BSA I - Business Analyst with Application Security - Hyderabad

Hyderabad, Telangana, India

Back to search results
Back to search results

Position Summary

Business Solution Analyst – Application Security – Global Employer Services Technology Center

Deloitte Tax Services India Private Limited (“Deloitte Tax in India”) commenced operations in June 2004. Since then, nearly all of the Deloitte Tax LLP (“Deloitte Tax”) U.S. service lines and regions have obtained support services through Deloitte Tax in India.

We provide support through the tax transformation taking place in the marketplace. We offer a broad range of fully integrated tax services by combining technology and tax technical resources to uncover insights and smarter solutions for navigating an increasingly complex global environment.

We provide opportunities to transform tax operations using contemporary technologies in the market. Individuals work to transform their current state of tax to the next generation of tax functions. Are you ready to take the next step in your career to find new methods and processes to assist clients in improving their tax operations using new technologies? If the answer is “Yes,” come join Global Employer Services Technology Center (GESTC)

Job Purpose:
We are seeking a motivated Business Technical Analyst with 2–3 years of experience specializing in Application Security and Authorization. In this role, you will collaborate with product owners and business stakeholders to capture, analyze, and document business requirements related to access management and authorization. Ideal candidate will have experience in various Access Control models such as RBAC, ABAC and specifically Policy-Based Access Control (PBAC) creating policies using Cedar policy language.

Key Job Responsibilities:

  • Engage with product owners and business stakeholders to elicit, analyze, and document detailed business requirements related to application security, specifically roles and permissions.
  • Serve as a liaison between business and technical teams, translating business needs into actionable permission requirements and policy modeling.
  • Assist in the management and prioritization of product backlog items related to access control, using Azure DevOps (ADO), Jira, or equivalent tool
  • Visualize and communicate requirements and data flows using Visio or equivalent tools for effective playback and stakeholder alignment.
  • Validate new permission enforcement functionalities as part of business user validation (BUV) and provide Tier 2 support as needed.
  • Identify opportunities to enhance security processes and controls, balancing risk mitigation with operational efficiency.

Personal Characteristics:

  • Passionate about leveraging permissions and access control as business enablers.
  • High attention to detail and commitment to delivering quality outcomes.
  • Proactive, self-motivated, and able to work independently or as part of a team.
  • Strong interpersonal skills and ability to build relationships across diverse stakeholder groups.
  • Adaptable and able to thrive in a dynamic, fast-paced environment.

Education/Background:

·       College coursework: B.E / B.Tech

Key skills required

  • 2–3 years of experience as a Business Analyst or Technical Analyst, with a focus on application security, roles and permissions.
  • Strong understanding of Access control concepts, including PBAC, and familiarity with ABAC and RBAC.
  • Experience defining and managing roles, permissions, privileges, and policies.
  • General knowledge of Authorization policy languages such as Cedar, Rego, and XACML.
  • Proficiency in working with JSON and understanding data structures.
  • Working knowledge of client secrets, JWT security tokens, SOAP-based authentication, and REST APIs.
  • Proficiency in API testing and debugging using tools like Postman or SoapUI.
  • Working knowledge of DynamoDB, PostgreSQL, or equivalent databases.
  • Ability to translate business objectives into technical requirements and policy definitions.
  • Experience managing product backlogs and features in Azure DevOps (ADO), Jira, or similar tools.
  • Proficiency in visualizing requirements and policy flows using Visio or equivalent tools.
  • Excellent written and verbal communication skills, with the ability to engage both technical and non-technical stakeholders.
  • Strong analytical, problem-solving, and organizational skills.
  • Experience with Agile methodologies.

Preferred Certifications:

·       Relevant IAM, Access controls or AWS Security certifications.


#CA-GSD
Our purpose

Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. 
Our people and culture

Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work.
Professional development

At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse   learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India.
Benefits to help you thrive

At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you.
Recruiting tips

From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters.

Requisition code: 308087