About the role
We are looking for a results driven IT Business Analyst to lead and support the transition of cybersecurity operations to a Managed Security Service Provider. This is a high impact role where you will directly influence how security services are designed, governed, and delivered.
You will act as the strategic bridge between Cybersecurity teams, IT Operations, and MSSP partners, ensuring a smooth, secure, and well governed transition.
What You Will Do
Requirements Leadership
Lead elicitation, analysis, documentation, and validation of functional and non functional security requirements
Define current state and future state security service models including workflows, roles, and responsibilities
Maintain end to end traceability from discovery through transition and stabilization
MSSP Transition & Vendor Enablement
Support vendor onboarding and service transitions while maintaining strong security controls
Define service scope, SLAs, escalation paths, and operational dependencies
Identify risks, gaps, and transition dependencies and support mitigation planning
Security Standards & Governance
Develop and refine security standards, procedures, and operational playbooks
Translate regulatory, policy, and risk requirements into practical operational guidance
Align MSSP contractual obligations with operational execution
Documentation & Continuous Improvement
Produce high quality documentation including process flows, requirements, and transition artifacts
Maintain traceability between security controls, requirements, and vendor deliverables
Support stabilization, optimization, and continuous improvement post transition
What We're Looking For
5+ years of IT Business Analyst experience in complex enterprise initiatives
Experience supporting cybersecurity or security operations programs
Strong stakeholder engagement and workshop facilitation skills
Proven ability to translate business needs into clear technical requirements
Experience tracking requirements through testing, validation, and deployment
Strong documentation and analytical capabilities
Experience working with MSSPs is highly valued
Familiarity with NIST, CIS, or similar cybersecurity frameworks is a plus
CBAP or ECBA certification is an advantage
IT Business Analyst • Edmonton, AB, Canada