Senior IT Business Analyst (Security)

Overall Purpose

The purpose of the Senior Business Analyst role is to lead the analysis and documentation of Aurecons project delivery needs so that our programs deliver the highest quality change into Aurecon. The Senior Business Analyst has the experience and insight to work quickly and autonomously and will be expected to produce high-quality deliverables that meet the needs of their program and stakeholders. The Senior Business Analyst will bring their confidence work ethic and leadership skills to ensure the successful implementation of IT initiatives at Aurecon.

Reports to

Business Analysis Lead Project Manager(s)

Key Relationships

Portfolio and project managers solution designers and architects business stakeholders offshore technical teams vendor teams business analyst peers.

About You

• You are a highly skilled Senior Business Analyst with a proven track record across BA data and testing activities
• You have experience with NIST and ACSC Standards and previous Cyber Security initiatives
• You enjoy solving problems
• You dont hesitate to take responsibility for your domain
• You deal with challenges in a pragmatic and constructive manner
• You have attention to detail and can think outside the box
• You have a broad perspective and can anticipate risks and impacts beyond your immediate domain.
• You can facilitate and drive working group discussions with senior stakeholders and subject matter experts.
• You have in-depth knowledge of Excel and understand how to analyse data uncovering insights and how it will shape and drive decision making
• You have demonstrated experience in capturing and articulating requirements

Key Domain Experience

Essential Work Experience:

• 5 years exposure as a Cyber Security BA and exposure to NIST and ACSC Standards
• 7 years Business and Data Analysis
• 3 years in testing roles
• Must have worked as a BA on Security projects for (i.e. IaaS IAM PAM Infrastructure Security Cloud PaaS CMDB data analysis)

Position Description

Business Analysis activities:

• Responsible for gathering documenting and obtaining sign-off of business functional and non-functional requirements aligned with Aurecon PMO and security standards (E8 / NIST Level 2)
• Agile/Scrum experience Mandatory
• Work with business IT teams and vendors to analyse and explain the feasibility of security options and recommend the most appropriate response for business partners
• Proactively build and maintain exceptional business and technology stakeholder relationships at all levels to ensure alignment between business strategy technology security and solution delivery
• Responsible for collecting process information and documenting in defined templates
• Responsible for raising issues and risks and proactively proposing work arounds and resolutions for problem resolution.
• Contribute to and review requirements and process related documentation

Data Analysis activities:

• Ability to analyse large data sets into meaningful output for consumption by stakeholders
• Leveraging advanced Excel skills be able to analyse monitor manage and predict impacts of business scenarios
• Able to initiate and perform ad hoc queries to identify potential security issues within data sets
• Able to initiate uplift to data capture and analysis processes to improve analytical outcomes

Testing activities (nice to have):

• Create Test Approach/Plan across both functional and non-functional requirements covering the applicable Testing stages and gain endorsement
• Collaborate with Project Manager to estimate schedule and resource the testing identifying assumptions dependencies risks and issues

Qualifications:

• Deep knowledge of the Australian Cyber Security Centre and NIST Framework
• Bachelors degree in a Business or IT discipline
• Agile/Scrum master training
• Testing methodologies and planning
• Business Analysis Certification (BABOK Level 3 CBAP)
• Advanced Excel and ability to interpret data and understand business issues and consequences