key role in supporting our Incident Response and Security Operations programs, ensuring the safety and integrity of both the company and our clients' systems. You will be responsible for monitoring, identifying, and investigating security events, responding to incidents in a timely and structured manner, and escalating issues as needed. This role requires strong analytical skills, attention to detail, and a passion for staying ahead of emerging cybersecurity threats.

Key Responsibilities:

• Develop an understanding of Marco's information systems, managed technology solutions, and security architecture.
• Monitor security solutions, tickets, and communication channels to identify and triage potential threats.
• Respond promptly to escalated incidents, perform investigations, and provide thorough post-event analyses.
• Collaborate with clients, internal teams, vendors, and legal stakeholders to manage and resolve security threats.
• Stay updated on the latest threat intelligence, security breaches, malware, and regulatory changes.
• Continuously tune, manage, and evaluate security solutions for effectiveness.
• Follow the company's incident response plan and maintain proficiency with the NIST Cybersecurity Framework (CSF).
• Document investigations, maintain accurate records, and comply with administrative procedures.
• Participate in on-call rotation and provide after-hours support when required.
• Attend team and company meetings and contribute to daily security management tasks.
• Perform additional duties as assigned in line with company policies.

Qualifications:

• Associate degree in Computer Science, Cybersecurity, Information Security, or related field preferred.
• 1+ years in information technology, cybersecurity, or related experience (or equivalent combination of education and experience).
• Certifications (preferred): Security+, CISSP, CISA, CEH, GSOC, or equivalent incident response/forensics certifications.
• Understanding of IT service management and security operations concepts.
• Knowledge of common security products (firewalls, EDR, SIEM, network security, PIM/PAM solutions).
• Proficiency with Microsoft Office and business collaboration tools.
• Strong organizational and time management skills with attention to detail.
• Excellent verbal and written communication skills across technical and non-technical audiences.
• Self-motivated, proactive, and able to work independently with minimal supervision.
• Integrity, professionalism, and commitment to organizational values.
• Dedication to continuous improvement and delivering high-quality results.

Job Type: Full-time

Pay: Php80, Php95,000.00 per month

Benefits:

• Additional leave
• Health insurance
• Work from home

Application Question(s):

• Are you comfortable with the proposed salary range of ₱80,000 to ₱95,000 per month for this role? If not, please provide your salary expectation in PHP/month.

Education:

• Elementary/ Primary school (Preferred)

Experience:

• NIST Cybersecurity Framework (CSF): 1 year (Required)
• Security+, CISSP, CISA, CEH, GSOC: 1 year (Required)
• firewalls, EDR, SIEM, network security, PIM/PAM solutions): 1 year (Required)
• Microsoft Office: 1 year (Required)

Location:

• Philippines (Required)

Work Location: Remote

If you want a role where your expertise
matters on Day 1

and you get to
protect real businesses from live cyberattacks

, this is it.

We are a stable group with
20+ operating companies

(including medical, pharma, and hospitality brands), and right now we urgently need a
cybersecurity expert

to contain, remediate, and strengthen our systems after a malware attack hit 5 of our websites.

This is not a "corporate checkbox" job. It's hands-on, mission-critical, and impact-driven. If you perform above expectations, your compensation and
ongoing engagement

with us will grow accordingly.

Why Work with Us

• Immediate Impact

— Your first day will involve real incident response, digital forensics, and helping contain an active malware event.

• Serious Stability

— We operate 20+ brands with long-term growth, which means steady work, new challenges, and continuous learning.

• Trusted Filipino Team

— We already have Filipino teammates who've been with us for 10+ years; loyalty, expertise, and growth are valued here.

• Leadership Opportunity

— You won't just patch holes. You'll guide security best practices, train staff, and help set up systems that prevent future breaches.

What You'll Do

Your immediate role:

• Lead incident response for a current malware attack across 5 company websites.

• Conduct forensic investigation: identify the
  attack vector

, potential
data breaches

, and assess impact.

• Contain the breach and secure sensitive information.

• Perform a full audit of web assets, including open ports, vulnerabilities, and network traffic.

• Recommend and implement tools like VPNs, static IPs, WAFs, and BDR appliances.

• Set up backup and recovery strategies to prevent repeat incidents.

• Run penetration testing, vulnerability scans, and server log analysis with automation tools.

Your ongoing role:

• Develop company-wide cybersecurity hygiene and awareness training.

• Act as a subject matter expert for our management team.

• Strengthen and monitor our systems against future threats.

