We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
I agree and accept cookies
Main menu
Post a Job
Request a Demo
Yes
No
Both
Advanced search

Job posting has expired

#alert
Back to search results / More jobs like this
Back to search results
New
Chameleon Integrated Services jobs

Security Business Analyst

Chameleon Integrated Services
United States, New York, New York
Apr 09, 2026
Responsible for gathering and documenting requirements, analyzing business and security needs, creating workflows/SOPs, and supporting risk assessment documentation. Working closely with the Project Manager, this role independently engages stakeholders to define, validate, and document business rules and functional requirements that meet DOE security objectives.

Key Requirements
  • Serve as a Security Business Analyst supporting enterprise cybersecurity and IT risk initiatives, translating CISO priorities, regulatory requirements, and business needs into clear, actionable requirements.
  • Elicit, analyze, and document security and risk requirements, including functional, technical, and compliance needs across Security Operations, Infrastructure, Cloud, Data Protection, GRC, Privacy, and business units.
  • Support risk and POA&M management activities, assisting in tracking remediation plans for internal systems and third-party vendors, validating milestones, and ensuring alignment with regulatory and policy requirements.
  • Act as a liaison between business stakeholders, technical teams, and senior leadership, ensuring shared understanding of risks, controls, dependencies, and implementation impacts.
  • Develop and maintain security-related documentation and artifacts, including business requirements documents (BRDs), process flows, gap analyses, and control mapping aligned to frameworks such as NIST and FISMA.
  • Provide analytical support for executive reporting, contributing to dashboards, metrics, and decision-ready summaries that communicate security posture, risk trends, and remediation progress.
  • Risk & Compliance Knowledge: Deep understanding of frameworks like NIST SP 800-53/37 (RMF), NYC Education Law 2-d, CIPA, FERPA, and HIPAA.
  • Enable delivery of measurable security outcomes, supporting project and program teams by identifying gaps, clarifying requirements, and helping ensure solutions meet defined risk, compliance, and business objectives.
  • Expertise requirements for gathering, process modeling, and workflow development to bridge technical-to-business gaps.

Experience: 5+ years
Certifications: CBAP, PMI-PBA, PMP, CAPM, ITIL-F, CRISC, CompTIA Project +or CGRC
Technologies: JIRA, Confluence, MS Visio, Lucid chart, MS Project, SQL Query, MS Power BI, Archer/ServiceNow (GRC), and MS Office Suite.

"We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status"

Texting Privacy Policy



  • Message type: Informational; you will receive text messages regarding your application and potentially regarding interview scheduling.
  • No mobile information will be shared with third parties/affiliates for marketing/promotional purposes.
  • Message frequency will vary depending on the application process.Msg & data rates may apply.
  • OPT out at any time by texting "Stop".

(web-bd9584865-d7qkw)