Business Analyst - Cyber Security

Posted 17 June 2025
SalaryNegotiable
LocationMelbourne
Job type Contract
DisciplineData & Analytics
Reference90M0671858_1750139863

Job description

Cyber Security Business Analyst - 12-Month Contract

Location: Melbourne, Victoria
Duration: 12 Months



About the Role

We're seeking an experienced Cyber Security Business Analyst to support a major cyber uplift program within a large, complex organisation. This role will sit at the intersection of business, cyber security, and technology delivery-supporting the identification, documentation, and implementation of security requirements across a portfolio of initiatives.

This is an excellent opportunity to join a high-performing, forward-thinking team working to uplift security maturity and ensure compliance with key regulatory and industry standards.



Key Responsibilities

  • Engage with internal stakeholders across security, technology, and business functions to elicit and document cyber security requirements

  • Analyse business processes and identify control gaps and risk areas

  • Support projects focused on areas such as identity and access management (IAM), data protection, cloud security, vulnerability management, and SOC uplift

  • Assist with control design, current/future state process mapping, and alignment to frameworks such as ISO 27001, NIST, Essential Eight, CPS 234, and SOCI

  • Define functional and non-functional requirements, user stories, and acceptance criteria

  • Support UAT planning, change impact assessments, and implementation activities

  • Contribute to reporting and documentation to support compliance and audit readiness



Required Skills and Experience

  • 3+ years as a Business Analyst, with at least 2 years focused in cyber security or information security projects

  • Experience supporting technology or security teams in risk, compliance, or regulatory environments

  • Familiarity with key security frameworks and standards (e.g. NIST, ISO 27001, Essential Eight, CPS 234)

  • Ability to understand and translate complex technical concepts for business stakeholders

  • Excellent stakeholder engagement, requirements gathering, and documentation skills

  • Strong understanding of project lifecycles (Agile and/or Waterfall)

  • Experience in regulated environments (finance, higher education, utilities, or government) is highly desirable



Why Apply

  • Join a collaborative and forward-thinking cyber security program

  • Long-term contract with potential for extension

  • Flexibility in location and working hours

  • Exposure to high-impact, enterprise-scale transformation programs

  • Contribute to meaningful change in a maturing cyber environment

To Apply:
Please submit your resume and a brief summary of your availability and daily rate expectations. Shortlisted candidates will be contacted for an initial phone screen.