What We Look For

• Incident Response Experience

— You've handled malware attacks or cyber incidents before, not just theory.

• Forensics & Tools Knowledge

— You know what tools to use for digital forensics, threat analysis, log monitoring, and recovery.

• Strategic Mindset

— You can recommend security architecture (VPN, WAF, backup appliances, etc.) and explain the "why" behind them.

• Clear Communicator

— You can guide non-technical team members and explain risks, impacts, and next steps in plain English.

How We'll Evaluate You

When applying, be prepared to answer questions such as:

• What is your incident response plan for a malware attack?

• How will you determine if sensitive data was compromised?

• Can you perform penetration testing and network traffic analysis for us?

• What tools do you use for forensic analysis and automation?

• How would you design our backup and disaster recovery plan?

How to Apply

1.Send us your
resume

+
short cover note

explaining why you're the right fit.

2.Answer this question in your application:
"If you were brought in today to contain and remediate our malware attack, what are your first 5 steps?"

3.Share your
hourly rate

and an
estimate of hours

you believe full remediation would take.

Why This Matters Now

We are currently facing an active malware attack affecting 5 company websites. This is not theory or "future planning"—we need a
skilled professional who can take the lead immediately

.

Your first mission will be
containment and recovery

. From there, you'll help us set up stronger defenses, build smarter recovery systems, and guide our team on better security practices.

This role is
impact-driven

: if you succeed, you will not only help secure our business today but also shape how we prevent and respond to threats tomorrow.

Important Note for Applicants

This is a
high-impact, high-trust role

. We are looking for a partner who:

• Is confident in
  hands-on malware remediation

• Can
  communicate clearly

with non-technical leadership

• Values both
  immediate execution

and
future prevention

If that's you, we want to hear from you today.

We have an exciting day shift, opportunity available for a Cybersecurity Consultant. Work from home or the office - you choose

When you join Yempo, you'll receive the following fantastic benefits:

• Highly competitive salary – paid weekly

• HMO enrollment on commencement

• Additional HMO dependents added each year of service

• 20 vacation days per year; 7 sick days

• Annual performance bonuses and incentives

• Annual salary reviews and increases

• Free cooked rice, snacks and hot drinks

• Company polo shirts provided

• Fantastic, bright and cheerful open-plan work environment

• Prestigious clients and highly professional and friendly co-workers

Our Client

In this role, you will be assigned to our Australian-based client, a trusted cybersecurity partner helping organizations navigate the evolving cyber landscape with confidence. They specialize in delivering unified, native security solutions that protect workforce, data, cloud, and AI environments while simplifying complexity and maximizing the value of Microsoft Security investments. By combining zero-trust principles, AI-native security, and industry security frameworks with practical experience, we empower organizations to safely and efficiently embrace AI and modern technologies. They are also committed to building lasting partnerships with their customers, enabling them to operate smarter, safer, and more resiliently in an AI-driven world.

Your Responsibilities

The primary role of a Cybersecurity Consultant is to deliver projects and has the following responsibilities:

• Be accountable for the deliverables within the Statement of Work, including implementation of security solutions

• Reviewing customer project deliverables and providing timely feedback to the project team

• Provide input and time estimation for Statements of Work

• Work as part of a team to deliver projects

• To work alongside the client PMO to determine work tasks, priorities, and schedules

• During an engagement to identify potential customer problems and suggest solutions

• Complete weekly project status reports

• Provide knowledge transfer and mentoring of customer technical staff and Secure Native colleagues as required

• Identify pre-sales opportunities during the course of the engagement that could lead to further sales

• To conduct all activities in accordance with client's policies and procedures

• Achieve assigned KPIs for your role

Your Background

The primary skills and experience required of a Cybersecurity Consultant are:

• Possess level 300 skills and implementation knowledge, and hands-on experience in all or some of the following:

• • Microsoft Azure
• • Microsoft Security
• • Microsoft Intune
• • Microsoft Purview
• • Microsoft Windows Client & Server
• • Microsoft Office 365
• • Microsoft Entra ID / Active Directory

• At least 2 years of experience delivering high-value customer projects in a technical delivery role

• At least one of Microsoft certifications SC-100, SC-200, SC-300, SC-400 or AZ-500 is preferred

• Experience authoring documentation for consumption by different stakeholder groups

• Ability to whiteboard and present technical concepts to a customer

• Familiarity and experience with Agile framework and project governance would be a plus

• Able to work autonomously and as part of a team

• Excellent collaboration skills, well-organised, flexible, proactive with a high attention to detail

• Solid documentation skills

• Strong time management skills – ability to multitask, set priorities and meet deadlines

• Great ability to build relationships with internal and external stakeholders

• Highly motivated and result-driven

Disclaimer for salary ranges. Yempo provides an indicative range of salary that we deem relevant for the advertised role. This may be adjusted for the skills and experience of the selected candidate.

