Security IT BA

JOB TITLE: Security IT BA
JOB LOCATION: Quincy MA
WAGE RANGE*: $58-$62
JOB NUMBER: ITS77-EHS-FY26-SECURITY ANAL - 001

REQUIRED EXPERIENCE:

• 5-8 years of experience in information technology, with at least 3 years in a business analyst, technical writer, or related role.
• Strong understanding of information security concepts, frameworks, and best practices (e.g., NIST CSF, CIS Controls, ISO 27001).
• Experience developing, documenting, and maintaining IT/security policies, standards, and procedures. Experience with Microsoft 365 suite, JIRA, or other collaboration/project tracking tools.
• Experience facilitating requirements gathering sessions, interviews, and workshops with technical and business stakeholders.
• Strong analytical and problem-solving skills, including the ability to identify process gaps and recommend improvements.
• Ability to manage multiple assignments simultaneously and balancing competing priorities. Capable of working independently and as part of a cross-functional team.

JOB DESCRIPTION

EOHHS is seeking to hire a highly motivated and detail-oriented Security IT Business Analyst to join the EOHHS Chief Information Security Officer's Office (CISO) Office. The position requires excellent writing skills, with a focus on development of policy and process documentation. Strong analytical, communication and presentation skills are critical. Additionally, the successful candidate must possess the following attributes: attention to detail; superior time management and solid multitasking skills; ability to contribute and work productively as part of a team; capacity to remain flexible and the ability to work well under pressure.

• Develop and maintain relevant security documentation including policies, standards, procedures, workflows, and process guides. Analyze existing security processes to identify gaps and risks for improvements.
• Support security compliance and audit readiness by ensuring documentation is complete, accurate, and aligned with Commonwealth and federal standards.
• Facilitate collaboration between the CISO's Office, IT teams, agency stakeholders, and external partners to ensure alignment and effective communication.
• Prepare reports, presentations, and dashboards to track security initiatives and communicate progress to both stakeholders and leadership.
• Assist in the development of security training, documentation, and communications that will promote adoption of security policies and best practices. Contribute to the planning, tracking, and monitoring of security projects and initiatives to ensure timely delivery and alignment with strategic objectives.
• Manage and document risks, issues, and decisions related to security policy and process initiatives of the EOHHS CISO's Office Participate in security reviews, assessments, and capturing findings to ensuring documentation of remediation steps.
• Serve as a resource for gathering, analyzing, and documenting requirements of security initiatives, tools, and processes.
• Provide structured and clear documentation that can be used to support decision-making, audits responses, and operational changes.
• Perform other related duties as assigned to support the mission of the EOHHS CISO's Office.

Equal opportunity employer as to all protected groups, including protected veterans and individuals with disabilities

* While an hourly range is posted for this position, an eventual hourly rate is determined by a comprehensive salary analysis which considers multiple factors including but not limited to: job-related knowledge, skills and qualifications, education and experience as compared to others in the organization doing substantially similar work, if applicable, and market and business considerations. Benefits offered include medical, dental and vision benefits; dependent care flexible spending account; 401(k) plan; voluntary life/short term disability/whole life/term life/accident and critical illness coverage; employee assistance program; sick leave in accordance with regulation. Benefits may be subject to generally applicable eligibility, waiting period, contribution, and other requirements and conditions. Benefits offered are in accordance with applicable federal, state, and local laws and subject to change at TCM's discretion.

#Dice