Overview
On Site
Full Time
Skills
Regulatory Compliance
Continuous Improvement
Software Development
Security Architecture
IaaS
System Security
Risk Analysis
ROOT
Project Planning
Embedded Systems
IT Risk Management
FOCUS
Risk Assessment
Application Development
Cryptography
Authentication
Authorization
ISO/IEC 27001:2005
Cyber Security
Computer Networking
Web Applications
Firewall
Vulnerability Management
Adaptability
Information Security
DevSecOps
SCA
Data Security
Risk Management
Security Controls
Cloud Computing
Microsoft Azure
Amazon Web Services
Google Cloud Platform
Google Cloud
Communication
Business Acumen
Microsoft Outlook
IT Service Management
Innovation
Collaboration
Recruiting
Insurance
Finance
Professional Development
Training
Leadership
CompTIA
Customer Service
Career Counseling
Apex
Oracle Application Express
Job Details
Job#: 3012363
Job Description:
QBE is seeking an experienced Information Security Consultant to lead transformational change in cyber and information security risk management across our North America operations. In this role, you will conduct comprehensive security assessments, identify and mitigate current and emerging risks, and recommend effective short- and long-term security controls. You will collaborate closely with application development, infrastructure, and internal security teams, as well as global partners, to ensure the protection of QBE's systems and data from sophisticated cyber threats.
The ideal candidate will bring deep technical expertise, a proactive and innovative mindset, and the ability to deliver strategic insights that address root-cause issues, ensure compliance, reduce risk, and drive meaningful business outcomes in a fast-paced, collaborative environment.
Location: Flexible on location
Work Arrangement: This role can be remote or hybrid(where you will be expected to be in the office 2-3 days per week.) based location of candidate.
Lead the development and delivery of a robust cyber and information security capability by partnering with stakeholders to proactively identify, assess, and mitigate risks across the organization.
Drive the implementation and continuous improvement of a mature cybersecurity practice through the adoption of effective policies, standards, processes, and templates that enhance risk management and organizational resilience.
Align security frameworks and standards with enterprise business and technology strategies to ensure cohesive and scalable security solutions.
Determine security requirements by evaluating business strategies and ensuring security standards are embedded throughout the software development lifecycle.
Define and maintain security requirements for software development, balancing business functionality with cybersecurity best practices.
Collaborate with Cyber Security, Architecture, and supporting teams to define security architecture components that proactively mitigate risks across both application and cloud infrastructure environments
Provide security leadership and support across both application-level and cloud infrastructure projects, ensuring alignment with enterprise security goals.
Conduct comprehensive system security and vulnerability assessments, risk analyses, and architectural reviews to identify integration challenges and emerging threats.
Build and maintain strong cross-functional relationships to identify root-cause issues, provide actionable guidance, and drive sustained reduction of threats and vulnerabilities.
Represent the security function in architecture review boards and project planning forums, ensuring security is embedded from the outset of all initiatives.
Required Experience/Qualifications:
Extensive background in information security and IT risk management, with a focus on security, performance, and reliability.
Experienced in conducting cyber risk assessments and implementing effective security solutions.
Proven ability to collaborate with Application Development, Infrastructure, and Project teams to align on security goals and meet deadlines.
Solid understanding of security protocols, cryptography, authentication, and authorization.
Familiar with industry-recognized frameworks such as ISO 27001 and NIST Cybersecurity Framework (CSF).
Adept at communicating and enforcing security measures across diverse teams and stakeholders.
Broad technical knowledge across security, networking, web applications, firewalls, vulnerability management, and risk management.
Self-motivated and adaptable, with the ability to work independently in fast-paced, evolving environments.
Preferred Qualifications/Experience:
Over 7 years of experience in Information Security consulting roles.
Hands-on experience with DevSecOps practices and tools such as SAST, DAST, and SCA.
Experienced in developing reference security architectures.
Experienced working in a regulated financial setting, ensuring adherence to data protection, risk management, and regulatory standards.
Strong understanding of security controls in cloud environments, particularly Microsoft Azure.
Proficient in working with major cloud platforms including Azure, AWS, and Google Cloud.