NOTE: When you click the apply button, you will be re-directed to Cambridge University Press & Assessment's website where you will be required to create a profile and upload a copy of your CV to complete your application.

Employment type: Permanent

Location: Makati City, Metro Manila

Work setup: Hybrid (open to 2x a week in the office)

Work schedule: During BST, the schedule is 11AM to 7PM Manila time ( 3PM to 11PM UK time). During GMT, the schedule is 12PM to 8PM Manila time (4PM to 12AM UK time).

Pay range:Php 102,000 - Php 139,000

Discover a world of endless possibilities with Cambridge University Press & Assessment, a distinguished global academic publisher and assessment organisation proudly affiliated with the prestigious University of Cambridge.

We are looking for a Cloud Security Engineer to join our global Group Security department and be a key member of the virtual Infrastructure Security Delivery team.Your goal will be to ensure continual security improvement within the delivery and management of our cloud platforms. It is essential that you have knowledge in securing AWS services, but knowledge of securing Azure services is also beneficial. This role is the lead for all matters pertaining to public cloud security management at Cambridge.

Why Cambridge?

At Cambridge, our unwavering commitment is to excel in education, learning, and research on a global scale. With a presence in over 170 countries, we empower millions of individuals, unlocking their potential and enabling their success. From dedicated teachers shaping young minds to visionary researchers pushing the boundaries of knowledge, we embody a relentless pursuit of enlightenment, curiosity, and understanding.

We embrace change as an opportunity for growth and progress, constantly adapting to meet the evolving needs of our customers. Collaboration and attentive listening are at the heart of our journey, as we work hand in hand with our customers and each other to innovate and discover more effective ways to achieve our goals. We believe people thrive in an environment where Trust and Empowerment are at the forefront, which is why all our new team members are provided regularisation on their first day so they can start #PursuingPotential from day one.

Joining Cambridge means becoming a part of an extraordinary institution renowned worldwide. Beyond that, you'll become a part of a vibrant and forward-thinking community that transcends tradition, fostering a culture of continuous growth and personal development. Here, we provide the perfect environment for you to thrive, supporting your professional journey and empowering you to reach your highest potential.

What can you get from Cambridge?

In this role, you'll have the opportunity to collaborate with colleagues from diverse branches, expanding your horizons and enriching your understanding of different cultures. We value your wellbeing and offer stability, fostering your professional and personal growth through internal and external activities and training sessions to help enrich your skillset.

Enjoy work-life balance flexibility through our range of options, including flexible schedules, hybrid work arrangements, and generous paid leave. As a regular employee on Day One, you'll have access to comprehensive healthcare benefits, ensuring your peace of mind with coverage for dependents, group life insurance, and robust well-being programs.

What makes you the ideal candidate in this role?

As a specialist Cloud Security Engineer, you will play a crucial role as a member of the virtual Infrastructure Security delivery team, with accountability to Cambridge's global Group Security department, meaning a close interaction with colleagues within the wider Security Engineering team each with their own specialisms. Your expertise and insights will ensure that effective security measures are embedded within Cambridge's use of AWS and Azure cloud platforms, and that advancements in the use of cloud have security oversight.

Please note that this role's working hours will align with the UK time zone.

The following will help you be an ideal candidate for this post:

• 5+ years of experience working within and securing AWS services, knowledge of Microsoft Azure services and security would additionally be beneficial.
• Demonstrable ability of assessing, planning, and implementing security controls within cloud.
• Knowledge and expertise with cloud security platforms such as AWS GuardDuty, Inspector, and Control Tower, Azure Security Center and third-party platforms such as for Cloud Security Posture Management and SIEM systems.
• Proficiency with DevSecOps practices, including embedding security components within build pipelines.
• Certifications in security and public cloud is an advantage (e.g. ISC2 CCSP, AWS Certified Security Specialty, Microsoft Azure Security Engineer, or similar).
• Skilled with common scripting languages such as PowerShell, Python, or similar.

If you have the drive to develop a security-minded culture within Cambridge's infrastructure and public cloud platform, and the desire to be part of a globally renowned institution that celebrates innovation, embraces inclusion, and empowers learners, we invite you to pursue your potential with us.

