CIÉ Group IT&T (GITT) have a requirement for a highly motivated Business Analyst with Cybersecurity experience working with the Chief Enterprise Architect and Head of Cyber Security. The ideal candidate will have a combination of business analysis, cybersecurity knowledge and stakeholder engagement expertise to ensure the business objectives of the CIÉ Group cyber programme are met.
The role is based full time in Heuston Station. Hybrid working is available.
CIÉ Group IT&T is responsible for providing IT and Telecoms services, to the CIÉ holding company and to each of its operating companies (Iarnród Éireann, Bus Éireann, Dublin Bus, CIÉ Tours) and their support units. The role of Group IT&T is to provide the CIÉ Group with a solid IT foundation, support and develop Group Systems, manage integration between systems, set the standards on IT policy and governance and lead information risk activity for the Group including Cybersecurity. Group IT&T services approximately 3,000 IT customers and 200 sites throughout Ireland and is one of the most geographically dispersed IT landscapes in the country.
Responsibilities
Business Analysis
* Requirements gathering – work with stakeholders to gather, document and analyse business and technical requirements related to cybersecurity initiatives.
* Work closely with IT, security teams and business stakeholders to ensure cybersecurity measures align with organisational goals.
* Define and map business processes, identifying potential vulnerabilities and/or inefficiencies and recommending security enhancements.
* Documentation – create detailed documentation which follows current team standards including business case, business requirements, acceptance criteria, process maps, business cases, ROM costs, user guides, and training materials.
* Develop and deliver reports, dashboards and presentations to senior management and stakeholders.
* Stakeholder Communication – maintain clear and consistent communication with stakeholders, providing updates on project status and soliciting feedback.
* The Business Analyst may also be asked to provide input to risk assessments and recommend mitigations to improve security posture.
* Assist in compliance audits and regulatory assessments e.g. ISO 27001, NIST2, GDPR.
* Testing – develop test scripts, coordinate user testing and conduct testing to ensure solutions meet business requirements and are free of defects.
Governance
* Provide input to the development and promotion of business analysis standards & templates.
* Review project designs and change requests to ensure business process improvements have been undertaken and requirements are documented correctly.
* Working with business users to identify / measure benefits of a piece of work.
* Working with the PMO to ensure projects run smoothly.
Work relationships
* Reporting to the Cybersecurity team.
* Internal: Data & Development Team.
* Internal: Project Management Office.
* Internal: Business teams.
* Internal: Service Delivery.
* Within Operating Companies: IT Managers.
* Within Operating Companies: Cybersecurity teams.
* Within Operating Companies: Enterprise Architects.
* Within Operating Companies: Business teams.
* External: Third-party Suppliers & Vendors.
Experience and Competencies
* Strong stakeholder management and facilitation skills.
* Demonstrated ability to work on own initiative as well as in a team environment.
* Ability to work effectively with cross-functional teams and manage these relationships.
* Demonstrated ability to deliver service in high demand / pressure circumstances.
* Excellent analytical, problem-solving, and communication skills.
* Excellent communication skills with demonstrated ability to translate complex technical concepts into business-friendly language.
* Proficiency in business analysis tools (Visio, etc.).
* Knowledge of cybersecurity tools such as SIEM, IDS/IPS, endpoint security solutions is a plus.
* Relevant certifications (e.g., CBAP, CISM, CISSP, CRISC) are desirable but not mandatory.
* Experience working in Agile or DevSecOps environments is a plus.
* Familiarity with cloud security (Azure, AWS).
* Knowledge of transport related industry would be a benefit.
Knowledge of Microsoft technology platforms would be a benefit.
Qualifications & Certifications
* Bachelor’s degree in Business, Information Technology, Cybersecurity, or a related field.
* 3+ years of experience as a Business Analyst, preferably within cybersecurity or IT security.
* Good understanding of cybersecurity frameworks (ISO 27001, NIST, CIS, etc.).
* Knowledge of data privacy laws and regulatory requirements.
* Experience with risk management, compliance, and governance principles.
* Must have a good understanding of Azure and O365 architecture.
* Experience of integrating multiple systems in a complex environment.
Seniority level
Associate
Employment type
Contract
Job function
Information Technology
Industries
Information Services
#J-18808-Ljbffr