Work model: Hybrid (2 days in the office per week)
Job Type: Full Time
Job Location: Málaga
As a Cyber Business Analyst, you are the vital link between our clients’ business needs and our security operations capabilities. Your primary role is to ensure a seamless and effective delivery of security services. You will achieve this by acting as a subject matter expert during client on-boarding, translating business requirements into technical specifications, driving process optimization, and managing the metrics program to measure service performance and value. This position requires a unique blend of business acumen, strong communication skills, and a solid understanding of cybersecurity fundamentals.
Responsibilities
- Client & Stakeholder Management: You will serve as the primary point of contact for new clients and internal business units during the onboarding and service transition phases. This involves clearly defining the scope of security services, gathering detailed requirements, and managing expectations to ensure a smooth and successful handoff to the security operations team.
- Requirements Gathering & Translation: Conduct in-depth analysis of client and business needs, translating them into clear, actionable technical requirements for the SOC and security engineering teams. Your role is to bridge the communication gap between non-technical stakeholders and technical security staff.
- Process Optimization & Service Delivery: Analyse existing security operations workflows to identify inefficiencies, pain points, and control gaps. You’ll then design and document optimized processes and procedures (SOPs) to enhance service delivery, improve team efficiency, and ensure alignment with client needs.
- Metrics & Reporting Program Management: Design and manage the security services metrics program. This includes defining key performance indicators (KPIs) and business / operational metrics, gathering relevant data, and creating compelling reports and dashboards to demonstrate the value and effectiveness of the security program to both clients and internal leadership.
- Project Leadership & Strategic Contributions: Act as a key resource in multi-disciplinary project teams, representing security operations to ensure that new projects, products, or services are delivered securely. You will proactively identify opportunities to improve security telemetry and controls, helping to build out the team’s improvement roadmap.
Requirements
- Experience: A minimum of 3-5 years of experience as a Business Analyst, with significant experience in a security.
- Cybersecurity Knowledge: A strong understanding of cybersecurity fundamentals, including security operations processes, incident response, and common security technologies such as SIEM, EDR, and threat intelligence platforms.
- Business Analysis Skills: Proven experience in requirements elicitation, process mapping, data analysis, and documentation.
- Problem-Solving: The ability to analyse complex business problems and design practical, effective solutions.
- Communication: Exceptional verbal and written communication skills, with the ability to articulate complex technical information to both technical and non-technical audiences.
- Stakeholder Management: A proven track record of successfully managing relationships with multiple stakeholders and clients.
Nice to Have
Entry-level or intermediate cybersecurity certifications (e.g., CompTIA Security+, GSEC). Experience with data visualization tools (e.g., Tableau, Power BI).