IT & Cyber Business Analyst

What's in it for you as an employee of QFG?

• Health & wellbeing resources and programs

• Paid vacation, personal, and sick days for work-life balance

• Competitive compensation and benefits packages

• Work-life balance in a hybrid environment with at least 3 days in office

• Career growth and development opportunities

• Opportunities to contribute to community causes

• Work with diverse team members in an inclusive and collaborative environment

This job posting is for an existing vacancy

We're looking for our next IT & Cyber Business Analyst. Could It Be You?

The IT & Cyber Business Analyst is a core technical and analytical pillar of the GRC team, reporting to the Manager, IT & Cyber Governance, Risk & Control. This role acts as the "engine room" for the function, focused on technical enablement, data-driven storytelling, and the tactical application of AI and automation to streamline compliance and risk workflows. The successful candidate ensures that the CISO organization operates with high-integrity data, efficient tools, and modernized processes to meet the demands of a highly regulated financial environment.

Need more details? Keep reading…

As a junior-to-intermediate BA, you will leverage your technical aptitude and analytical mindset to perform the following responsibilities which spotlight the role's focus on being the "engine room"—driving the mechanics, data, and efficiency of the GRC function.
In this role, responsibilities include but are not limited to:

Operational Issue & Remediation Management

• Issue Management & Documentation: Coordinate the end-to-end intake, logging, and documentation of IT and Cyber issues, supporting root cause analysis (RCA) by gathering evidence, capturing timelines, and ensuring remediation plans and closure artifacts are properly recorded in the GRC toolset.

• Remediation Tracking: Track the progress of identified IT and Cyber process and control gaps, working closely with stakeholders to maintain resolution traction and ensure audit-ready reporting.

GRC Systems & Data Integrity

• GRC Tooling & Data Administration: Provide critical support for technology and cybersecurity tool migrations (e.g., GRC platforms, JIRA, ServiceNow) and maintain system health through deep analysis and research.

• Data Validation & Executive Visualizations: Create automated executive-level dashboards and reports, ensuring the integrity and accuracy of data feeds used for CISO and Board-level reporting.

Strategic Program Support & Awareness

• Cybersecurity Awareness Lead Support: Act as the primary support lead for the Cybersecurity Awareness program by coordinating the rollout of training and phishing simulations, while managing the technical tracking of completion rates and repeat offenders.

• CISO Communications & Ad-hoc Support: Support CISO and Technology communication requirements and provide analytical support for ongoing ad-hoc initiatives across the CISO organization.

AI, Automation & Process Engineering

• Tactical AI & Automation Implementation: Implement and operate AI and automation tools to modernize routine GRC tasks, specifically focusing on automating manual data gathering, prompt engineering, and the generation of recurring risk reports.

• Process Optimization: Continuously seek opportunities to enhance internal GRC processes, moving from manual spreadsheets to automated, scalable workflows.

So are YOU our next IT & Cyber Business Analyst? You are if you…

Professional Experience & Domain Background

• 1+ years of experience as a Business Analyst in Technology / Cybersecurity.

• Previous experience working in financial services or other regulated or critical infrastructure sectors.

• Knowledge of Agile methodologies.

Technical Skills & Tools

• Working knowledge of Google Workplace tools, diagramming and project management software.

• Strong analytical and problem-solving abilities.

• Strong ability to quickly learn and understand complex topics.

Work Style & Personal Attributes

• Experience working independently and in a team-oriented, collaborative environment.

• Ability to effectively prioritize and execute tasks in a high-pressure environment with minimal supervision.

Communication

• Ability to communicate with individuals at all levels of an organization.

• Strong written, presentation and oral communication, and interpersonal skills.

Education & Certifications

• Formal education in computer science, IT or business disciplines, and/or equivalent work experience.

• ECBA or CPRE or similar certifications are a bonus.

Compensation Information:

• Base salary range: $82,000 - $100,000

• The final compensation package will be commensurate with the successful candidate's experience, skills, and geographic location (Canada). It includes a comprehensive benefits plan and a competitive incentive (bonus) program for Full-Time Permanent roles.

Sounds like you? Click below to apply!

#LI-Hybrid #LI-JW1