Job description Posted 22 July 2022

Business Analyst – Cyber Security


£475 per day via Umbrella

Location – remote (occasional office days in London/Weybridge, Surrey)

Who Are We - GSK?

We are a science-led global healthcare company with a special purpose: to help people do more, feel better, live longer. GlaxoSmithKline plc was formed in 2000 as a result of a merger between Glaxo Wellcome plc and SmithKline Beecham plc , although our history can be traced back more than 300 years to London’s Plough Court Pharmacy in the 1700s.

Our goal is to be one of the world’s most innovative, best performing and trusted healthcare companies. Our strategy is to bring differentiated, high-quality and needed healthcare products to as many people as possible, with our three global businesses, scientific and technical know-how and talented people. Our values and expectations are at the heart of everything we do and form an important part of our culture:

  • Our values are Patient focus, Transparency, Respect, Integrity
  • Our expectations are Courage, Accountability, Development, Teamwork


We are looking for an experienced Business Analyst to support CH Office of Deputy CISO supporting GSK’s Consumer separation and disentanglement programme. To lead the development and monitoring of data quality metrics and ensure business data and quality compliance. This is a critical role and will require an astute individual with the ability to capture, manage and translate large amounts of data seamlessly using an Agile methodology.

Key responsibilities 

·        Ability to research best solutions to increase work efficiency

·        Interpreting and understand data about company policies and workflows

·        Supporting project teams during the analysis and planning stages of developing technical solutions

·        Working on other project phases like implementation and testing

·        Facilitating a successful release handover

·        Developing quality assurance practices and assessments

·        Incorporating user requirements into project documentation

·        Maintain best practice in deliverable progress following consistent data processes, decision

·        tracking, risks management etc

·        Report progress through agreed reporting mechanisms

·        Ability to interface with Cyber Security Product Owners, Product Managers & Technical Subject Mater Experts for documenting and compiling compliance information supporting their products

·        Broad understanding of Global Regulatory & Compliance process and supporting information required to compiled to meet identified controls from assessment

·        Ability to interface with Business Analyst, Technical Writer(s) for preparing compliance documents

·        Understanding of data / Technology related processes, quality practices and development lifecycles

·        Effective communication with portfolio management team and key stakeholders

·        Escalating emergent risks and issues in a timely manner and working with key stakeholders to remediate

·        Translating complex technical information to increase comprehension

·        Gather customer feedback on documentation to improve usability

·        Work with product managers, SMEs, and cross-functional teams to produce compliance artefacts in accordance with GSK standards and policies

·        Use and adapt recognised project management methods and processes for best possible results

·        Actively participate in the design, implementation and continued support of CH CISO portfolio


Skills required 

·        3+ years’ experience working as a business analyst in large scale business change programmes

·        Ability to map data flows across a complex application and Cyber landscape

·        Strong analytical skills, including a thorough understanding of how to interpret business needs and mapping data from multiple sources

·        Sound organisational skills with experience in maintaining project governance artefacts and reporting across a global programme and matrixed organisation

·        Excellent stakeholder engagement, written and oral communication skills; strong presentation skills

·        Strong planning and deliverable tracking to plan; attention to detail

·        Proven delivery of complex global projects across multiple departments with the ability to drive alignment and rapid decision making

·        Able to hit the ground running and demonstrate a persistent drive to completion

·        Excellent verbal and written communication skills and the ability to interact professionally with a diverse group; engineers, product managers, product owners and subject matter experts

·        Ability to apply Agile, Scrum, Kanban practices and related tools as required

·        Ability to negotiate, influence and hold team members to account as required for successful completion of compliance documentation

·        Experience working with the following tools preferred: Confluence/JIRA


·        Background in cyber security with a proven track record of delivering complex global change security initiatives

·        Pharmaceutical experience, ideally in the delivery of complex IT / OT programmes

·        Preferably UK based but open to discuss options in US/India

·        Previous recent GSK experience

o  Familiar with the internal GSK IT Management System Service (ITMS)/compliance and processes

§ Publishing compliance documentation in GSK’s internal Controlled Document Management Service (CDMS) and or Veeva Quality Documents (VQD)