Business Analyst - Applications Identity and Access Management (Hybrid set up)

Náplň práce, právomoci a zodpovednosti:
Are you passionate about turning complexity into clarity? Do you thrive at the intersection of technology, security, and collaboration? Join our cybersecurity team in one of Europe's most vibrant tech hubs and play a pivotal role in shaping how Swiss Re secures its digital future. As a Business Analyst in our Applications Identity and Access Management team, you'll be the bridge between stakeholders, delivery teams, and cutting-edge security solutions — making sure the right things get built, the right way.


About the Role


In this role, you'll be at the heart of our cybersecurity delivery engine. You'll work closely with engineers, architects, product owners, and business stakeholders to translate complex security objectives into clear, actionable requirements. From driving adoption of security services and remediating security risks, your work will directly contribute to making Swiss Re's global IT ecosystem more secure and resilient.


Key Responsibilities


Elicit, clarify, document, and maintain requirements from users, consuming applications, and stakeholders — translating cybersecurity objectives into user stories, acceptance criteria, process descriptions, and delivery-ready artefacts, consolidating inputs from backlogs, workshops, and discussions into a coherent, up-to-date requirements landscape.

Analyse changes in the IT and security landscape and assess their impact on the team's systems, consumers, and processes — capturing dependencies, risks, and assumptions, and proactively flagging opportunities for improvement.

Drive rollout and adoption by co-creating communication material for our stakeholders, supporting consuming teams in understanding integration requirements and adoption steps, and tracking residual risks for management reporting.


About the Team


The Applications IAM team is part of Product & Engineering Cyber Security — Swiss Re's build-and-run organisation for cyber security capabilities. This unit envisions, engineers, owns, and operates a portfolio of cyber security products and platforms that protect Swiss Re globally, spanning application identity and access management, PAM, customer IAM, cyber defence platforms, detection engineering, vulnerability management, and more.

Within this organisation, the Applications IAM team focuses specifically on securing access and secrets management for technical identities across Swiss Re's global IT ecosystems, including public cloud environments. We define and build solutions at the cutting edge of application security — and as an active contributor to the group's cyber security strategy and roadmap, our work has a tangible impact on Swiss Re's resilience worldwide.

Požiadavky na zamestnanca:
You are a structured, curious, and collaborative professional who brings order to complexity. You have a talent for listening carefully, asking the right questions, and turning ambiguous inputs into clear, actionable deliverables. You communicate with confidence across technical and non-technical audiences, and you bring a proactive mindset that keeps delivery moving forward. A genuine interest in cybersecurity makes you excited — not intimidated — by the domain you'll be working in.


We are looking for candidates who meet these requirements:


Solid experience as a Business Analyst in IT delivery teams, with a strong track record in agile environments and a confident command of BA practices — including requirements elicitation, documentation, prioritisation, stakeholder management, and the ability to structure complex topics into user stories, acceptance criteria, and actionable deliverables.

Genuine interest in and affinity for cybersecurity, with hands-on exposure to authentication protocols (e.g. OIDC, OAuth) and secrets management, to IAM, and the ability to engage meaningfully with engineers on technical integration topics.

Practical experience building applications on Azure, combined with scripting skills in PowerShell or Python and a working knowledge of SQL.

Academic background in IT, Computer Science, Business Information Systems, or an equivalent field.


These are additional nice to haves:


Experience with security audits, penetration testing, vulnerability management, or Identity and Access Management (IAM), providing additional depth when assessing security risks and requirements.

Strong facilitation skills, with experience running workshops and discovery sessions, and a proven ability to present risks, requirements, and adoption timelines or progress clearly and convincingly to both senior technical and management audiences.