Cybersecurity Business Analyst-Banking

Get AI-powered advice on this job and more exclusive features.

This range is provided by Vallum Associates. Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.

Base pay range

Direct message the job poster from Vallum Associates

Job Title: Cybersecurity Business Analyst

Location: Sheffield (3day/week onsite)

Duration: 06+ Months

Banking Client Experience Required

Job Description

-Should excel at eliciting and documenting requirements, mapping “as-is” and “to-be” access-management processes, conducting gap analysis, and producing clear reports and presentations for stakeholders. Strong communication skills to align Security, DevOps, and business teams, plus a data-driven mindset for analyzing IAM logs and evaluating risk.

-On the cloud side, they must understand IAM constructs in AWS (users, roles, policies, permission boundaries), Azure (Azure AD, RBAC, PIM), GCP (principals, roles, policy bindings), and Alibaba Cloud (RAM users, groups, roles, and policy management), as well as how Kubernetes RBAC (roles, bindings) integrates with cloud-native identities.

-Additionally, they should be familiar with SaaS identity management—SSO protocols (SAML, OAuth/OIDC), SCIM provisioning, and entitlement workflows—to identify gaps, over-privileged accounts, and recommend least-privilege controls across multi-cloud (including Ali Cloud) and SaaS environments.

Cloud-Specific IAM Knowledge (Required)

• AWS IAM
• In-depth understanding of IAM users/groups/roles/policies, permission boundaries, service-linked roles, and AWS Organizations (SCPs).
• Hands-on experience reviewing existing IAM policies (JSON), detecting overly broad permissions (e.g., “*” or wildcard actions), and recommending fine-grained least-privilege models.
• Knowledge of Azure AD concepts: users, groups, applications/service principals, managed identities, Conditional Access policies.
• Familiarity with Azure RBAC roles (built-in and custom) and PIM (Privileged Identity Management) best practices for just-in-time elevation.
• GCP IAM
• Understanding of GCP IAM constructs: Principals (Users, Service Accounts, Groups), Roles (primitive, predefined, custom), Service Account Keys, and Organization-level policies.
• Experience reviewing IAM policy bindings (via GCP IAM or Terraform state) and recommending Organization/Folder/Project-level least-privilege structures.
• Solid grasp of Kubernetes RBAC entities—Role, Cluster Role, Role Binding, ClusterRoleBinding—and how they map to Kubernetes API groups.
• Awareness of how cloud-provider-managed Kubernetes (EKS, AKS, GKE) integrates with cloud IAM (for example, IAM Authenticator in EKS, GKE Workload Identity, Azure AD/Entra integration).
• SaaS Application Identity Management
• Familiarity with Single Sign-On (SSO) protocols (SAML, OAuth 2.0/OIDC) and identity providers (Azure AD, GCDS, AWS IAM).
• Understanding of SCIM provisioning, user lifecycle workflows (onboarding/offboarding), and entitlement catalogue management for major SaaS (e.g., Office 365).

Required Skills & Experience:

• 5+ years as a Business Analyst (or similar) focused on IT security, governance, or IAM.
• Hands-on experience mapping and documenting IAM processes in AWS, Azure, and GCP.
• Practical knowledge of AWS IAM (users/roles/policies), Azure AD & RBAC, and GCP IAM (roles/bindings).
• Familiarity with Kubernetes RBAC (Role Bindings, ClusterRoleBindings) and how those ties into cloud IAM (EKS, AKS, GKE).
• Proven track record analysing SaaS-based identity integrations (e.g., SAML SSO, SCIM provisioning).
• Strong gap-analysis skills, able to pinpoint missing or weak access controls.
• Comfortable using cloud consoles, CLIs (AWS, Azure, GCP and Ali) and reviewing IaC (Terraform/CloudFormation) for IAM-related misconfigurations.
• Excellent stakeholder management; able to facilitate cross-functional workshops and drive consensus.

Senior Delivery Consultant

Office: 02033759240

Email: psharma@vallumassociates.com

Seniority level

• Seniority level

  Mid-Senior level

Employment type

• Employment type

  Contract

Job function

• Job function

  Analyst

• Industries

  Banking

Referrals increase your chances of interviewing at Vallum Associates by 2x

Get notified about new Cyber Security Analyst jobs in Sheffield, England, United Kingdom.

Huddersfield, England, United Kingdom 3 months ago

Sheffield, England, United Kingdom 1 week ago

Blyth, England, United Kingdom 1 month ago

Doncaster, England, United Kingdom 4 days ago

Castleford, England, United Kingdom 4 days ago

Pontefract, England, United Kingdom 4 days ago

Knottingley, England, United Kingdom 4 days ago

Sheffield, England, United Kingdom 2 weeks ago

Sheffield, England, United Kingdom 2 days ago

Holmfirth, England, United Kingdom 1 week ago

Multi skilled fire and security engineer

Mirfield, England, United Kingdom 1 week ago

CDCPK Information Security Representative (ISR)

Retford, England, United Kingdom 1 week ago

CDCPK Information Security Representative (ISR)

Retford, England, United Kingdom 3 weeks ago

Sheffield, England, United Kingdom 4 days ago

Sheffield, England, United Kingdom 7 hours ago

Apprentice Fire & Security Engineer- East Midlands

South Yorkshire, England, United Kingdom 2 days ago

Normanton, England, United Kingdom 1 day ago

Sheffield, England, United Kingdom 1 week ago

Sheffield, England, United Kingdom 1 week ago

Security Systems Maintenance and Call-Out Engineer

Doncaster, England, United Kingdom 2 days ago

Doncaster, England, United Kingdom 1 week ago

Sutton In Ashfield, England, United Kingdom 1 month ago

Sheffield, England, United Kingdom 1 month ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr…