×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity

Lead Business Analyst - Operating Model

Job in Glasgow, Glasgow City Area, G1, Scotland, UK
Listing for: Cyber Fraud Centre
Full Time position
Listed on 2026-01-12
Job specializations:
  • IT/Tech
    Cybersecurity
Job Description & How to Apply Below

Sword is a leading provider of business technology solutions within the Energy, Public and Finance Sectors, driving real transformation change within our clients. We use proven technology, specialist teams and domain expertise to build solid technical foundations across platforms, data and business applications. We have a passion for using technology to solve business problems, working in partnership with our clients to help in achieving their goals.

About

the role

We’re supporting the delivery of a major, multi-year transformation programme that spans both IT and Operational Technology (OT) environments. The programme is focused on strengthening cyber resilience and designing secure, future-fit platforms and services that underpin critical national infrastructure.

We’re looking for an Operating Model Lead to define and embed the Target Operating Model (TOM) for cyber and information security across a highly integrated landscape of IT, OT, and Network Services. This role is key to ensuring that cyber security, risk management and governance are built into every layer of the operating model — aligned with regulatory expectations and best-practice frameworks such as NIST
, ISO 27001
, and NCSC guidance
.

As Operating Model Lead, you will lead a small team and collaborate with programme and client stakeholders to design, influence and implement an Operating Model that enables and sustains regulatory compliance, operational resilience, and long-term transformation goals.

Responsibilities
  • Lead the design and implementation of a future-state Operating Model aligned with operational excellence, regulatory compliance, and cyber resilience.
  • Provide leadership and guidance to a small team of analysts, fostering a culture of quality, innovation and customer service.
  • Define both interim and end-state capabilities and services — including roles, responsibilities, processes, tools, skills, and KPIs — aligned to standards such as IEC 62443, NIS Regulation, and the NCSC CAF.
  • Facilitate design workshops and stakeholder sessions across OT, Security, Technology, and wider Business domains to co-create future-state service models and delivery frameworks.
  • Translate strategic programme objectives into actionable design principles and service models.
  • Collaborate across multiple programme work streams to embed operating model requirements into delivery plans.
  • Lead the development and delivery of transition roadmaps for new and existing services, including sourcing strategies and organisational change readiness.
  • Oversee the creation, maintenance and governance of key artefacts required for transitioning services into business-as-usual and managed service environments.
  • Establish traceability from client requirements through to outcomes and regulatory compliance measures.
  • Define and implement governance frameworks that provide assurance and oversight of operating model delivery.
  • Drive consistent communication and engagement with stakeholders throughout the lifecycle of the Operating Model plan.
Qualifications
  • Proven experience in operating model design and implementation, including defining capabilities, services, processes, and governance frameworks within complex or regulated environments.
  • Experience gathering, analysing, and translating business and technical requirements into actionable designs or service models.
  • A solid understanding of how technology-enabled services are delivered, particularly in complex or regulated environments (e.g. energy, utilities, public sector, or infrastructure).
  • Exposure to service design, organisational change, or capability modelling within IT and/or OT (Operational Technology) environments.
  • Excellent stakeholder management skills, with the ability to engage and facilitate workshops across a range of technical and non-technical groups.
  • Familiarity with delivery frameworks such as ITIL, TOGAF, or NCSC CAF is beneficial, but not essential.
  • Experience working in or alongside cyber or risk-related initiatives would be an advantage, but not required.
Core Values & Culture

At Sword, our core values and culture are based on caring about our people, investing in training and career development, and building inclusive…

Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search