Cyber Security Consultant

Primary Details Time Type: Full time Worker Type: Employee

Cyber Security Consultant

Permanent

London / Hybrid

At QBE, our purpose is to enable a more resilient future.

We are an international insurer and reinsurer with a local presence in 27 countries.

The opportunity

We're hiring a Cyber Security Consultant on a permanent, full-time basis based in London, where you’ll help shape how cyber and information security risks are understood and managed across our business.

This is your chance to be part of a global team that’s always one step ahead - keeping QBE safe, secure, and resilient in a fast-moving digital world.

Your new role:

This is a hands-on, collaborative role where your curiosity and technical insight will help drive real change. Reporting to the Cyber Security Lead, you’ll work across teams and borders to ensure security is built into everything we do; from day-to-day operations to major transformation projects.

Main responsibilities:

• Leading security assurance, assessments, and advisory for IT and business projects (both Cloud and On-Prem), aligned to NIST 800-53 standards.

• Partnering with security architecture and other teams to define and embed security patterns and controls.

• Developing non-functional security requirements and guiding their integration into solution designs.

• Conducting security risk assessments and recommending effective mitigations.

• Advising and influencing stakeholders to correct non-compliant processes.

• Supporting strategic global and regional security initiatives and their rollout.

• Handling BAU incidents, service requests, and change requests.

About You

You’re someone who thrives on solving complex problems and staying ahead of cyber threats. You’re skilled in stakeholder engagement- building trusted relationships, communicating with non-technical audiences, and sharing insights, recommendations, and emerging trends in a way that drives informed decisions.

Skills you'll need:

• Experience carrying out 'Secure by Design' assessments.

• Good understanding of network security

• Assess where systems or processes may be vulnerable and proactively identify areas for improvement.

• Apply deep technical knowledge in a way that supports practical, business-aligned solutions.

• Stay curious and adaptable in a fast-paced, evolving environment.

• Communicate clearly and constructively, even when navigating differing viewpoints.

• Remain resilient under pressure while maintaining a healthy work-life balance.

• Focus on outcomes and follow through on problem-solving from start to finish.

Bonus points if you bring:

• Experience with AppSec and DevSecOps.

• Hands-on knowledge of Azure, AWS, and/or Google Cloud.

• Familiarity with standards like ISO2700X, ISO31000, NIST800, PCI-DSS.

• Certifications such as CISSP, CCSP, CRISC, CISM, or SABSA.

Why QBE? At My Best

At QBE, we want our people to feel rewarded and inspired to perform at their best, that’s why we have created “At My Best ”. It’s our connection, our way of showing we have your back.

We offer 30 days holiday a year with the option to buy up to 2 additional days, flexible working, pension, private medical insurance, and family-friendly policies.

Equal Employment Opportunity:

QBE is an equal opportunity employer and is required to comply with equal employment opportunity legislation in each jurisdiction it operates.