Primary Details

Your new role

• Investigate and respond to security events and incidents across endpoint identity network application cloud and SaaS environments.
• Lead or support Tier 2/3 incident response including containment eradication recovery and post incident analysis.
• Correlate multi-source telemetry (SIEM EDR/XDR cloud identity email threat intelligence) to determine root cause scope and impact.
• Provide clear timely incident updates and risk assessments to technical teams and stakeholders.
• Conduct proactive hypothesis-driven threat hunting aligned to MITRE ATT&CK and current adversary tradecraft.
• Analyze emerging threats attacker behavior and indicators relevant to the enterprise environment.
• Improve detection capability by partnering with detection engineering to enhance coverage fidelity and reduce noise.
• Investigate threats related to cloud workloads SaaS platforms and identity systems.
• Analyze and respond to identity compromise privilege abuse misconfiguration and unauthorized access scenarios.
• Support implementation and validation of modern Zero Trust-aligned security controls.
• Drive improvements in detection response and analyst workflows through automation and process optimization.
• Evaluate and operationalize new security technologies and capabilities.
• Maintain accurate defensible documentation of incidents and recommend enhancements to playbooks and procedures.
• Partner with infrastructure cloud application and identity teams to remediate issues and reduce risk.
• Act as a technical resource for analysts and contribute to knowledge sharing and team development.
• Communicate complex security concepts clearly to both technical and non-technical stakeholders.

Required Qualifications

• Bachelors Degree or equivalent

Preferred Experience

• Experience contributing to security operations incident response or threat detection in an enterprise environment.
• Handson experience with security monitoring and analysis across:
  • Endpoint (EDR/XDR)
  • Identity (IAM Active Directory Entra ID)
  • Network and firewall technologies
  • Cloud platforms and SaaS environments
• Leading incident response to malware phishing ransomware cloud compromise and identity attacks
• Familiarity with SIEM platforms alert triage case management and log correlation.
• Writing and tuning detection queries using KQL SPL or similar languages.
• Understanding of common attacker techniques malware behavior and modern threat trends.
• Scripting or query experience using PowerShell Python or similar languages.
• Strong analytical and problemsolving abilities with attention to detail.
• Ability to prioritize and manage multiple investigations simultaneously.
• Clear concise written and verbal communication skills.
• Confidence making remediation and containment recommendations based on risk.
• Selfmotivated organized and comfortable working with minimal supervision.

Skills: This section will automatically populate on the job req in Workday

Compensation Package: The salary range for this role is provided above. This is the national range for location(s) listed. The salary offer will be decided based on the roles complexity its location and the candidates professional background including their education and experience. Beyond the base salary regular full-time and part-time employees will also be eligible for QBEs annual discretionary bonus plan based on business and individual encourage all candidates to apply even if their salary expectations fall outside of this range as we are committed to finding the right fit for our team.

QBE Benefits: We offer a range of benefits to help provide holistic support for your work life whatever your circumstances. As a QBE employee you will have access to:

• Hybrid Working a mix of working from home and in the office

• 22 weeks of paid leave for family growth with 12 weeks available to all parents on a gender-equal basis
• Competitive 401(k) program with company match up to 8%
• Well-being program including holistic wellbeing coaching gym membership confidential counselling financial and legal advice
• Tuition Reimbursement for professional certifications and continuing education
• Employee Network and Community QBE actively supports six Employee Networks and many ways to give back to your community

To learn more click here: Benefits QBE US.

Why QBE What if you could have a positive impact at work and in the world

At QBE were enabling a more resilient future for our customers communities environment and for our people. Were building momentum to achieve something significant and know our people are at the center of our success.

Our industry offers interesting and varied careers where you can help people to protect what matters most. As part of the QBE team youll get to spend every day working with people who are passionate talented and kind. And our international scale means were big enough for your ambitions yet small enough for you to make a real impact.

Join us now so you can be part of our success and we can be part of yours!

is committed to providing reasonable accommodation to among others individuals with disabilities and disabled veterans. If you need an accommodation because of a disability to search and apply for a career opportunity with QBE please inform our Talent Acquisition team to let us know the nature of your accommodation request and your contact information.

Equal Employment Opportunity:

QBE provides equal employment opportunities to applicants and employees without regard to race; color; gender; gender identity; sexual orientation; religious practices and observances; national origin; pregnancy childbirth or related medical conditions; protected veteran status; or disability or any other legally protected status.

This position is not eligible for visa sponsorship. Applicants must be authorized to work in the United States on a full-time basis without the need for current or future sponsorship.

Supplementary information

Skills:

How to Apply:

To submit your application click Apply and follow the step by step process.

Equal Employment Opportunity:

QBE is an equal opportunity employer and is required to comply with equal employment opportunity legislation in each jurisdiction it operates.