Business Analyst - Cyber Security
* Annual Salary: £45,084 to £55,435 per annum experience dependent + 12.5% employer pension + private medical insurance
* Location: Bristol - with parking
* Job Type: Full-time
We are seeking an experienced Business Analyst with a strong understanding of Secure by Design principles, ideally aligned with UK government cyber security frameworks. This role is crucial for integrating business needs with cyber security requirements to ensure that services are designed, built, and maintained with security from the outset.
Day-to-day of the role:
1. Elicit and document business and functional requirements with embedded security and privacy considerations.
2. Produce security-aware artefacts, including Business Requirements Documents (BRDs), Functional Specifications, Threat Modelling inputs, Risk Assessment reports, and Security Requirements Traceability Matrix (SRTM).
3. Support the identification and documentation of service assets, data flows, and access controls.
4. Contribute to security risk assessments, Data Protection Impact Assessments (DPIAs), and asset classification activities.
5. Facilitate workshops with security, compliance, and technical stakeholders to capture security obligations.
6. Ensure traceability from security requirements through to test validation and service go-live.
7. Support t...