Cyber Security Business Analyst

  • Vakgebied IT
  • Dienstverband Fulltime
  • Vacaturenummer VAC-10019664
  • Locatie Eindhoven
  • Type overeenkomst Secondment via YER, Interim/independent
  • Branche IT & Telecom, High Tech

Over deze vacature

Analyze IT processes within the scope of UNECE Cyber Security Program, understand the interaction with business and regulation processes, create an overview for program stakeholders, working closely with Business Analysts and Subject Matter Experts. Be the counterpart of the other department analysts from IT side.



  • Review processes defined during CSMS HIKE workshops to understand the regulation requirements and work done
  • Understand the relationship between CSMS Operational processes and internal processes to understand the cross functional scope of the program and work done
  • From an IT perspective work together with After Sales, PD, Purchasing, Quality and Security analysts, review the mapping to identify interactions and impact on IT processes
  • Attend weekly meetings with other multi-department analyst team to review process analysis progress and bridge the process gap to IT
  • Keep in mind that it is NOT a technical/system analysis, it is a process analysis

Expected Outcomes:

  • A report of findings (based on aforementioned reviews and analysis) which clearly indicate the work done until now VS missing points from IT side and proposed actions to address the missing points from process point of view
  • A list of process risks for IT processes regarding future UNECE CSMS audits
  • Represent IT as process analyst in process reviews done by multi-department (After Sales, PD, Purchasing, Quality and Security). In other words, be the counterpart of the other department analysts from IT side
  • A summary document indicating all IT processes (security, quality, portfolio, PMO, …) that are impacted by UNECE CSMS regulation (this requires working together with other analysts as a team)
  • Support process analysis on example work package defined during HIKE: Include Risk Assessment in DAVIE development process
  • Deliver process documents and other deliverables as agreed within the actionable work packages


  • The UN-ECE Program will ensure compliance with the United Nations regulations R155 Cyber Security and R156 Software Update management systems
  • UN Regulation No. 155 - Cyber security and cyber security management system
  • UN Regulation No. 156 - Software update and software update management system
  • The focus in this function will be in analyzing Business and IT processes, understanding the interaction and creating an overview for program stakeholders and management. You will be closely working with Business Analysts and Subject Matter Experts


DAF Trucks N.V. in Eindhoven is part of the PACCAR Inc. which is one of the biggest global players in the heavy duty truck industry. The known truck brands of PACCAR are Kenworth, Peterbilt and DAF.


You will be employed by YER and seconded to DAF. We offer:

  • Good employee benefits (e.g. work-life balance, pension, commuting allowance or potentially a lease car)
  • Intensive support for international candidates (Including, Visa support, 30% rule, Free Dutch lessons, tax-return and accommodation assistance)
  • Community/network/assignments with other technology professionals from a variety of our multinational clients; ASML, Philips, NXP, KLM, Rabobank, Siemens, MSD, Canon etc.
  • Development opportunities, full access to the New Heroes training portal & the YER Talent Development Programme with a personal coach
  • Excellent guidance from your consultant and YER's back office
  • Events and master classes with interesting speakers and attractive companies
  • Excellent Remuneration (depending on level of expertise)


Must Haves

  • Have knowledge of Business and IT processes and process analysis
  • Able to understand interaction of processes from different business areas and create an overview
  • Good communication skills from technical to management level
  • Acquainted with general automotive processes (product creation, problem resolution, incident monitoring and response, supplier management, aftersales, manufacturing)
  • Familiar with IT backend and security processes
  • English is fluent and able to communicate effectively, both verbal and written
  • At least 10 years of relevant experience

Nice to Have

  • Knowledge about heavy-duty OEM processes
  • Knowledge about Cyber Security processes
  • Familiar with Compliance Programs like United Nations, European Commission
  • Qualifications and Education Requirement
  • Master degree in Business, Engineering or similar

Preferred Skills

  • Good sense of responsibility and have a pro-active attitude
  • Agile learner, communicative and pro-active in this area; actively looking for feedback
  • Knowledge of general business and IT processes
  • Focus on process analysis and promote different viewpoints
  • Highly analytical, results-oriented, pragmatic and prepared for the future