Job Title - GRC Business Analyst
Overview
Under the general supervision of the leadership for the Governance, Risk Management and Compliance Accelerator (GRC Accelerator) capital project, the Senior Technical Business Analyst – Integrated Risk Management & SecOps is expected to provide technical business analysis expertise in the area of assessing, identifying, designing/re-designing, and implementing cybersecurity, enterprise risk and data privacy processes in a GRC platform.
The candidate will be required to work with project teams, service providers, and business units internal and external to the Fund’s IT function. The candidate is expected to bring pragmatic technical business analyst experience allowing for the Fund to meet its present and emergent business needs in the areas of cybersecurity, enterprise risk management and data privacy.
Specific responsibilities include:
1. Develop strong understanding of the following domains at IMF, and the underlying enabling processes, procedures, and systems:
a) cybersecurity governance risk and compliance and security operations
b) data privacy and
c) enterprise risk management
2. Conduct workshops with multiple stakeholder function (cybersecurity, data privacy, enterprise risk management, architecture, product and platform teams, some business functions), to
a) capture their as-is-process needs, current pain-points and
b) design a to-be-model to address the pain-points resulting in streamlined, efficient, effective, and auditable processes. Related expected deliverables include but are not limited to business requirements, functional requirements, detailed technical solution implementation requirements and documented processes (including detailed process flows) for the to-be model.
3. Review, analyze and design a common data access model for cybersecurity (GRC and SecOps), data privacy and enterprise risk management.
4. Work closely with developers, testers, and a broad range of platform teams to ensure accurate implementation of technical requirements.
5. Collaborate with subject matter experts and other stakeholders to develop the detailed technical solution requirements, sprint backlogs, including sprint planning, reviews, and story refinement sessions, etc.
6. Work with the Project Manager to develop and manage the Product Backlog for the project.
7. Conduct review of the various category of requirements with relevant stakeholders and subject matter experts and seek approval from appropriate governance functions.
8. Participate in the review of design artifacts to ensure alignment with business needs and solution requirements.
9. Create acceptance criteria in collaboration with key stakeholders and seek approval from appropriate governance functions. Ensure review of testcases to ensure comprehensive test coverage.
10. Support integrated system testing as needed.
11. Support demos to stakeholders and coordinate user acceptance testing (UAT) for the end users, where applicable.
Experience must include:
1. Leading complex, multi-disciplinary projects as the Senior Business Analyst
2. Practical, hands-on working knowledge with both Waterfall and Agile environments
3. Hands-on use of Azure DevOps tool for managing development and design artifacts.
4. Requirement Analysis: Experience in gathering and analyzing business/functional/technical implementation requirements for refined migrations from Archer to ServiceNow implementation.
5. Process reengineering: Experience with reviewing, analyzing, and redesigning (for robustness, efficiency, effectiveness, and simplicity) cybersecurity governance risk and compliance and security operations that were previously in Archer, but need to move to another GRC platform e.g., ServiceNow.
6. Documentation Skills: Proficiency in creating comprehensive documentation, including process flows, functional and technical specifications.
7. Technical Experience: Deep understanding and hands on working experience of ServiceNow Integrated Risk Management (IRM) and Security Operations modules. Prior similar experience with Archer is a plus.
Required Soft Skills
1. Analytical skills that enable synthesis of inputs from many sources and allow for strategic thinking and tactical implementation.
2. Spoken and written communications that are compelling, convincing, and reassuring, and skills to articulate complex technical ideas to non-technical stakeholders.
3. Ability to think laterally and to have input to / propose detailed, complex solutions to technical issues.
4. Ability to work well under pressure and to meet tight deadlines. Demonstrates a high level of motivation, confidence, integrity, and responsibility. Ability to be organized, responsive and to be able to effectively multi-task with a focus on driving results.
5. Demonstrate excellent interpersonal and relationship management skills. This includes the ability to work independently, effectively in a team/task force as a team member or leader, and with senior staff and managers. Interpersonal skills that create openness and trust among colleagues.
6. Ability to work well under pressure and to meet tight deadlines, whilst demonstrating a high level of motivation, confidence, integrity, and responsibility.
Education
1. Bachelor's degree in information security, computer science, engineering, mathematics, business, or related field of study plus a minimum of 10 years of relevant experience in regulated industries; OR
2. Advanced degree in Information Security, computer science, engineering, mathematics, business, or related field of study plus a minimum of 5 years of relevant experience in regulated industries.
LI-PT1Salary and Other Compensation: Applications will be accepted until Sept 26th 2024. The annual salary for this position is between $134000- 154000 depending on experience and other qualifications of the successful candidate.This position is also eligible for Cognizant’s discretionary annual incentive program and stock awards, based on performance and is subject to the terms of Cognizant’s applicable plans.
Benefits: Cognizant offers the following benefits for this position, subject to applicable eligibility requirements:Medical/Dental/Vision/Life InsurancePaid holidays plus Paid Time Off401(k) plan and contributionsLong-term/Short-term DisabilityPaid Parental LeaveEmployee Stock Purchase PlanDisclaimer: The salary, other compensation, and benefits information is accurate as of the date of this posting. Cognizant reserves the right to modify this information at any time, subject to applicable law
The Cognizant community:
We are a high caliber team who appreciate and support one another. Our people uphold an energetic, collaborative and inclusive workplace where everyone can thrive.
About us:
Cognizant (Nasdaq-100: CTSH) is one of the world's leading professional services companies, helping organizations modernize technology, reimagine processes and transform experiences so they stay ahead in a fast-changing world.
Our commitment to diversity and inclusion:
Cognizant is an equal opportunity employer that embraces diversity, champions equity and values inclusion. We are dedicated to nurturing a community where everyone feels heard, accepted and welcome. Your application and candidacy will not be considered based on race, color, sex, religion, creed, sexual orientation, gender identity, national origin, disability, genetic information, pregnancy, veteran status or any other protected characteristic as outlined by federal, state or local laws.
Disclaimer:
Compensation information is accurate as of the date of this posting. Cognizant reserves the right to modify this information at any time, subject to applicable law.
Applicants may be required to attend interviews in person or by video conference. In addition, candidates may be required to present their current state or government issued ID during each interview.