SOC Principal Analyst

Primary Details Time Type: Full time | Worker Type: Employee Title SOC Principal Analyst Employment Type Permanent Location London / Hybrid Introduction At QBE, our purpose is to enable a more resilient future. We are an international insurer and reinsurer with a local presence in 27 countries. The Opportunity QBE Europe is currently recruiting a SOC Principal Analyst to join our cyber security team in our London Office. Reporting to regional team leads, the SOC Principal Analyst will be a key member of our rapidly growing Global Security Operations team. Your new role This is an exciting hands‑on technical role in which the specialist will use their security skills and knowledge to perform advanced analysis on the collection of cyber threats using high‑level proactive and reactive threat hunting methods, classifying, analysing, prioritising and remediating security alerts/events. The focus is to provide an effective, proactive and highly technical analytical response to cyber security‑related incidents to prevent QBE from becoming compromised by modern attack methods and techniques. Responsibilities Act as point of escalation and mentor to junior SOC analysts. Translate business objectives into security objectives by providing support in design/architecture for new security applications to improve QBE's security posture globally. Recommend and implement initiatives, develop IR processes and procedures. Contribute to the ongoing development of security operations best practice and support continuous improvement. Provide guidance regarding security technical support, and influence peers to follow best practice. Review new security products and assess their suitability for the QBE environment. Execute threat hunting activities using proprietary and open‑source tools to identify current and emerging threats that pose a risk to QBE. Build strong relationships with internal and external stakeholders to maintain and improve QBE security and enhance knowledge and information sharing. Actively communicate with staff and third parties to correctly identify and resolve problems and manage their expectations. Document incidents, requests and problem management information to ensure required compliance standards/SLAs are achieved. Use security tools and resources to correlate suspicious events, providing context around the event, determine root cause and provide regular updates and recommend modifications to existing systems and procedures. Perform deep‑dive incident analysis of various data sources by analysing and investigating security related logs against medium‑term threats and IOCs. Actively manage and apply the phases of Incident Response (preparation, identification, containment, eradication, recovery and lessons learned). Act as a point of reference to guide and advise others to ensure the sharing of knowledge and best practice throughout the team. About you Advanced technical expertise of security solutions and technologies, including Windows, Linux, Networking, Security Architecture, packet flow/TCP/UDP traffic, Firewall and proxy technologies, cloud solutions, anti‑virus, static and dynamic malware analysis techniques. Expertise in performing analytics with different types of logs, i.e. network, active directory, database, DNS, firewall, proxies, host‑based security, cloud and applications logs. Working experience in leading security incidents at all levels related to incident response. Working experience in managing 2nd/3rd level security events. Ability to manage strong relationships with global security operations colleagues and other departments, including network teams and incident managers. Demonstrated ability to make decisions on remediation and counter‑measures. Ability to communicate effectively and update senior stakeholders globally. Required Skills Adaptability, Business Continuity, Communication, Critical Thinking, Customer Service, Cybersecurity Risk Management, Digital Forensics, Forensic Investigations, Intentional collaboration, Malware Analysis, Managing performance, Process Improvements, Reporting and Analysis, Risk Management, Stakeholder Management. Equal Employment Opportunity QBE is an equal opportunity employer and is required to comply with equal employment opportunity legislation in each jurisdiction it operates. How to Apply To submit your application, click 'Apply' and follow the step‑by‑step process. What next? If you have a passion to contribute to QBE’s vision of enabling a more resilient future for our customers and the community, we encourage you to apply Simply click the “apply” button to submit your CV and other relevant documents, and a member of our friendly Talent Acquisition team will be in contact to discuss your interest further if you meet the requirements of the role. #J-18808-Ljbffr