Business Analyst (Security Frameworks, Healthcare Cyber Security, CBAP, ITIL)

Job title:

Business Analyst (Security Frameworks, Healthcare Cyber Security, CBAP, ITIL)

Company

Teamrecruiter.com

Job description

One of our Healthcare clients is looking for a Business Analyst (Security Frameworks, Healthcare Cyber Security, CBAP, ITIL)
Length: 6 months Contract with a possibility of extension
Location: Toronto, ON – HYBRID‘The start date of this job is flexible and in order to find the best candidate the job may remain open much longer than the date mentioned on this posting… or you may be asked to start sooner than the expected start date if you are able to do so !’Please read the job description below. If this interests you, please send a MS-Word version copy of your resume (ASAP) along with a telephone contact number: E-mail to connect@teamrecruiter.comPlease mention the job title above in the subject line
The recruiter in charge of this role is ZaraAfter you have submitted your resume via e-mail please complete the application for this specific job by clicking ‘Submit Your Resume for this Job’ at the bottom of this page to match your resume to the job.If you are interested in further opportunities, why not also do a general registration in our database. By visiting our website and clicking on ‘Database Registration’If you do not think you are a match for this opportunity, but know someone who is, feel free to forward this email to them and you will be eligible for a referral bonus upon a successful hire.Requirements:
KEY RESPONSIBILITIES:
1. Strategic Security Innovation:
Champion a progressive security culture that positions protection as a business enabler, not a barrier to innovation.
Orchestrate multi-disciplinary collaboration to ensure security initiatives directly support TELUS Health’s strategic vision.
Bridge security operations with business objectives through targeted metrics and measurable outcomes.
Design and implement security performance dashboards that clearly demonstrate ROI and business impact.
Spearhead initiatives that transform security from a compliance requirement to a competitive advantage.
Build strategic partnerships across business units to embed security excellence into organizational DNA.2. Security Analysis & Design:
Conduct in-depth analysis of existing security ecosystems, mapping critical processes and use cases across TELUS Health.
Identify and document government, regulatory and client contractual obligations as requirements for security process and technology solutions.
Work across the CSO portfolio of projects to deliver business and use case analysis in support of solution design and onboarding.
Support centrally managed solutions and federated solutions that require close collaboration with product and business teams to integrate security into existing practices.
Seek out, demonstrate and justify security improvements through tracking of KPI data before and after deployment to support broad adoption of security solutions.
Optimize security controls to minimize friction in user and developer experiences.
Seek out cost saving opportunities through streamlining of process and governance.
Leverage data analytics to inform evidence-based security design decisions.
Establish metrics to quantify the effectiveness of security architectures and controls, and the tracking of rollout adoption.
Continuously refine security solutions based on emerging threats, technological advancements, and user feedback.3. Stakeholder Engagement:
Work across CSO spanning technical and non-technical disciplines and leverage opportunities for re-use and streamlining across CSO in engagement with business and product teams.
Forge collaborative partnerships across TELUS Health to harmonize security initiatives with operational objectives.
Translate diverse business needs into robust, actionable security plans.
Orchestrate cross-functional dialogues to ensure security measures enhance, rather than hinder, business processes.
Lead initiatives to streamline security processes, reducing operational friction and enhancing overall efficiency.
Facilitate workshops to identify opportunities where security can act as a business enabler.
Develop tailored security solutions that address specific business unit needs while maintaining a cohesive organizational security posture.
Champion a ‘security as a service’ model within TELUS Health, positioning the security team as a valued business partner.Qualifications:
MUST-HAVE SKILLS:
1. Expert skills in gathering and documenting security requirements from diverse stakeholders
a) Ability to manage the discovery and documentation of the as-is state, and facilitating the creation of the to-be state through templates such as swimlanes, RACI and flowcharts
b) Evaluate the impact of security findings on business processes
c) Ability to facilitate discussions to resolve conflicts between security and business needs2. Strong ability to create detailed business requirement documents (BRDs) and functional specifications for security initiatives
a) Experience in facilitating requirements workshops and security stakeholder meetings
b) Experience with data reporting and visualization tools (e.g. Looker, Power BI, Excel)
c) Ability to analyze security scan results and create actionable reports3. Basic Knowledge of Software Development Lifecycle security principlesNICE-TO-HAVE SKILLS:
Experience with requirements management tools and traceability matrices
Ability to develop user stories and acceptance criteria for security features
Skills in conducting impact analysis for security changes across business units
Policy and Compliance; basic familiarity with compliance and security standards like GDPR, HIPAA, and ISO 27001, NIST, SCO2 Type2
Education and Awareness
o Supporting training initiatives to educate development teams on secure coding practices
o Driving the adoption of security tools and processes within the organizationTECHNICAL REQUIREMENTS:
Expert knowledge in:
Security operations excellence frameworks
Process improvement methodologies (Six Sigma, Lean)
metrics and KPI development
automation and orchestration
governance and compliance
Business intelligence and analytics
tool optimization
Stakeholder managementRequirements management
Strong understanding of:
Security frameworks and controls
Risk assessment methodologies
Vulnerability management
Security tools and technologies
Compliance requirements in healthcare
Experience with security process optimization and documentationREQUIRED QUALIFICATIONS:
Bachelor’s degree in Computer Science, Information Security, or related field
5+ years of business analysis experience in cybersecurity
Proven track record of security process improvements
Strong analytical and problem-solving capabilities
Excellence in technical documentation and communication
Healthcare security experience preferredDesired Certifications:
Desirable: Security certifications (CISSP, CISM)
Essential: Process improvement certifications (e.g. Six Sigma, ITIL)
Desirable: Quality management certifications (ISO 27001 Lead Auditor)
Essential: Business analysis certifications (e.g. CBAP)Ideal Candidate Profile:
Process excellence mindset
Data-driven decision maker
Strong analytical capabilities
Excellence in stakeholder management
Continuous improvement advocate
Innovation championPlease note that this is the most up to date version of job description available at this time – During Client Interview you will receive additional information – variance may apply !When you have some time please register in our database (5 minutes process) to be considered for future openings; the link is available on our website at http://www.teamrecruiter.com in the Candidate section. Please follow us on LinkedIn at https://www.linkedin.com/company/teamrecruiter.com/, or on Twitter at https://twitter.com/TeamRecruiter.We thank all applicants for their interest. Only those who meet the qualifications will be contacted through telephone/email. You are encouraged to register with us in our database to be considered for future positions available.Have a great day.At Teamrecruiter.com we offer some of the most highly qualified professionals in the workforce. We dedicate an industry trained recruitment specialist to the following areas: IT, Finance, Admin, Sales, Executive Search and Contractors. If you would like to learn more about our full-service recruiting firm please visit our website at www.teamrecruiter.com.CAMSC and ACSESS certified“…All Offers are conditional on Client Post-Offer Conditions being met and removed by end client prior to written offer signing”“Please note that emails from our Recruitment Firm may inadvertently be sent to your Spam Folder. When contacted regarding an employment opportunity, please keep an eye on your Spam/Junk Folder to avoid missing important communication.”THE EMPLOYER OF RECORD FOR THIS ROLE WILL BE TEAM RECRUITER / SE.Accommodations are available upon request for all individuals with disabilities taking part in the recruitment and selection process.

Expected salary

Location

Toronto, ON

Job date

Wed, 08 Jan 2025 01:37:17 GMT

To help us track our recruitment effort, please indicate in your email/cover letter where (jobsnearcanada.com) you saw this job posting.