Cybersecurity Business Analyst - Banking - London, City - OUTSIDE IR35

Summary: The Cybersecurity Business Analyst role at a leading investment bank in London involves working on various projects within the Cybersecurity portfolio. This hybrid position requires the analyst to be present in the office three days a week. The ideal candidate will have extensive experience in business analysis within large-scale cybersecurity programs in the financial services sector. The role is classified as outside IR35, indicating a favorable tax status for contractors.

Key Responsibilities:

• Work across multiple projects within the Cybersecurity portfolio.
• Ensure delivery assurance through requirements traceability, acceptance criteria, test alignment, and benefits realization.
• Produce high-quality business requirements documents (BRDs), functional specifications, and other deliverables.
• Manage stakeholder relationships, particularly with the CISO function, technology teams, risk & compliance, and business lines.
• Translate complex security requirements into actionable delivery items.
• Utilize Agile and Waterfall methodologies in project execution.
• Oversee delivery governance within investment banking, including program steering and milestone tracking.

Key Skills:

• 5+ years of Business Analysis experience in large-scale cybersecurity programs within financial services/investment banking.
• Strong track record in delivery assurance.
• Deep understanding of cybersecurity domains such as IAM, data protection, cloud security, and regulatory-driven cyber initiatives.
• Proficiency in producing BRDs, functional specs, and other BA deliverables.
• Familiarity with regulatory frameworks (DORA, PRA/FCA, MAS, SEC, GDPR, SOX).
• Excellent stakeholder management skills.
• Strong analytical and problem-solving skills.
• Experience with Agile and Waterfall methodologies; JIRA/Confluence proficiency preferred.
• Knowledge of delivery governance within investment banking.

Salary (Rate): £350/day

City: London

Country: UK

Working Arrangements: hybrid

IR35 Status: outside IR35

Seniority Level: undetermined

Industry: IT

Detailed Description From Employer:

Cybersecurity Business Analyst - Banking - London, City - OUTSIDE IR35. Our client, a leading investment bank based in the City of London, require an experienced Cyber Business Analyst to work across a number of projects within their Cybersecurity portfolio. This is a hybrid role with 3 days a week in London.

ESSENTIAL SKILLS & EXPERIENCE:

• 5+years Business Analysis experience in large-scale cybersecurity programmes within financial services/investment banking;
• Strong track record in delivery assurance: requirements traceability, acceptance criteria, test alignment, and benefits realisation;
• Deep understanding of cybersecurity domains: identity & access management (IAM), data protection, cloud security, vulnerability management, SIEM/SOC, and regulatory-driven cyber initiatives;
• Skilled in producing BRDs, functional specs, and other BA deliverables to a high quality;
• Familiarity with regulatory frameworks (DORA, PRA/FCA, MAS, SEC, GDPR, SOX) and how they impact cyber deliveries;
• Excellent stakeholder management - able to work with CISO function, technology teams, risk & compliance, and business lines;
• Strong analytical and problem-solving skills with the ability to translate complex security requirements into actionable delivery items;
• Experience working with Agile and Waterfall methodologies; JIRA/Confluence proficiency preferred; and
• Knowledge of delivery governance within investment banking (program steering, milestone tracking, RAID management).

For an immediate interview, email your CV.

Key skills: Cyber, Cyber Security, Business Analyst, business analysis, Banking, Investment Banking, Financial Services, identity & access management, IAM, IdAM, data protection, cloud security, vulnerability management, SIEM, SOC, DORA, PRA/FCA, MAS, SEC, GDPR, SOX, London.