Discovery – Information Governance and Security

Business Analyst (Senior)

About Discovery

Discovery’s core purpose is to make people healthier and to enhance and protect their lives. We seek out and invest in exceptional individuals who understand and support our core purpose, and whose own values align with those of Discovery. Our fast-paced and dynamic environment enables smart, self-driven people to be their best. As global thought leaders, Discovery is passionate about innovating in order to not only achieve financial success, but to ignite positive and meaningful change within our society.

About Information Governance and Security (IGS)

The Information Governance and Security function within the Discovery Group aims to provide assurance that the organisation’s information assets are adequately protected against threats on a continual basis. This is achieved by finding the right balance of information security and business freedom.

Key Purpose

The Business Analyst roles reside in the CISO Office, as part of the Information Governance and Security (IGS) department in Group Information Services (GIS). The function of the BA is to understand business requirements through a structured process of documenting, validating and translating requirements into functional specifications for the IGS technical teams to craft technical solutions. In addition, to support the Deputy Chief Information Security Officer (DCISO), with strategic planning and execution of business requirements. The BA role is the interface between IGS and the business units with regards to bridging the gap between business objectives and technical solutions. The role entails working with multiple business areas and multiple teams that require unpacking and deep integration of solutions, with the need for building and maintaining strong relationships with all stakeholders.

Areas of responsibility may include but not limited

• Assist business to articulate the benefits they wish to realize with the solution. Facilitate the development of a Business Case where required.
• Follow a structured process to listen to, understand and document business requirements in the context of IGS and business strategy. Facilitate activities like interviews or JAD sessions to expand the understanding of the business requirements. Documenting the requirements in a BRS document (which may include UML models, business process documents).
• Design and validate the functional solution by applying knowledge of the system, interfaces and dependencies to highlight integration aspects. This involves interpreting the BRS into a set of Functional Requirements Specifications as well as data analytics to support the recommendations. Advise IGS and our business stakeholders on the impact of implementing the solution.
• Develop use cases as part of the BRS along with test cases that would facilitate stakeholder testing and approval of the solutions prior to go live. Manage the testing process and ensure that the relevant outputs are achieved. Manage the issues and defect log post go live and ensure resolution.
• Review requirements against standards and established methodologies, policies and practices. Consult with the CISO Office and other stakeholders on governance and regulatory requirements.
• Maintain the IGS Artefact Repository with Process, SOP and other documentation in the context of creation, review cycles and finalisation. Identify gaps with regards to existence, completeness and effectiveness of artefacts and ensure closure thereof. This aids in the improvement of IGS services

Personal Attributes and Skills

• Strong negotiation and mature communication skills 
• Excellent knowledge of technology environments 
• The ability to articulate security in non-technical business impact terms  
• Excellent written and oral presentation skills, ability to lead discussions and present complex ideas to all levels within the organization 
• Business Writing Skills, Presentation and Facilitation Skills 
• Customer Service Orientation, Result Orientation, Negotiation skills 
• Personal organisation and time management skills 
• Time and Task Delivery Management 
• Professional Communication (written, verbal/presenting and listening) 
• Interpersonal skills - Ability to build relationships with people from all different backgrounds and at different job levels 

Qualifications & Experience

Essential  

• BCom Informatics or other relevant degree
• 10+ years of experience in Information Technology, Security and/or Privacy.
• Experience in Business Process Modelling and Data Analysis
• An understanding of the security and privacy landscape and requirements.
• Knowledge of Information Security, Compliance and IT Governance Standards: ISO27001/2, ISO31000, COBIT, King IV, NIST and ITIL.

Advantageous  

• Project management training and / or experience.
• SharePoint experience
• Strong risk assessment/audit capabilities with hands on experience in many technologies and platforms across a broad range of industries
• Certified Business Analyst Professional

EMPLOYMENT EQUITY   
                             
The Company’s approved Employment Equity Plan and Targets will be considered as part of the recruitment process. As an Equal Opportunities employer, we actively encourage and welcome people with various disabilities to apply.