Business Analyst - Cyber Security, NIST, ISO

• Proven commercial experience working as a Business Analyst on Cybersecurity programmes within large, complex organisations.
• The ability to analyse and map current ("as-is") processes, lead workshops, and produce clear BPMN-style process documentation to identify risks, bottlenecks, and improvement opportunities.
• Experience capturing and translating business, functional, and non-functional requirements into detailed artefacts (user stories, acceptance criteria) while maintaining full traceability across delivery.
• Expertise in designing future-state ("to-be") processes and support the creation of Target Operating Models, defining roles, governance, capabilities, and transition activities.
• The ability to build strong relationships across business, technical, cyber, and operational teams, facilitating workshops and communicating complex information clearly to varied audiences.
• Can support delivery through solution evaluation, UAT participation, readiness activities, and maintaining high-quality documentation throughout the project lifecycle.
• Is able to demonstrate strong analytical, facilitation, and stakeholder-management skills, with desirable exposure to cybersecurity frameworks (NIST, ISO 27001, CIS, COBIT) and cyber-related process improvements.

Nice to have:

• Immediate availability.