Cyber Security Business Analyst
Overview:
A global brand is seeking an experienced Cyber Security Business Analyst to document security policies and procedures based on a recent Centre for Internet Security (CIS) assessment. The role also involves analysing business processes, data flows, and collaborating on business continuity planning.
Role and Responsibilities:
- CIS Policy Documentation: Analyze CRA recommendations and align with CIS standards. Address gaps and document strategies for mitigating risks.
- Data Process Optimization: Collaborate on defining and improving data processes, ensuring compliance with data governance standards. Identify and classify sensitive data, set retention policies, and access controls.
- Business Continuity Planning (BCP): Conduct risk assessments, align BCP with security updates, and maintain documentation. Develop testing schedules for BCP.
- Technical Documentation: Create process diagrams, flowcharts, and clear documentation on cyber security, data management, and business continuity procedures.
Essential Skills & Experience:
- Experienced business analyst with a focus on cyber security projects
- Experience in documenting and analyzing technical requirements
- Strong stakeholder and vendor management
- Proficiency in M365 tools (Word, Excel, Visio, PowerPoint, Planner)
- Knowledge of SQL databases and data mapping
- Strong understanding of cyber security frameworks (CIS, CEP)
- Experience with data governance and compliance (GDPR, CCPA)
- Experience in business continuity and disaster recovery planning
Contract Details:
- Contract: 3-Month Contract (potential for extensions)
- (Outside IR35)
- Rate: £500 - £550 per day (Circa)
- Location: London / Hybrid