Employment type
: Permanent

Location
: Makati City, Metro Manila

Work setup
: Hybrid (open to 2x a week in the office)

Work schedule
: During
BST
, the schedule is
11AM to 7PM Manila time
( 3PM to 11PM UK time). During
GMT
, the schedule is
12PM to 8PM Manila time
(4PM to 12AM UK time).

Pay range
: Php 102,000 - Php 139,000

Discover a world of endless possibilities with Cambridge University Press & Assessment, a distinguished global academic publisher and assessment organisation proudly affiliated with the prestigious University of Cambridge.

We are looking for a Cloud Security Engineer to join our global Group Security department and be a key member of the virtual Infrastructure Security Delivery team.
Your goal will be to ensure continual security improvement within the delivery and management of our cloud platforms. It is essential that you have knowledge in securing AWS services, but knowledge of securing Azure services is also beneficial. This role is the lead for all matters pertaining to public cloud security management at Cambridge.

Why Cambridge?
At Cambridge, our unwavering commitment is to excel in education, learning, and research on a global scale. With a presence in over 170 countries, we empower millions of individuals, unlocking their potential and enabling their success. From dedicated teachers shaping young minds to visionary researchers pushing the boundaries of knowledge, we embody a relentless pursuit of enlightenment, curiosity, and understanding.

We embrace change as an opportunity for growth and progress, constantly adapting to meet the evolving needs of our customers. Collaboration and attentive listening are at the heart of our journey, as we work hand in hand with our customers and each other to innovate and discover more effective ways to achieve our goals. We believe people thrive in an environment where Trust and Empowerment are at the forefront, which is why all our new team members are provided regularisation on their first day so they can start #PursuingPotential from day one.

Joining Cambridge means becoming a part of an extraordinary institution renowned worldwide. Beyond that, you'll become a part of a vibrant and forward-thinking community that transcends tradition, fostering a culture of continuous growth and personal development. Here, we provide the perfect environment for you to thrive, supporting your professional journey and empowering you to reach your highest potential.

What can you get from Cambridge?
In this role, you'll have the opportunity to collaborate with colleagues from diverse branches, expanding your horizons and enriching your understanding of different cultures. We value your wellbeing and offer stability, fostering your professional and personal growth through internal and external activities and training sessions to help enrich your skillset.

Enjoy work-life balance flexibility through our range of options, including flexible schedules, hybrid work arrangements, and generous paid leave. As a regular employee on Day One, you'll have access to comprehensive healthcare benefits, ensuring your peace of mind with coverage for dependents, group life insurance, and robust well-being programs.

What makes you the ideal candidate in this role?
As a specialist Cloud Security Engineer, you will play a crucial role as a member of the virtual Infrastructure Security delivery team, with accountability to Cambridge's global Group Security department, meaning a close interaction with colleagues within the wider Security Engineering team each with their own specialisms. Your expertise and insights will ensure that effective security measures are embedded within Cambridge's use of AWS and Azure cloud platforms, and that advancements in the use of cloud have security oversight.

Please note that this role's working hours will align with the
UK time zone.
The following will help you be an ideal candidate for this post:

• 5+ years of experience working within and securing AWS services, knowledge of Microsoft Azure services and security would additionally be beneficial.
• Demonstrable ability of assessing, planning, and implementing security controls within cloud.
• Knowledge and expertise with cloud security platforms such as AWS GuardDuty, Inspector, and Control Tower, Azure Security Center and third-party platforms such as for Cloud Security Posture Management and SIEM systems.
• Proficiency with DevSecOps practices, including embedding security components within build pipelines.
• Certifications in security and public cloud is an advantage (e.g. ISC2 CCSP, AWS Certified Security Specialty, Microsoft Azure Security Engineer, or similar).
• Skilled with common scripting languages such as PowerShell, Python, or similar.

If you have the drive to develop a security-minded culture within Cambridge's infrastructure and public cloud platform, and the desire to be part of a globally renowned institution that celebrates innovation, embraces inclusion, and empowers learners, we invite you to pursue your potential with us.

A Network Security Analyst undertakes the task of designing, maintaining, and implementing computer and information security systems. The job description entails monitoring networks and detecting hostile activities and taking measures to defend such as systems attacks.

