i-confidential
Business Analyst
⭐ - Featured Role | Apply direct with Data Freelance Hub
This role is for a Cyber Security Business Analyst with a contract length of "unknown," offering a pay rate of "unknown." Located on-site, candidates must have strong financial services experience, expertise in cybersecurity, and excellent stakeholder management skills.
🌎 - Country
United Kingdom
💱 - Currency
£ GBP
-
💰 - Day rate
520
-
🗓️ - Date
February 28, 2026
🕒 - Duration
Unknown
-
🏝️ - Location
On-site
-
📄 - Contract
Inside IR35
-
🔒 - Security
Unknown
-
📍 - Location detailed
Sheffield, England, United Kingdom
-
🧠 - Skills detailed
#Agile #Cloud #Stories #Business Analysis #Requirements Gathering #Vulnerability Management #Cybersecurity #Security #Data Security #"ETL (Extract #Transform #Load)" #Documentation #Compliance
Role description
A major UK retail bank is seeking an experienced Cyber Security Business Analyst to support a wide range of security initiatives across regulatory compliance, threat reduction, data security, resilience, and security transformation programmes.
You will work at the intersection of business analysis, cybersecurity, and technology delivery, helping the organisation understand risk, define requirements, and implement impactful security controls across complex environments.
This is a high‑profile contract position suited to someone who can work with senior stakeholders, translate technical security concepts into business language, and support delivery in a fast‑paced financial‑services environment.
Key Responsibilities
Business Analysis & Requirements
• Gather, analyse, and document business and technical requirements for cybersecurity initiatives.
• Translate complex security needs into clear, actionable user stories, acceptance criteria, and process flows.
• Support definition of business cases, scope, impact assessments, and delivery roadmaps.
Cyber Security Change & Delivery
• Work alongside cyber SMEs, architects, engineering teams, and programme managers to drive delivery of security improvements.
• Analyse gaps in current security controls and help design solutions aligned to bank policies and regulatory obligations.
• Support delivery of security tooling, processes, and controls across the technology estate (cloud, infrastructure, applications, and data).
Risk, Compliance & Governance
• Contribute to risk assessments, control evaluations, and reporting across security programmes.
• Assist programmes responding to regulatory drivers (e.g., operational resilience, data protection, fraud reduction, critical infrastructure standards).
• Ensure documentation and change artefacts meet internal audit and regulatory expectations.
Stakeholder Engagement
• Work closely with technology, security, operations, and business teams to align priorities and ensure smooth delivery.
• Facilitate workshops, interviews, and working groups.
• Communicate progress, risks, and issues to senior stakeholders.
Required Skills & Experience
Business Analysis
• Strong BA experience within financial services, ideally banking.
• Skilled in requirements gathering, process mapping, user stories, acceptance criteria, and documentation.
• Experience working within Agile and/or hybrid delivery environments.
Cyber Security Knowledge
• Understanding of key cybersecurity domains such as:
• Identity & Access Management
• Vulnerability Management
• Network & Cloud Security
• Data Security & DLP
• Threat Detection & Response
• Security Governance, Risk & Compliance
• Ability to translate technical risk into business impact.
Financial Services Experience
• Previous experience delivering security or technology change within a regulated financial institution.
• Familiarity with regulatory expectations (e.g., FCA, PRA, operational resilience requirements, cyber risk frameworks).
Soft Skills
• Excellent communication and stakeholder management skills.
• Able to work independently within complex, matrixed environments.
• Strong analytical mindset with high attention to detail.
Contract will be inside IR35. Applicants must be able to attend client office 3 days per week.
A major UK retail bank is seeking an experienced Cyber Security Business Analyst to support a wide range of security initiatives across regulatory compliance, threat reduction, data security, resilience, and security transformation programmes.
You will work at the intersection of business analysis, cybersecurity, and technology delivery, helping the organisation understand risk, define requirements, and implement impactful security controls across complex environments.
This is a high‑profile contract position suited to someone who can work with senior stakeholders, translate technical security concepts into business language, and support delivery in a fast‑paced financial‑services environment.
Key Responsibilities
Business Analysis & Requirements
• Gather, analyse, and document business and technical requirements for cybersecurity initiatives.
• Translate complex security needs into clear, actionable user stories, acceptance criteria, and process flows.
• Support definition of business cases, scope, impact assessments, and delivery roadmaps.
Cyber Security Change & Delivery
• Work alongside cyber SMEs, architects, engineering teams, and programme managers to drive delivery of security improvements.
• Analyse gaps in current security controls and help design solutions aligned to bank policies and regulatory obligations.
• Support delivery of security tooling, processes, and controls across the technology estate (cloud, infrastructure, applications, and data).
Risk, Compliance & Governance
• Contribute to risk assessments, control evaluations, and reporting across security programmes.
• Assist programmes responding to regulatory drivers (e.g., operational resilience, data protection, fraud reduction, critical infrastructure standards).
• Ensure documentation and change artefacts meet internal audit and regulatory expectations.
Stakeholder Engagement
• Work closely with technology, security, operations, and business teams to align priorities and ensure smooth delivery.
• Facilitate workshops, interviews, and working groups.
• Communicate progress, risks, and issues to senior stakeholders.
Required Skills & Experience
Business Analysis
• Strong BA experience within financial services, ideally banking.
• Skilled in requirements gathering, process mapping, user stories, acceptance criteria, and documentation.
• Experience working within Agile and/or hybrid delivery environments.
Cyber Security Knowledge
• Understanding of key cybersecurity domains such as:
• Identity & Access Management
• Vulnerability Management
• Network & Cloud Security
• Data Security & DLP
• Threat Detection & Response
• Security Governance, Risk & Compliance
• Ability to translate technical risk into business impact.
Financial Services Experience
• Previous experience delivering security or technology change within a regulated financial institution.
• Familiarity with regulatory expectations (e.g., FCA, PRA, operational resilience requirements, cyber risk frameworks).
Soft Skills
• Excellent communication and stakeholder management skills.
• Able to work independently within complex, matrixed environments.
• Strong analytical mindset with high attention to detail.
Contract will be inside IR35. Applicants must be able to attend client office 3 days per week.
