Website Cubic

Responsible for applying IT security tools and processes to manage and report operational information security risk as a service provider to customers.  Works with internal service and technical teams to manage the outputs of security systems.  Provides guidance and expertise regarding operational service calls, incidents and problems, and general awareness of information security.  This position typically works under general supervision and direction.  Incumbents will regularly exercise discretionary decision-making authority.


Essential Job Duties and Responsibilities:

  • Works autonomously to recognize, investigate and reconcile violation reports and logs generated by detection systems in accordance with established procedures and security standards.  Examples include but are not limited to responding to and reporting from automated alerting systems, auditing logs, IDS/IDP logs, anti-virus and firewall systems.
  • Installs, manages and improves technical security control tools.
  • Undertake security investigations and compiles outcome reports.  Implements recommendations where required.
  • Creates and delivers user documentation and security awareness literature and training
  • Contributes to the assessment of the potential impact on existing access security mechanisms of specific planned technical changes, in order to help ensure that potential compromise or weakening of existing security controls is minimized.  Participates in the evaluation, testing and implementation of such changes.
  • Ensures that coordination and change control are applied to technical specifications and to the technical infrastructure.
  • Leads risk assessments and security control reviews for all types of business applications and computer installations and recommends appropriate action to management.
  • Supports internal and external customers defining their needs for new access rights and privileges.
  • Contributes to other information security, contingency planning and related activities.
  • Some manual handling may occasionally be required. May be required to work on other Cubic sites and data centers.
  • Provide training and guidance to the wider team, promoting best practice and process improvement.
  • Comply with Cubic’s values and adherence to all company policy and procedures.  In particular comply with the code of conduct, quality, security and occupational health, safety and environmental policies and procedures.
  • This role is required to participate in the on-call rotation for security analysts.
  • In addition to the duties and responsibilities listed, the job holder is required to perform other duties assigned by their manager from time-to-time, as may be reasonably required of them.

To apply for this job please visit