Senior Security Analyst Risk and Compliance

Business Unit:

Cubic Transportation Systems

Company Details:

When you join Cubic, you become part of a company that creates and delivers technology solutions in transportation to make people’s lives easier by simplifying their daily journeys, and defense capabilities to help promote mission success and safety for those who serve their nation. Led by our talented teams around the world, Cubic is committed to solving global issues through innovation and service to our customers and partners.

We have a top-tier portfolio of businesses, including Cubic Transportation Systems (CTS) and Cubic Defense (CD). Explore more on Cubic.com.

Job Details:

Job Summary

The role of the Senior Information Security Analyst is to lead activities to support delivery of security services to internal and external customers. The Senior Information Security Analyst provides leadership for processes that support delivery of security services to meet compliance requirements and minimise security risk. 

Essential Job Duties and Responsibilities

• Ensure security functions and processes are aligned with CTS standards and policies
• Assisting in and supporting the implementation of global security frameworks and associated tooling
• Maintaining up to date of knowledge of threat trends and security risks
• Work as part of the Global Security - GRC team to reduce program risk
• Provide security consultancy to bid and proposal teams to ensure appropriate controls are identified during the proposal stage
• Work alongside operational teams to ensure identified risks are managed appropriately
• Prepare and present reports on security posture for presentation in internal and customer facing forums
• Assisting in and supporting the implementation of global security frameworks and associated tooling
• Primary point of contact for respective area of responsibility
• Conduct and coordinate audits and checks of control sets
• Conduct assurance and compliance activities
• Provide input to management reporting as it applies to your areas of responsibility
• Provide input to cost estimates for variations/new business as the services pertain to the respective area of responsibility
• Maintain and update records within the Cyber Security GRC System
• Directly obtain data from information systems to complete analysis and reporting tasks

General Duties and Responsibilities

• Comply with Cubic’s Quality Management System
• Comply with Cubic Occupational Health, Safety and Environment policies and procedures
• Comply with security in accordance with established policies and procedures of the organisation
• Comply with Cubic Human Resources Procedures
• Other duties as requested

Minimum Job Requirements
Qualifications

Essential:

• University degree, diploma, or equivalent qualification; or significant professional experience

Desirable:

• A university degree or equivalent in a numerate subject
• A professional certificate, diploma or equivalent in information security

Skills/Experience/Knowledge

Essential:

• Minimum five years’ experience in Cyber Security
• Experience in multiple security domains
• Experience in risk management ISO31000 and security standard ISO27001
• Experience with PCI-DSS
• Knowledge of the ACSC Essential 8, ISM and NZISM
• Experience in providing security consulting to internal and external customers
• A thorough knowledge of information security technologies and methodologies
• Experience in consulting with a wide range of stakeholders including leading workshops
• Practical skills to obtain data from information systems
• Data analytics and reporting
• Post incident analysis and review experience

Personal Qualities

• Able to work effectively and uphold professional standards, with the Customer and system stakeholders
• Self-motivated and able to work unsupervised
• Methodical
• Very strong attentive to detail
• Able to communicate clearly and effectively
• Able to rapidly acquire new knowledge and learn on the job
• Proactive in seeking advice from security subject matter experts when required
• Comfortable working with staff at all levels and in other geographical locations within the organisation
• Strong presentation and communication skills
• Curiosity
• Flexible

Condition of Employment

Successful outcome of a National Police Check

The description provided above is not intended to be an exhaustive list of all job duties, responsibilities and requirements.  Duties, responsibilities and requirements may change over time and according to business need.

#L1-HV1

Worker Type:

Employee