Cybersecurity Business Analyst

Calgary, AB
Corporate Services – Information Technology Services /
APT Permanent Salary /
Hybrid
Apply for this job
The Opportunity

Reporting to the Chief Information Security Officer, the Information Technology Officer is looking to hire a Business Analyst with a Cybersecurity focus encompasses several key areas aimed at enhancing the institutions cybersecurity posture through strategic analysis and solution implementation.

The scope of work for a Business Analyst in Cybersecurity is centered on leveraging analytical skills, Cybersecurity knowledge and business acumen to enhance the CISO organization's security posture, mitigate risks, and align Cybersecurity efforts with strategic business goals.

The Role

    • Cybersecurity Process Analysis
    • Evaluating current cybersecurity processes and practices to identify inefficiencies, gaps, and areas for improvement. This involves understanding workflows, incident response mechanisms, and threat detection capabilities.

    • Risk Assessment and Management
    • Helping to develop a robust process for risk assessments to identify potential cybersecurity threats and vulnerabilities within the organization. This includes analyzing risk impact and likelihood and recommending mitigation strategies to manage identified risks effectively.  Additional work will be required to formalize a Third-Party Risk Assessment process to address risks in dealing with technology and 3rd party vendors.

    • Requirements Gathering
    • Working with cybersecurity teams and business stakeholders to define and document requirements for cybersecurity operational projects and initiatives. This involves understanding both technical needs and business objectives.

    • Compliance and Regulatory Analysis
    • Ensuring cybersecurity strategies and implementations are following relevant laws, regulations, and industry standards. This includes understanding the landscape and implementing practices that meet these requirements.

    • Stakeholder Engagement and Communication
    • Acting as a liaison between the cybersecurity team and other business units, ensuring clear communication and understanding of cybersecurity initiatives and their impact on the organization

    • Data Analysis and Reporting
    • Utilizing data analytics to monitor and report on cybersecurity metrics, assess the effectiveness of implemented solutions, and support decision-making processes.

    • Training and Awareness
    • Supporting the development and delivery of cybersecurity training and awareness programs to educate employees about security best practices and emerging threats.

Qualifications & Experience

    • Minimum Education and Experience
    • Post-Secondary diploma or degree in IS or Business 
    • 3+ years' experience creating reports or metrics 

    • Preferred
    • 3+ years' experience process modelling and documentation
    • Any cybersecurity Certification
    • Knowledge of cybersecurity and risk will be an asset

    • Knowledge and Skills Required
    • Curious to learn concepts of Cybersecurity and technologies
    • Curious to learn the IT security domain including the development and sustainability of IT security programs
    • Curious to learn security standards and control frameworks. Including, but not limited to; ISO 27001, COBIT, CIS and NIST
    • Curious to learn Cybersecurity incident response and investigations fundamentals
    • Excellent communicator, both oral and written, with the ability to relate IT security issues to non-technical staff and students

Job classification: BUSINESS ANALYST - P2011
Salary range: 90,000 - 100,000
Paid Leave: 4 Weeks Vacation / 14 Flex Days per year
Hours Per Week: 37.5
Posting closing date: April 8th, 2024

View a summary of our benefits and perks for salaried employees as one of Alberta's Top Employers, including health & dental care, pension plan, vacation & special leave and flexible work options at our beautiful inner-city campus.

Apply for this job
Jobs powered by Lever logo