Homepage Open Sollicitatie / Inschrijven

logo

Bekijk alle vacatures

Business Analyst

Brussel, Brussel

Job Title: DORA Business Analyst

Start Date: Asap

Duration: 1 year

Work Regime: Full-time, 2 office days per week

Location: Brussels

Project Scope:

The project aims to enhance operational management of security involving suppliers, specifically focusing on third-party software supply chain security. The objectives are to contribute to the design of the project by Q4 2025 and deploy the defined design by 2026.

Responsibilities:

  • Develop new activities ensuring software development and maintenance follow security practices.
  • Inventory libraries used in software development, including open source.
  • Identify and manage vulnerabilities related to libraries.
  • Establish activities for SaaS applications ensuring development, hosting, and maintenance follow security practices.
  • Define and coordinate implementation/maintenance of reporting to support activities.
  • Map third parties to software and cloud services.
  • Review alert and incident response processes involving third parties.
  • Deploy processes to manage supplier subcontractors in line with DORA and security practices.
  • Define processes for identification and risk assessment of subcontractors.
  • Set up monitoring controls and response plans for subcontractor risks.
  • Create and maintain data repositories to support activities.
  • Enhance governance and operational follow-up with suppliers.

Main Tasks:

  • Define governance for management of activities (RACI, Committees).
  • Clarify scope of activities balancing costs and risk management.
  • Design processes to organize activities.
  • Participate in designing the data model supporting activities.
  • Ensure coordination between stakeholders, aligning with CISO IT Risk vision.

Key Skills:

  • Proven experience in process design and documentation in line with industry best practices (knowledge of BPMN and relevant methodologies).
  • Strong communication and coordination skills to engage stakeholders across the organization.
  • Experience in designing IT governance (RACI, Target Operating Model writing) and knowledge of IT Governance methodologies (ITIL, COBIT) and security governance (e.g., CISM).
  • Previous experience in the financial sector is required; experience with the client is a plus.

Deel deze vacature

Powered by