Excellent written and verbal communication skills along with business acumen and a commercial outlook.
Good working knowledge of current IT risks and mitigation strategies.
Apex Systems is a world-class IT services company that serves thousands of clients across the globe. When you join Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRated's Best of Staffing in Talent Satisfaction in the United States and Great Place to Work in the United Kingdom and Mexico.
Apex Benefits Overview: Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our 'Welcome Packet' as well, which an Apex team member can provide.
Job Description:
QBE is seeking an experienced Information Security Consultant to lead transformational change in cyber and information security risk management across our North America operations. In this role, you will conduct comprehensive security assessments, identify and mitigate current and emerging risks, and recommend effective short- and long-term security controls. You will collaborate closely with application development, infrastructure, and internal security teams, as well as global partners, to ensure the protection of QBE's systems and data from sophisticated cyber threats.
The ideal candidate will bring deep technical expertise, a proactive and innovative mindset, and the ability to deliver strategic insights that address root-cause issues, ensure compliance, reduce risk, and drive meaningful business outcomes in a fast-paced, collaborative environment.
Location: Flexible on location
Work Arrangement: This role can be remote or hybrid(where you will be expected to be in the office 2-3 days per week.) based location of candidate.
Lead the development and delivery of a robust cyber and information security capability by partnering with stakeholders to proactively identify, assess, and mitigate risks across the organization.
Drive the implementation and continuous improvement of a mature cybersecurity practice through the adoption of effective policies, standards, processes, and templates that enhance risk management and organizational resilience.
Align security frameworks and standards with enterprise business and technology strategies to ensure cohesive and scalable security solutions.
Determine security requirements by evaluating business strategies and ensuring security standards are embedded throughout the software development lifecycle.
Define and maintain security requirements for software development, balancing business functionality with cybersecurity best practices.
Collaborate with Cyber Security, Architecture, and supporting teams to define security architecture components that proactively mitigate risks across both application and cloud infrastructure environments
Provide security leadership and support across both application-level and cloud infrastructure projects, ensuring alignment with enterprise security goals.
Conduct comprehensive system security and vulnerability assessments, risk analyses, and architectural reviews to identify integration challenges and emerging threats.
Build and maintain strong cross-functional relationships to identify root-cause issues, provide actionable guidance, and drive sustained reduction of threats and vulnerabilities.
Represent the security function in architecture review boards and project planning forums, ensuring security is embedded from the outset of all initiatives.
Required Experience/Qualifications:
Extensive background in information security and IT risk management, with a focus on security, performance, and reliability.
Experienced in conducting cyber risk assessments and implementing effective security solutions.
Proven ability to collaborate with Application Development, Infrastructure, and Project teams to align on security goals and meet deadlines.
Solid understanding of security protocols, cryptography, authentication, and authorization.
Familiar with industry-recognized frameworks such as ISO 27001 and NIST Cybersecurity Framework (CSF).
Adept at communicating and enforcing security measures across diverse teams and stakeholders.
Broad technical knowledge across security, networking, web applications, firewalls, vulnerability management, and risk management.
Self-motivated and adaptable, with the ability to work independently in fast-paced, evolving environments.
Preferred Qualifications/Experience:
Over 7 years of experience in Information Security consulting roles.
Hands-on experience with DevSecOps practices and tools such as SAST, DAST, and SCA.
Experienced in developing reference security architectures.
Experienced working in a regulated financial setting, ensuring adherence to data protection, risk management, and regulatory standards.
Strong understanding of security controls in cloud environments, particularly Microsoft Azure.
Proficient in working with major cloud platforms including Azure, AWS, and Google Cloud.
Excellent written and verbal communication skills along with business acumen and a commercial outlook.
Good working knowledge of current IT risks and mitigation strategies.
Apex Systems is a world-class IT services company that serves thousands of clients across the globe. When you join Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRated's Best of Staffing in Talent Satisfaction in the United States and Great Place to Work in the United Kingdom and Mexico.
Apex Benefits Overview: Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our 'Welcome Packet' as well, which an Apex team member can provide.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.