Duties and Responsibilities:

• To participate in the 24/7 operation and ensure a smooth and efficient operation.
• To monitor and analyze internet traffic for security breaches and denial-of-service attacks.
• To constantly follow the policies, procedures, and technologies in order to maximize the effectiveness and efficiency of security operations.
• To ensure both OLAs and external SLAs are met and followed accordingly.
• To ensure and enhance customer satisfaction through effective handling of security events and mitigation via promptly and professional communication with customers.
• To assist new product and service development and ensure a successful deployment.
• To study and learn protected applications, their user behaviors, and traffic patterns.
• To protect applications and servers from attacks by deploying countermeasures on the spot
• To support customers by diagnosing the occurrence of incidents, facilitating, provisioning, and fulfilling customers' requests.
• To coordinate network maintenance and liaise with corresponding parties to ensure smooth migration
• To work under the roster on a 24/7 basis

QUALIFICATIONS:

Education:

• A diploma holder in Computer Studies or IT is preferred.
• The holder of Network and Security professional certificates like CCNA/CCSP is an advantage.

Experience:

• At least 2 years of experience on network related or network security field (required)
• Knowledge and experience in working in SOC or equivalent is a plus

Skills and Competencies:

• Knowledge of DDoS attack types and handling DDoS events is an advantage.
• Has knowledge of internet routing and network troubleshooting. o Has knowledge in internet technologies like Anycast, BGP, OSPF, TCP/IP, UDP, ICMP, HTTP(S), GRE, SMTP, DNS, SSL.
• With good communication skills, has a strong sense of responsibility, a self-motivated team player, and service and customer-oriented.

Job Qualifications:

Must have at least 1–3-years of experience in IT network or security roles.

Bachelor's Degree

Proficient in English

CompTIA certification is preferred but not mandatory

Key Skills: Strong analytical abilities, keen attention to detail, collaborative mindset, and adaptability

Job Description:

User Support Responsibilities:

1. Help Desk Support - Providing troubleshooting assistance for hardware, software, and network issues after business hours.

2. Software & System Updates - Managing updates and patches for operating systems and applications to ensure security and efficiency.

3. Remote Monitoring & Management - Continuously monitoring systems to detect and resolve issues before they escalate.

Network Responsibilities:

1. Backup Check - Regular checks to ensure data backups are successful and retrievable.

2. Addigy Management - Overseeing Addigy, including profile and application deployment, configuration rollout, and automation.

3. Meraki Management - Overseeing Cisco Meraki operations, including dealing with outages, firmware upgrades, DHCP issues, VPN configurations, and network usage alerts.

4. Server Maintenance - Regular maintenance tasks for servers to ensure optimal performance and security.

5. Kaseya Management - Managing Kaseya, including handling outages, disk alerts, software management, and automation.

6. Email Issues - Resolving issues related to email delivery, such as undeliverable messages.

7. SSL Expiration - Monitoring and updating SSL certificates to ensure website security.

8. Health Check - Conducting regular health checks of systems, including hard drive replacements.

9. Registrar Management - Handling domain registration and related tasks.

10. Microsoft 365 Management - Managing various aspects of Microsoft 365, including Endpoint Manager, Purview, Azure Sync, and SharePoint.

11.   Vmware ESXI Management - Overseeing VMware ESXi, a hypervisor for virtual machine management.

Security Responsibilities:

1. Arctic Wolf - Monitoring and managing security services from Arctic Wolf, including tracking restricted country logins for various platforms.

2. Sentinel One - Overseeing Sentinel One operations, dealing with active threats, unrestricted sessions, agent status, and migrations.

3. Cisco Secure Client - Managing Cisco Secure Client, including deployment, site whitelisting, and configurations.

4. Microsoft Defender - Overseeing Microsoft Defender, including responding to user-reported emails such as SPAM and Phishing, and mitigating compromised accounts.

5.  PCI Compliance - Ensuring adherence to Payment Card Industry Data Security Standard (PCI DSS) requirements.

6.  CyberCNS - Regularly conducting vulnerability assessments and analysis and implementing remediation steps in accordance with industry standards.

7.  Blackpoint - Identifying and addressing potential security threats to safeguard every device and cloud account.

Work Set Up: Fully remote

Primary Details
Time Type: Full time

Worker Type: Employee

The role is to provide an effective and proactive response to cybersecurity-related events and incidents to protect QBE's assets and services.

In addition, the role will support business stakeholders in the event of a security incident, and support incident management and escalation processes to the appropriate incident management teams.

We are looking for Tier 1 level support that will investigate a diverse set of alerts. The role should adapt to any changes in security operations to comply with various business requirements.

