Job Description

Story Behind the Need:

• Enterprise Security is building a standardized, predictable, and high quality monthly reporting program for Cybersecurity Control Domains.
• To support this effort, the team needs a Business Analyst who can coordinate data inputs, validate metrics, manage reporting workflows, and ensure all domain submissions meet quality and governance standards before they reach executive audiences.

Business Group:

• Enterprise Security

Project:

• Cybersecurity Control Domain Monthly Reporting & Governance Framework

The successful candidate will have the opportunity to:

• Play a central role in a high visibility global cybersecurity reporting program.
• Shape how the organization communicates control maturity, performance, and risk posture.
• Work closely with cybersecurity SMEs, domain owners, and the Technical Writer (Editor in Chief).
• Influence improvements to reporting processes, templates, and governance standards.
• Operate at the intersection of data, process, governance, and communication.

Typical Day in Role:

• Collect, validate, and structure monthly data inputs from cybersecurity domain owners.
• Perform data quality checks, identify anomalies, and follow up with SMEs to resolve gaps.
• Manage the monthly reporting workflow, including reminders, deadlines, and sign off checkpoints.
• Maintain version control, documentation tracking, and repository accuracy.
• Translate technical domain updates into structured business friendly summaries.
• Ensure submissions align with templates, definitions, and reporting standards.
• Liaise between SMEs and the Technical Writer to streamline communication and reduce rework.
• Identify opportunities to improve reporting processes, templates, and data workflows.

Candidate Requirements / Must Have Skills:

• 8+ years as a Business Analyst, Reporting Analyst, Program Analyst, or similar role.
• Strong requirements gathering, workflow management, and process documentation skills.
• Ability to interpret technical or operational data and translate it into structured business inputs.
• Advanced proficiency in Excel, PowerPoint, and reporting/documentation tools.
• Experience performing data validation, quality checks, and anomaly detection.
• Expertise in content gathering from SME's and building out reporting's.

Nice to Have Skills:

• Experience in cybersecurity, technology risk, governance, or audit environments.
• Familiarity with control frameworks (NIST CSF, ISO 27001, CIS Controls).
• Exposure to executive level or leadership reporting.

Soft Skills Required:

• Highly structured, organized, and disciplined with timelines
• Strong critical thinking and problem solving abilities
• Comfortable navigating ambiguity and incomplete information
• Clear communicator who can bridge business, technical, and editorial workflows
• Collaborative, proactive, and committed to high quality output

Education & Certificates:

• Degree in Business, Information Systems, Technology, or related field
• Certifications in business analysis (e.g., CBAP, CCBA) are an asset

Best vs. Average Candidate:

• You will collect inputs and follow processes. Top candidates will anticipate issues, challenge inconsistencies, improve workflows, and elevate the clarity and quality of reporting.

Please note:

• AI is not used to screen, assess, or select candidates.

Job Details
13931
Contract
6 months
Toronto
72.00 CAD
Recruiter
Recruiter information not available.

Skills Required