Senior Risk Management Analyst

Responsibilities

• Essential Job Duties and Responsibilities
• Perform as the recognized Subject Matter Expert on Security Risk Assessment methodology, policy, strategy and processes.
• Facilitate all security audit operations, including scheduling, vendor coordination, program, and stakeholder coordination.
• Lead the design and control reviews and assessments to support continuous compliance with security policies and standards
• Identify and report significant information security risks associated with applications, development, networking, data centers, Cloud and physical IT infrastructure, vendors and other third parties.
• Work with system operators and security subject matter experts to communicate system compliance gaps and develop acceptable remediation plans.
• Capture compliance gaps and remediation plans in the OneTrust GRC system. Plans, reviews, and performs (as needed) controls monitoring around complex customer facing systems using the One Trust.
• Liaise\engage with Cubic customers and Security Teams to build positive relationships and outcomes
• Supports efforts to educate Security Management and Security Team Members in compliant IT processes and controls. Prepare and maintain process and control documentation
• Aid in the development of solutions to problems identified during audits and translates these solutions into practical recommendations. Partner with Operations and Engineering Teams to ensure timely and acceptable remediation of issues.
• Follow up on recommendations and appraises corrective actions taken to improve deficient conditions. To the greatest extent possible, ensure all Corporate Standards, SDLC, Change Management, and risk governance protocols are followed.
• Review vendor contracts and SOC reports to evaluate the impact on the company's controls. Coordinates with third party vendors where appropriate.
• General Duties and Responsibilities:
• Reliably demonstrate accountability for work assignments and proactive communications about issues and status. A strong history of proactively identifying effective solutions for challenges.
• Able to reliably demonstrate ethical behavior and accurate communications even when complex factors are involved.
• Able to operate in a professional manner, even in tense or continuous settings.
• Comply with Cubic's Quality Management Syst

Benefits

Additional Information

Business Unit: Cubic Transportation Systems Company Details: When you join Cubic, you become part of a company that creates and delivers technology solutions in transportation to make people's lives easier by simplifying their daily journeys, and defense capabilities to help promote mission success and safety for those who serve their nation. Led by our talented teams around the world, Cubic is committed to solving global issues through innovation and service to our customers and partners. We have a top-tier portfolio of businesses, including Cubic Transportation Systems (CTS) and Cubic Defense (CD). Explore more on Cubic.com. Job Details: Cubic Transportation Systems (CTS) is a global leader in intelligent transportation solutions, specializing in technologies that make public transit more efficient, accessible, and user-friendly. A significant feature is providing Fare and Payment card services to government and municipal customers across the globe. Job Summary: As Member of the Cubic information security team, you will provide security compliance support for production transaction processing environments. Evaluate posture of security controls and operating environment to ensure compliance with organization security policies and controls. Plans and prepares the scope of IT compliance evaluation programs across the organization and isolates potential risks or liabilities and develops mitigation plans. Partners with external auditors to coordinate and facilitate PCI-DSS, ISO 27001, etc. compliance/audit efforts. This position typically works under limited supervision and direction. Candidates for this position will regularly exercise discretionary and substantial decision-making authority.

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at cubic? Share your experience