Computer Science Jobs in Philippines

QBE

Security Analyst

Primary Details

Time Type: Full time

Worker Type: Employee

The role is to provide an effective and proactive response to cybersecurity-related events and incidents to protect QBE’s assets and services.
In addition, the role will support business stakeholders in the event of a security incident, and support incident management and escalation processes to the appropriate incident management teams.
We are looking for Tier 1 level support that will investigate a diverse set of alerts. The role should adapt to any changes in security operations to comply with various business requirements.

Job Description
  • Be part of a globally distributed team (24×7) that will use several security tools (e.g., SIEM, email triage platform, cloud security tooling, EDR solutions, etc) to investigate suspicious events.
  • Proactively monitor and respond to suspicious or true positive incidents across our security platforms.
  • Perform initial incident analysis of various security alerts by analysing and investigating security-related logs harvested from various security signals.
  • Provide recommendations and initial assessments to Tier 2 resources for deeper analysis and triage.
  • Perform timely escalation of cybersecurity incidents to Tier 2 resources and incident responders using incident management tools and other available channels.
  • Conduct research using various proprietary and open-source tools to identify current and emerging threats and risks to QBE.
  • Provide assessment and recommendations to mitigate potential threats or suppress any occurring false positive alerts.
  • Perform ad-hoc tasks and completion of goals relating to ongoing projects and initiatives.
  • Generating reports and providing insights on the efficacy of the current security tools, incident responses, procedures, and other security-related information.
Required knowledge and skills:
  • Bachelor’s degree in computer science, programming, or IT-related field. Fresh graduates are welcome to apply.
  • The ability to work in a fast-paced and time-sensitive role.
  • Be able to communicate effectively and update various stakeholders globally.
  • Proactive, analytical, and able to solve complex investigations.
  • Understanding of known threat actors, techniques, and procedures that modern attackers use to compromise organisations.
Advantage, but not required knowledge and skills:
  • 1-2 years relevant security experience performing similar duties working in a Security Operation Centre, Cybersecurity, and other IT-related fields.
  • Advanced training or certifications (e.g., ISC2, ISACA, SANS, Azure, etc.)
  • Knowledge of security solutions and technologies like Windows, Linux, IPS/IDS, Firewalls, Email gateways, proxy technologies, cloud solutions, endpoints, and mobile devices.
  • Be able to perform correlations and analytics with diverse types of logs, i.e., network, active directory, database, DNS, firewalls, proxies, host-based security, cloud, and applications logs.
Benefits in joining our team:
  • Be part of a global team and enrich your cybersecurity technical skills from subject matter experts.
  • Tailored professional development.
  • Exclusive access to industry-leading training platforms.
  • Opportunity to get firsthand experience across industry-leading security tools.
  • We are a team that values diversity and inclusion.

To apply for this job please visit ph.indeed.com.