Global Cyber Security Governance Specialist

Role Highlights

• Location: Sydney or Melbourne

• Type: Permanent, full time

• Turn complex cyber data into decisions that strengthen QBE’s global defence.

• Hybrid role, Happy to talk flexible working

• Click here to discover what it's like to be a part of QBE Group  

The opportunity

The Global Cyber Security Governance Specialist supports QBE’s cyber security objectives by providing clear, data-driven insights into the performance of key controls and the organisation’s overall security posture. The role is responsible for tracking and analysing control metrics, surfacing risk signals, and contributing to reporting for governance forums, senior stakeholders, and regulatory engagements. 

In addition to core metrics and reporting responsibilities, the role plays a key part in QBE’s cyber scenario modelling program, supporting scenario definition, refinement, and alignment with threat intelligence and attack tree methodologies. The Specialist integrates modelling outputs into narrative reporting, helps ensure scenarios remain defensible and relevant, and contributes to structured scenario refresh cycles. The Specialist integrates modelling outputs into narrative reporting, helps ensure scenarios remain defensible and relevant, and contributes to structured scenario refresh cycles.

As part of the Global Security Trust and Influence function, this role serves as the central hub for transforming control performance data and scenario modelling insights into clear, meaningful narratives that drive informed decision making and risk prioritisation. As the function continues to mature, the role will also lead targeted, evidence based assurance activities that complement formal risk and control assessments, strengthening confidence in the design, performance and overall effectiveness of QBE’s cyber controls.

About QBE  

• At QBE, we get to the heart of what matters for our customers. And we do it all with a human touch.  

• We’re an international insurer with more than 13,000 people working across 26 countries – which means we’re big enough for your ambitions, yet small enough for you to make a real impact. It’s an exciting time. We’re building momentum towards our vision to become the most consistent and innovative risk partner.

• What if you could have a positive impact – at work and in the world? As part of the QBE team, you’ll get to spend every day working with people who are passionate, talented and kind.

Your new role

• Monitor and analyse cyber control performance metrics and key risk indicators (KRIs) to identify trends, emerging risks, and opportunities for control uplift. 

• Develop and maintain reporting artefacts (e.g. dashboards, briefings, governance packs) that clearly communicate security posture and risk insights to a range of stakeholders, including senior management and governance forums. 

• Translate complex control and risk data into actionable insights, enabling stakeholders to make informed trade-offs aligned with QBE’s risk appetite and strategic priorities. 

• Support cyber scenario modelling activities, including scenario definition, refinement, and alignment with threat intelligence and attack tree structures. Ensure scenarios remain accurate, defensible, and relevant to QBE’s operating environment, drawing on established methods and practices referenced in stakeholder materials and scenario modelling roadmaps. This includes coordinating scenario refresh cycles, supporting capability assessment inputs, incorporating modelling outputs into reporting, and validating narrative‑to‑model alignment.

• Collaborate with control owners, delivery teams, and second-line functions to improve the quality, clarity, and consistency of control performance data and reporting inputs. 

• Support the integration of control telemetry and other evidence-based measures into reporting processes, with a focus on control immutability and automation where feasible. 

• Contribute to the continuous improvement of governance and reporting frameworks, ensuring alignment with QBE’s cyber strategy, regulatory obligations, and business needs. 

• Participate in targeted, risk-informed assurance activities that validate control effectiveness in high-priority areas, complementing formal audits and RCSA processes. 

• Act as a feedback channel to Strategy & Architecture and other stakeholders, highlighting implementation challenges or systemic issues surfaced through metrics or reporting. 

• Engage stakeholders to support a culture of risk transparency and accountability, encouraging proactive issue identification and evidence-based dialogue. 

• Support audit and regulatory engagement by ensuring reporting artefacts and supporting evidence are accurate, consistent, and audit ready. 

About you

• Ability to get deeply technical and apply that skill to the business environment. 

• Exceptionally curious and enquiring mindset with an ability to be fast-paced and agile in meeting business needs. 

• Strong communication, negotiation, and conflict management skills, with an ability to anticipate and flag potential obstacles. 

• Experience with security and risk-based standards, Microsoft Excel, Power BI and ERC tools. 

• Experienced in working across time zones and collaborating in a multi-location environment. 

Benefits  

We offer a range of benefits to help provide holistic support for your work life, whatever your circumstances. As a QBE employee you will have access to and benefit from:

• ‘Hybrid Working’ – a mix of working from home and in the office to enhance your work/life balance

• Free holistic wellbeing coaching, nutritional, confidential counselling, financial and legal advice

• 18 weeks’ gender-equal flexible leave for all new parents, including paid super

To learn more about benefits of working with us, click here.

Awards & Recognition

We value our employee’s experience with us and are proud to have been recognised for the following awards:

• 2025 Winner of Excellence in Diversity, Equity & Inclusion Award at the Insurance Business Australia Awards for our Respect@QBE program

• 2023 Most Inclusive Workplace at the Australian HR Institute (AHRI) Awards

• Ranked in the top ten in the AAGE Top Graduate Employers 2025 for medium sized program as voted by graduates

To learn more about our achievements, click here.

How to Apply

If you’re looking for a career that combines your expertise and your empathy, click Apply today. Successful applicants will need to complete work rights, police and credit checks through our online provider as a condition of employment.

Your career. At the heart of it. 

QBE recognises the value of diverse perspectives and experience. We are committed to an inclusive workplace where everyone feels valued and respected for who they are. If we can provide support with access requirements, alternative work arrangements or you would like to connect with one of our networks please contact us at [email protected].

Skills:

How to Apply:

To submit your application, click "Apply" and follow the step by step process.

Equal Employment Opportunity:

QBE is an equal opportunity employer and is required to comply with equal employment opportunity legislation in each jurisdiction it operates.