Job Description

• Be part of a globally distributed team (24x7) that will use several security tools (e.g., SIEM, email triage platform, cloud security tooling, EDR solutions, etc) to investigate suspicious events.
• Proactively monitor and respond to suspicious or true positive incidents across our security platforms.
• Perform initial incident analysis of various security alerts by analysing and investigating security-related logs harvested from various security signals.
• Provide recommendations and initial assessments to Tier 2 resources for deeper analysis and triage.
• Perform timely escalation of cybersecurity incidents to Tier 2 resources and incident responders using incident management tools and other available channels.
• Conduct research using various proprietary and open-source tools to identify current and emerging threats and risks to QBE.
• Provide assessment and recommendations to mitigate potential threats or suppress any occurring false positive alerts.
• Perform ad-hoc tasks and completion of goals relating to ongoing projects and initiatives.
• Generating reports and providing insights on the efficacy of the current security tools, incident responses, procedures, and other security-related information.

Required knowledge and skills:

• Bachelor's degree in computer science, programming, or IT-related field. Fresh graduates are welcome to apply.
• The ability to work in a fast-paced and time-sensitive role.
• Be able to communicate effectively and update various stakeholders globally.
• Proactive, analytical, and able to solve complex investigations.
• Understanding of known threat actors, techniques, and procedures that modern attackers use to compromise organisations.

Advantage, but not required knowledge and skills:

• 1-3 years relevant security experience performing similar duties working in a Security Operation Centre, Cybersecurity, and other IT-related fields.
• Advanced training or certifications (e.g., ISC2, ISACA, SANS, Azure, etc.)
• Knowledge of security solutions and technologies like Windows, Linux, IPS/IDS, Firewalls, Email gateways, proxy technologies, cloud solutions, endpoints, and mobile devices.
• Be able to perform correlations and analytics with diverse types of logs, i.e., network, active directory, database, DNS, firewalls, proxies, host-based security, cloud, and applications logs.

Benefits in joining our team:

• Be part of a global team and enrich your cybersecurity technical skills from subject matter experts.
• Tailored professional development.
• Exclusive access to industry-leading training platforms.
• Opportunity to get firsthand experience across industry-leading security tools.
• We are a team that values diversity and inclusion.

QBE Cultural DNA

• Everything we do at QBE is underpinned by our DNA (which interlinks seven cultural elements) – because we know it's not just what we do that matters, it's how we do it that makes the difference. We expect all employees to role model and inspire the right behaviours that link to our cultural elements:
• We are customer-focused
• We are technical experts
• We are inclusive
• We are fast-paced
• We are courageous
• We are accountable
• We are a team
• All employees are expected to adhere to QBE's Code of Ethics and Conduct and apply sound risk management practices

US Only - Travel Frequency

• Infrequent (approximately 1-4 trips annually)

US Only - Physical Demands

• General office jobs: Work is generally performed in an office environment in which there is not substantial exposure to adverse environmental conditions. Must have the ability to remain in a stationary position for extended periods of time. Must be able to operate basic office equipment including telephone, headset and computer. Incumbent must be able to lift basic office equipment up to 20 lbs.

US Only - Disclaimer

• To successfully perform this job, the individual must be able to perform each essential job responsibility satisfactorily. Reasonable accommodations may be made to enable an individual with disabilities to perform the essential job responsibilities.

Job Type

• Individual Contributor

Australia/New Zealand Only - Advice/Non-Advice

• Non-Advice: This role is not authorised to provide financial product advice to retail customers in respect of General Insurance products. Financial product advice, means a statement or recommendation made to a retail customer with the intention of influencing their decision in considering a general insurance product.

Global Disclaimer

• The duties listed in this job description do not limit the assignment of work. They are not to be construed as a complete list of the duties normally to be performed in the position or those occasionally assigned outside an employee's normal duties. Our Group Code of Ethics and Conduct addresses the responsibilities we all have at QBE to our company, to each other and to our customers, suppliers, communities and governments. It provides clear guidance to help us to make good judgement calls.

Skills:
Adaptability, Business Continuity, Communication, Critical Thinking, Customer Service, Cybersecurity Risk Management, Digital Forensics, Forensic Investigations, Intentional collaboration, Malware Analysis, Managing performance, Process Improvements, Reporting and Analysis, Risk Management, Stakeholder Management

How to Apply:

To submit your application, click "Apply" and follow the step by step process.

Equal Employment Opportunity:

QBE is an equal opportunity employer and is required to comply with equal employment opportunity legislation in each jurisdiction it operates.