Position Overview
We are seeking a skilled Cyber Security Business Analyst to join our team and support the development of secure and innovative cyber software products in Abu Dhabi.
This role will involve gathering requirements, analyzing security implications, and ensuring software products are align with business goals, requirements, compliance standards and organizational goals.
Key Responsibilities
Requirement Gathering and Analysis:
- Collaborate with stakeholders to understand business objectives, security needs, and technical requirements for software development projects.
- Document detailed functional, non-functional, and security-related requirements to be used by the software teams.
Cybersecurity Focus:
- Identify potential security risks during the requirements collection gathering.
- Ensure the incorporation of secure best practices (e.g., OWASP guidelines) in the product requirements documentation.
Collaboration and Communication:
- Work closely with product owners, QA teams, developers and cybersecurity specialists to align security requirements with development goals.
- Serve as the primary liaison between business stakeholders and product team.
Compliance and Standards:
- Ensure products meet regulatory compliance and industry standards (e.g., UAE IA, ISO 27001, NIST).
- Develop and maintain requirements documentation to support the development of our products.
Testing and Validation:
- Collaborate with QA and security teams to document all the requirements, functional and non-functional acceptance criteria’s and validate the effectiveness of implemented products.
Continuous Improvement:
- Monitor emerging cybersecurity threats and trends to recommend updates to the documented requirements.
Qualifications and Skills
Education and Experience:
- Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or related field.
- 3+ years of experience in business analysis with a focus on cybersecurity and software development projects.
Technical Skills:
- Familiarity with requirements gathering and documentation, QA best practices and cyber security related with technical products and projects.
- Experience with cybersecurity frameworks and standards such as OWASP, NIST, or ISO 27001.
- Proficiency in tools for risk management, business analysis, QA tests and security testing.
Analytical and Communication Skills:
- Strong ability to analyze complex requirements and translate them into actionable technical tasks and documentation.
- Excellent verbal and written communication skills in English to interact effectively with both technical and non-technical stakeholders.
Certifications (preferred):
- Certifications such as CISSP, CISM, or CBAP are a plus.
