Senior Security Analyst Lead
Job Description
Job title: Senior Security Analyst Lead
Company: Cubic
Job description: Business Unit:
Cubic Transportation Systems
Company Details:
Cubic offers an opportunity to provide innovative technology for government and commercial customers around the globe, helping to solve their future problems today. We’re the leading integrator of payment and information technology and services for intelligent travel solutions worldwide, and the leading provider of realistic combat training systems, secure communications and networking and highly specialized support services for military and security forces of the U.S. and allied nations. If you have an entrepreneurial spirit and thrive in an innovative environment, we want to talk to you about your next role at Cubic! We are seeking employees inspired by technology, and motivated by the rewards of hard work, commitment, teamwork, quality, integrity, and respect. We invite you to explore opportunities with Cubic
Job Details:
Job Summary:
Responsible for leading a small team of operational security analysts applying IT security tools and processes to manage and report operational information security risk as a service provider to Cubic’s customers. Recognised internally as a subject matter expert. Works autonomously, able to assess and drive work priorities, with limited support or guidance needed from senior security function leadership.
- Lead and supervise the team on a day to day basis, ensuring that the team is adequately resourced and has the required skills and ability to deliver the agreed level of service to our customers.
- Contribute to the technical strategy and procedures for the team and ensure that the team’s objectives are aligned with the business objectives as set by senior management.
- Work collaboratively with internal stakeholders to develop and facilitate team performance improvements.
- Provide expert technical on-the-job training, alongside the Learning & Development team, coaching and mentoring to the team
- Leads security incident and event management and other operational cyber security monitoring generated by security control tools in accordance with established procedures and security standards. Examples include responding to and reporting from automated alerting systems, audit logs, IDS/IDP logs, anti-virus and firewall systems.
- Leads incident response, undertakes security investigations and compiles incident and problem management/ root cause analysis reports. Implements corrective actions where required.
- Leads vulnerability management process for the region.
- Leads external penetration test activities procured from vendors and ensures remediations are documented and implemented.
- Installs, manages and improves technical security control tools and processes.
- Ensures change control requests are reviewed against cyber security requirements to reduce the risk of weakening existing security controls. Participates in the evaluation, testing and implementation of such changes.
- Leads security control reviews for all types of IT infrastructure and business applications and recommends appropriate action across the wider Security function.
- Supports mobilisation of new customer programmes and new systems and ensures readiness for operations via established service transition processes within region.
- Supports internal and external customers defining their needs for new access rights and privileges.
- Ensures key performance/ key risk information is collated and delivered to internal and external customers according to schedule.
- Contributes to other information security, contingency planning and related activities.
- May be required to work at or travel on to other local Cubic sites and datacentres.
- Comply with Cubic’s values and adherence to all company policy and procedures. In particular comply with the code of conduct, quality, security and occupational health, safety and environmental policies and procedures.
- In addition to the duties and responsibilities listed, the job holder is required to perform other duties assigned by their manager from time-to-time, as may be reasonably required of them.
Minimum Job Requirements:
Skills knowledge and experience:
Essential:
- Demonstrable experience in security operations or development roles.
- Sound knowledge of change and configuration management, reliability and safety methods and the use of metrics.
- Extensive knowledge of information security and technologies
- Significant experience in an IT environment
- In depth understanding of IT security control tools, e.g. ArcSight, Splunk, Qualys, Nessus, Tripwire, OSSec, Cisco IPS, McAfee, IBM Guardium, Centrify, Barracuda WAF
Desirable:
- ISO 27001/PCI-DSS compliance experience
- Experience of quality management systems e.g. ISO 9001
- Understanding of security within agile and waterfall project methods
Education and qualifications
Essential:
- University degree in a relevant subject (e.g. information security, encryption, computer science, maths, engineering) or equivalent educations/experience
- Certification as an Information Security professional (e.g. IISP/CISA/CISM/SSCP/ CISSP/ ISA)
Desirable:
- A university master-level degree in a relevant subject
- IT vendors’ certifications
- ITIL v3/ Prince2 foundation level/ TOGAF 9
Personal Qualities
- Able to work effectively and uphold professional standards and confidentiality with internal and external stakeholders at all levels
- Self-motivated
- Able to work on own initiative, unsupervised
- Attention to detail and adherence to procedures
- Strong customer service skills
- Strong verbal and written communications skills
- Ability to understand corporate objectives to implement them as business unit policy
- Ability to travel
The description provided above is not intended to be an exhaustive list of all job duties, responsibilities and requirements. Duties, responsibilities and requirements may change over time and according to business need.
Worker Type:
Employee
Expected salary:
Location: Stockton-on-Tees, County Durham