Business Analyst-Cybersecurity

Senior Business Analyst

Relevant Experience: 5 to 7 years

Hiring Location: Poland – Krakow

Key Responsibilities

• Requirement gathering and analysis – by collaborating with stakeholders (Architects, cloud and containers engineer, capability leads, control owners) to capture and document functional and nonfunctional requirements.
• Define and prioritise epics within agile sprints - outlining the goal, completion criteria, and any dependencies – with enough technical details for an engineer to execute.
• Work closely with CNAPP engineering and other engineering stakeholders (Cloud services, Containers team, Cyber) to maintain traceability between business requirements, technical specifications and delivered features.
• Provide advice to stakeholders new to CNAPP on how to achieve their goals and support them with requirements elicitation.
• Conduct workshops and demos with key stakeholders to agree the design approach and to validate the solution – sign-off design and implementation.
• Define acceptance criteria to ensure requirements agreed with stakeholders are met.
• Map integrations and APIs between CNAPP solution components and HSBC systems e.g. downstream reporting, data lake integrations etc.

Mandatory Skills

• 5+ years’ experience as Business Analyst in cybersecurity, security and compliance platforms (SaaS/On-premise).
• Hands on knowledge in cyber security vulnerability scanning, configuration baseline, compliance, inventory e.g. CNAPP, APSM, CSPM etc.
• Proven experience in Agile/Scrum environments writing epics, features, and user stories.
• Excellent stakeholder management, facilitation, and communication skills.
• Experience with API integrations, microservices, and container orchestration (Kubernetes, AWS, GCP cloud) and DevOps processes
• Preferred familiarity with regulatory framework e.g. PCI-DSS, CIS benchmarks, etc.