The Cyber Security Program is responsible for delivering information security solutions to support modern healthcare delivery.
The program addresses the evolving healthcare landscape and the ever-changing cyber security threat environment to drive the security uplift and posture for the organisation.
About the role The purpose of this role is to provide business analysis support by identifying, analysing and documenting current state and future state business processes and requirements within a large ICT environment, to ensure the delivery of valued, integrated and effective business solutions for the Cyber Security Program and it's projects.
Key responsibilities include: • Capture and analyse 'As-Is' and 'To-Be' business process models using approved methods and tools.
• Develop business and software requirements specifications for the Cyber Security projects, ensuring traceability of requirements throughout the project lifecycle.
• Use appropriate business analysis techniques, method and tools, including benefits, risk and issue management, to ensure quality project outcomes are delivered.
• Liaise with the test team to ensure business/software requirements are incorporated into testing products.
• Work with external service vendors, where appropriate to ensure quality outputs according to the agreed scope of work.
• Initiate, influence, and maintain relationships with and between key internal and external stakeholders, facilitate effective communication channels to promote the successful outcomes within the business, and foster relationships through consultation, lessons learned and management of expectations.
• Contribute to stakeholder engagement, assessment and the development of a stakeholder matrix, and ongoing stakeholder management.
• Provide support and mentoring role for other business analysts within the Program.
• Contribute to the ongoing development of the Business Analysis function within the Cyber Security Program.
Experience and skills Experience performing business analysis activities within ICT and Cyber Security projects, preferably with the vulnerability management solution, cyber security operating models, data leakage protection, web gateways and application control capabilities.
(SFIA Skill: BUAN: Level 4).
• Experience in capturing and analysing 'As-Is' and 'To-Be' business process models across large organisations, preferably using Business Process Modelling Notation (BPMN).
(SFIA Skill: BSMO: Level 4).
• Knowledge in, and an ability to provide sound advice and recommendations on, the application of appropriate business analysis techniques, methodologies, and tools, preferably aligned with Business Analysis Body of Knowledge Version 3.0(BABOK).
(SFIA Skill: METL: Level 4).
• A strong understanding of the Australian Signals Directorate Essential Eight mitigation strategies, NIST framework, ISMS standards, the Security of Critical Infrastructure Act and ISO27001.