Hello! To apply to the job you were interested in, please create a Workday account, if you already have an account please sign in. We look forward to learning more about you!
Senior Security Analyst Risk and ComplianceApply locations: Brisbane, Queensland; Sydney, New South Wales
Time type: Full time
Posted on: Posted Today
Job requisition id: REQ_43178
When you join Cubic, you become part of a company that creates and delivers technology solutions in transportation to make people’s lives easier by simplifying their daily journeys, and defense capabilities to help promote mission success and safety for those who serve their nation. Led by our talented teams around the world, Cubic is committed to solving global issues through innovation and service to our customers and partners.
Job Details:Job Summary
The role of the Senior Information Security Analyst is to lead activities to support delivery of security services to internal and external customers. The Senior Information Security Analyst provides leadership for processes that support delivery of security services to meet compliance requirements and minimise security risk.
Essential Job Duties and Responsibilities
- Ensure security functions and processes are aligned with CTS standards and policies
- Assisting in and supporting the implementation of global security frameworks and associated tooling
- Maintaining up to date of knowledge of threat trends and security risks
- Work as part of the Global Security - GRC team to reduce program risk
- Provide security consultancy to bid and proposal teams to ensure appropriate controls are identified during the proposal stage
- Work alongside operational teams to ensure identified risks are managed appropriately
- Prepare and present reports on security posture for presentation in internal and customer facing forums
- Primary point of contact for respective area of responsibility
- Conduct and coordinate audits and checks of control sets
- Conduct assurance and compliance activities
- Provide input to management reporting as it applies to your areas of responsibility
- Provide input to cost estimates for variations/new business as the services pertain to the respective area of responsibility
- Maintain and update records within the Cyber Security GRC System
- Directly obtain data from information systems to complete analysis and reporting tasks
General Duties and Responsibilities
- Comply with Cubic’s Quality Management System
- Comply with Cubic Occupational Health, Safety and Environment policies and procedures
- Comply with security in accordance with established policies and procedures of the organisation
- Comply with Cubic Human Resources Procedures
- Other duties as requested
Minimum Job Requirements
Qualifications
Essential:
- University degree, diploma, or equivalent qualification; or significant professional experience
Desirable:
- A university degree or equivalent in a numerate subject
- A professional certificate, diploma or equivalent in information security
Skills/Experience/Knowledge
Essential:
- Minimum five years’ experience in Cyber Security
- Experience in multiple security domains
- Experience in risk management ISO31000 and security standard ISO27001
- Experience with PCI-DSS
- Knowledge of the ACSC Essential 8, ISM and NZISM
- Experience in providing security consulting to internal and external customers
- A thorough knowledge of information security technologies and methodologies
- Experience in consulting with a wide range of stakeholders including leading workshops
- Practical skills to obtain data from information systems
- Data analytics and reporting
- Post incident analysis and review experience
Personal Qualities
- Able to work effectively and uphold professional standards, with the Customer and system stakeholders
- Self-motivated and able to work unsupervised
- Methodical
- Very strong attention to detail
- Able to communicate clearly and effectively
- Able to rapidly acquire new knowledge and learn on the job
- Proactive in seeking advice from security subject matter experts when required
- Comfortable working with staff at all levels and in other geographical locations within the organisation
- Strong presentation and communication skills
- Curiosity
- Flexible
Condition of Employment
Successful outcome of a National Police Check
The description provided above is not intended to be an exhaustive list of all job duties, responsibilities and requirements. Duties, responsibilities and requirements may change over time and according to business need.
Worker Type: Employee #J-18808-Ljbffr