IT Architect – Security Specialist (m/w/d)

Cubic Transportation Systems

REQ_37916 ## Company Details: Cubic offers an opportunity to provide innovative technology for government and commercial customers around the globe, helping to solve their future problems today. We’re the leading integrator of payment and information technology and services for intelligent travel solutions worldwide, and the leading provider of realistic combat training systems, secure communications and networking and highly specialized support services for military and security forces of the U.S. and allied nations. If you have an entrepreneurial spirit and thrive in an innovative environment, we want to talk to you about your next role at Cubic! We are seeking employees inspired by technology, and motivated by the rewards of hard work, commitment, teamwork, quality, integrity, and respect. We invite you to explore opportunities with Cubic. ## Job Summary: As part of the Global IT Architecture team the role is the technical design authority and subject matter expert for IT infrastructure for assigned projects and programmes. The role also provides information security technical consultancy to multiple Cubic customer programmes for new Cloud services, back-office systems and hardware devices, and remediation of current services to required standards. The role will work closely with internal/ external business stakeholders across functions to assess risk and deliver pragmatic, flexible and sustainable IT architecture and security including people, process and technology. Incumbents of this position will regularly exercise discretionary and substantial decision-making authority. ## Essential Job Duties and Responsibilities: – Technical design authority and subject matter expert for IT and security architecture for multiple programmes – Participate in architecture design for bid and proposal efforts to ensure solutions are fit for purpose and cost-effective, identifying and ensuring customer, legislative, best practice and Cubic policy/ process IT and security requirements are documented, and that solution deliverables are accurately costed – Work with and bring together cross-disciplined technical resources to form effective technical project teams, managing and influencing these resources to ensure fit-for-purpose solutions are delivered and are designed with supportability in mind – Collaborate with engineering, IT and test teams to determine how best to leverage tools and techniques involving infrastructure as code, configuration management and other DevOps-type techniques to improve delivery quality, speed and customer experience. – Manage releases through the Cubic gateway process including requirements gathering, prototyping, development, testing and deployment in line with IT processes. – Conduct security risk assessment/ business impact analysis/ audit for new and existing business applications or IT infrastructure and provides advice and guidance on the application and operation of physical, procedural and technical security controls (e.g. the key controls in ISO27001, GDPR and/or the PCI security standards). – Delivery of security support processes to customer services staff, including internal training and documentation as appropriate to support project transition. – Act as technical interface (including solution oversight) between business staekholders including: Senior Management, Customer Service, Monitoring group, Project teams and specialist IT teams as required. – Work with manager to define statements of principles and consistent rules to ensure standardisation and commonality between systems. – Keep up to date with industry trends and customer requirements, the technology landscape and best practices in order to deliver technical roadmaps and plans that ensure solutions enable the wider IT and Cubic strategic objectives. – Coach, mentor and train other team members and foster a culture of continuous improvement and innovation. – Habitually review working practices and performance with a view to improving processes, procedures and general levels of service, ultimately engendering a „continuous improvement“ culture resulting in enhanced customer experience and company profitability. – Provide specialist support/advice on projects as required. – Conduct work effectively, upholding professional standards and in accordance with Cubic policy, process and standards., – Comply with Cubic’s values and adherence to all company policy and procedures. In particular, comply with the Cubic code of conduct, quality, security and occupational health, safety and environmental policies and procedures. – In addition to the duties and responsibilities listed, the job holder is required to perform other duties assigned by their manager from time-to-time, as may be reasonably required of them. ## Skills knowledge and experience: – Strong track record of designing and implementing complex IT related projects, preferably with a background that spans infrastructure and software engineering – Practical experience across a wide range of IT systems and technologies, such as server hardware, virtualization platforms, network and security infrastructure, storage and SAN, and database. – Exceptional leadership skills and boundless optimism, unwilling to tolerate mediocrity and passionate about being part of a high performing team – Significant demonstrable experience with Cloud technologies i.e. MS Azure, AWS and relevant security technologies (identity/ access management/ security brokers, vulnerability management, operational security incident/ event management, cryptographic controls) – Strong demonstrable knowledge of risk assessment techniques including threat and vulnerability assessment and knowledge of mitigations/ controls, and ideally modern GRC/ risk tools – Experience of developing clear, concise documentation (design, technical and support) – Experience of designing and implementing 24/7 transactional systems – A strong track record of leadership and influence as this individual will work across the organization with multiple and varied technical teams to define, design, and drive the development and delivery of complex technical strategy and solutions. – Demonstrable PCI Council, GDPR, ISO 27001 standards knowledge ## Qualifications Essential: – Bachelor of Science degree in electrical engineering, computer science or relevant field or equivalent professional experience – Certification as an Information Security professional (e.g. IISP/CISA/CISM/CISSP/CCSP/ ISA) – Current driving licence Desirable: – Information privacy/ data protection – CIPPE/ + CIPM – German BSI Federal security certifications and requirements – CREST-registered/ CEH penetration tester and/or security architect certifications – ITIL v3/ Prince2 foundation level/ TOGAF 9 certifications – Security and IT infrastructure/ networking vendors’ certifications ## Personal Qualities – Must be able to work effectively and uphold professional standards and confidentiality with Cubic internal and external customers as well as staff at all levels of the organisation. The role will also be required to work with IT and security vendors, Cubic suppliers and customers. – Self-motivated, able to work on own initiative and as part of a matrix team, unsupervised, and be recognized by their peers as inspirational and the “go-to” person for solving problems – Able to juggle multiple tasks with deftness and attention to deadlines. – Strong analytical and influencing skills to assess demand for change and ensure that the necessary controls are in place to deliver successfully – An enthusiasm for new technologies and their application for both business and consumers – A natural curiosity and a passion for learning new skills. A continuous improvement mindset – The tenacity to keep going when things get difficult, an optimistic and upbeat personal manner – Strong verbal and written communications skills in German and English – A degree of flexibility required in working time due to supporting a 24/7 operation and to liaise with colleagues in multiple time zones. – Candidate will be required to complete basic security checks The description provided above is not intended to be an exhaustive list of all job duties, responsibilities and requirements. Duties, responsibilities and requirements may change over time and according to business need.