Project Manager, Business Analyst

This is a fully remote position, open to applicants in United Kingdom.

📋 Description

• Oversee the complete delivery of cyber security projects across control, risk, and engineering workstreams.

• Establish the project scope, timelines, deliverables, and success criteria.

• Develop and uphold robust governance, reporting, and documentation standards.

• Monitor progress against milestones, risks, and interdependencies.

• Perform gap analysis between existing controls and target frameworks (e.g., NIST, internal/Tier 1-aligned standards).

• Convert business and regulatory requirements into clear technical and operational outputs.

• Define and document the requirements for control implementation, tools, and process enhancements.

• Assist in aligning security controls to Key Risk Indicators (KRIs) and enterprise risk frameworks.

• Evaluate and report on control effectiveness against established risk indicators.

• Help prioritize remediation initiatives based on risk exposure and business implications.

• Engage with senior stakeholders across security, IT, and the business.

• Serve as the primary coordination point among risk, engineering, and governance teams.

• Facilitate workshops, promote decision-making, and eliminate delivery obstacles.

• Provide clear, commercially-oriented updates to leadership.

• Support programs related to: Control framework adoption (NIST/internal standards), Microsoft Security stack (Defender, E5, CSPM tooling), and Network security initiatives (NTA, NetSec reviews, detection enhancements).

⛳️ Requirements

• Demonstrated experience as a Project Manager and/or Business Analyst within Cyber Security initiatives.

• Strong knowledge of cyber security frameworks (preferably NIST).

• Experience in delivering control framework alignment and gap remediation projects.

• Background in risk management, governance, and KRI-driven environments.

• Experience collaborating across security engineering, infrastructure, and risk teams.

• Excellent documentation, requirements gathering, and stakeholder management capabilities.

• Ability to translate intricate security concepts into clear delivery plans and outcomes.

• Experience in financial services or regulated sectors (preferred).

• Familiarity with the Microsoft security ecosystem (Defender, M365 E5) (preferred).

• Understanding of network security principles (NTA, traffic analysis, NetSec controls) (preferred).

• Acquaintance with audit, compliance, and regulatory standards (preferred).

🏝️ Benefits

• Competitive salary and performance-based bonuses.

• Opportunities for professional development and certifications.

• Flexible working arrangements and work-life balance support.

• Comprehensive health and wellness programs.

• Collaborative and innovative work environment.