IT & Cyber Business Analyst

About The Position

Requirements

• 1+ years of experience as a Business Analyst in Technology / Cybersecurity.
• Previous experience working in financial services or other regulated or critical infrastructure sectors.
• Knowledge of Agile methodologies.
• Working knowledge of Google Workplace tools, diagramming and project management software.
• Strong analytical and problem-solving abilities.
• Strong ability to quickly learn and understand complex topics.
• Experience working independently and in a team-oriented, collaborative environment.
• Ability to effectively prioritize and execute tasks in a high-pressure environment with minimal supervision.
• Ability to communicate with individuals at all levels of an organization.
• Strong written, presentation and oral communication, and interpersonal skills.
• Formal education in computer science, IT or business disciplines, and/or equivalent work experience.

Nice To Haves

• ECBA or CPRE or similar certifications are a bonus.

Responsibilities

• Coordinate the end-to-end intake, logging, and documentation of IT and Cyber issues, supporting root cause analysis (RCA) by gathering evidence, capturing timelines, and ensuring remediation plans and closure artifacts are properly recorded in the GRC toolset.
• Track the progress of identified IT and Cyber process and control gaps, working closely with stakeholders to maintain resolution traction and ensure audit-ready reporting.
• Provide critical support for technology and cybersecurity tool migrations (e.g., GRC platforms, JIRA, ServiceNow) and maintain system health through deep analysis and research.
• Create automated executive-level dashboards and reports, ensuring the integrity and accuracy of data feeds used for CISO and Board-level reporting.
• Act as the primary support lead for the Cybersecurity Awareness program by coordinating the rollout of training and phishing simulations, while managing the technical tracking of completion rates and repeat offenders.
• Support CISO and Technology communication requirements and provide analytical support for ongoing ad-hoc initiatives across the CISO organization.
• Implement and operate AI and automation tools to modernize routine GRC tasks, specifically focusing on automating manual data gathering, prompt engineering, and the generation of recurring risk reports.
• Continuously seek opportunities to enhance internal GRC processes, moving from manual spreadsheets to automated, scalable workflows.

Benefits

• Health & wellbeing resources and programs
• Paid vacation, personal, and sick days for work-life balance
• Competitive compensation and benefits packages
• Competitive incentive (bonus) program for Full-Time Permanent roles.