Senior Information Security Risk & Compliance Consultant

at  QBE Insurance Group Limited

THE OPPORTUNITY

We have an exciting new opportunity available for a Senior Information Security Risk & Compliance Consultant to join QBE and support a significant transformational change in the way Cyber and information security risk is considered and mitigated across the core business, 3rd party suppliers, programs and projects.
This intellectually challenging and highly influential role is part of a Group Cyber Security team accountable for safeguarding QBE from increasingly sophisticated Cyber and information security threats. The role works to make QBE safe, secure and resilient; working to continuously out pace and outsmart cyber threat faced by our business.
We are looking for an experienced individual with expertise in PCI DSS and ISO 27001 to ensure the highest standards of information security across our organization. The successful candidate will play a key role in evaluating, implementing, and maintaining information security controls to safeguard our data and systems.

• Lead efforts to achieve and maintain compliance with PCI DSS and ISO 27001.
• Conduct comprehensive risk assessments and vulnerability assessments to ensure adherence to PCI DSS and ISO 27001 standards.
• Lead Internal and External audits to assess compliance levels and address any identified gaps or issues with relevant stakeholders
• Provide input into information security policies, procedures, and standards to adhere to PCI DSS and ISO 27001 compliance
• Collaborate with internal teams to identify and mitigate security risks.
• Provide guidance on security best practices and ensure adherence to regulatory requirements.
• Conduct regular security awareness training for employees on PCI DSS and ISO 27001 requirements
• Stay current on industry trends, emerging threats, and best practices.