Security Architect ( Remote-US)

Business Unit:

Cubic Transportation Systems

Company Details:

Cubic offers an opportunity to provide innovative technology for government and commercial customers around the globe, helping to solve their future problems today. We're the leading integrator of payment and information technology and services for intelligent travel solutions worldwide, and the leading provider of realistic combat training systems, secure communications and networking and highly specialized support services for military and security forces of the U.S. and allied nations. If you have an entrepreneurial spirit and thrive in an innovative environment, we want to talk to you about your next role at Cubic! We are seeking employees inspired by technology, and motivated by the rewards of hard work, commitment, teamwork, quality, integrity, and respect. We invite you to explore opportunities with Cubic.

Job Details:

Job Summary:

The Security Architect is responsible for designing, building, implementing, and supporting cyber security for commercial products and solutions.

Incumbent plays a critical role in ensuring that CTS products, solutions and applications are designed, developed, and implemented in accordance with cyber and privacy best practices and architectural patterns. The Architect will be involved in every phase of the product lifecycle from intake through delivery; and will be considered one of the leadership team members who have primary responsibility that a solution is well engineered, secure, operable, and maintainable, delivered on schedule, aligns to enterprise vision and provides the anticipated business value. Align product and solution security strategy and infrastructure with overall business and technology strategy. Identify and communicate current and emerging security threats. Design security architecture elements to mitigate threats as they emerge. This position typically works under limited supervision and direction. Incumbents of this position will regularly exercise discretionary and substantial decision-making authority.

Essential Job Duties and Responsibilities:

• Researches the latest in industry trends along with the needs of the organization while also being a strong advocate for flexible and robust technology.
• Experiments and provides proof of concept with emerging technologies, while developing product and solution architectures, standards, design guides, processes, and other reference guides in a leadership role.
• Provides architectural direction, 3rd party vendor evaluations, analysis of external party integration, detailed estimation, schedule development, assesses resourcing needs during proposal & bids, part of existing programs or R&D efforts.
• Leads the creation of and is accountable for system security design documentation, including security architectures, feature designs, and interface specifications.
• Oversees detailed technical designs created by development teams to ensure proper cyber resilience.
• Knowledgeable about SaaS software and software licensing and able to explain both the design and business model of a SaaS system.
• Familiar with Microsoft Azure infrastructure, identity management and application integration with SAML/OAUTH
• Keeps up-to-date on the latest developments in systems engineering, computers, communications systems, secure software regulations and software techniques relevant to the company's operation.
• The security architect will be responsible for all aspects of security in the software development lifecycle of UMB components including CPA and CPA SaaS including but not limited to PCI Compliance (SSF, SLC, DSS), static code analysis with mitigation and periodic reporting to management, development team training, and other development related security concerns.
• This position will also be responsible for any production environments and associated compliance (SOX, PCI, 3DS) requirements and manage each project to completion of the audit.
• Familiar with DevSecOps and incorporation of security testing into CI/CI pipelines
• Work with QSA/auditors to ensure compliance and complete any required compliance certifications.
• Coordinate with Cubic corporate security standards and CTS operation security.
• Responsible for any documentation requirements related to software security standards.

Minimum Job Requirements:

• Four-year college degree (BS or BA) in computer science, engineering or related field plus 10 years of related experience or advanced degree with 8 years of related experience. Minimum of 5 years experience must be in an Architect or Lead role, leading requirements analysis, design, development and operation of distributed, fault-tolerant applications with particular attention to security, scalability, performance, availability and cost/revenue optimization.
• Experience with architecting high-volume web systems or large transaction client-server systems.
• CISPP certification is a must.
• 5+ years experience with Security Compliance (PCI DSS, PA DSS, etc)
• Experience in architecting cloud-based solutions.
• Working knowledge of Event driven framework, Kafka, Redis, Ni-Fi ,Apigee, swagger.
• Experienced in Java/J2ee , Spring boot , Rest, Soap.
• Working knowledge of TOGAF, Zachman, Agile Architecture, FEA or other enterprise architecture methodologies; certification a plus.
• Strong presentation skills, ability to be called upon as subject matter expert for detailed technical reviews, customer presentations, conferences, and industry engagements.
• Broad experience across business, application, information, infrastructure and security architecture domains. Broad experience across business analysis, product design, engineering, QA, operations and sustainment in a large corporation / enterprise environment.
• Deep technical experience in consumer and employee-facing enterprise systems.
• Ability to drive technical designs to consensus and approval. Designs solutions for specific use cases that provide frameworks, interfaces and services that can be extended and reused for future requirements
• Must be available for domestic and international travel.

The description provided above is not intended to be an exhaustive list of all job duties, responsibilities and requirements. Duties, responsibilities and requirements may change over time and according to business need.

Additional Information

(Colorado only*) Targeted full-time salary range between $120,504. - $140,912. + benefits.

*Note: Disclosure as required by sb19-085 (8-5-20) of the minimum salary compensation range for this role when being hired to work from Colorado.

(New York **) Targeted full-time salary range between $134,296 - $196,544 + benefits.

**Note: Disclosure as required by the New York Law.

(California only***) Targeted full-time salary range between $152,042 - $192, 381 + benefits.

***Note: Disclosure of the pay scale data as required by Labor Code Section 432.3.

(Washington only***) Targeted full-time [salary range between $145,777- $170,466 + benefits.

***Note: Disclosure of the pay scale data as required by Washington Equal Pay and Opportunities Act.

The Cubic pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.

Worker Type:

Employee