Business Analyst - Automation and System
The Business Analyst owns the assessment lifecycle from scoping and discovery through analysis and final report delivery, working closely with technical engineers and internal stakeholders to translate findings into meaningful business outcomes for clients.
Key Responsibilities- Assessment Delivery (Primary)
initial
scoping and kickoff through data collection, analysis, and final report delivery.
Conduct structured discovery sessions with client stakeholders to understand their current environment, businessobjectives
, pain points, and risk tolerance.
Coordinate with EXOS technical engineers to gatherenvironment
data and
validate
findings across key assessment domains, including:
Infrastructure & endpoint health
Security posture and vulnerability exposure
Identity and access management
Backup and disaster recovery readiness
Patch compliance and update management
Cloud and M365 configuration and hygiene
Analyze collected data toidentify
gaps, risks, and opportunities, and develop prioritized findings with clear remediation recommendations.
Produce polished, client-ready assessment reports and executive summaries that communicate technical findings in business terms.
Present assessment findings to client stakeholders and internal teams, facilitatingdiscussion around priorities and next steps.
- Assessment Methodology & Standards (Co-Primary)
Develop, maintain
, and continuously improve EXOS assessment frameworks, templates, and scoring rubrics to ensure consistency and quality across all engagements.
Build and refine standardized data collection tools, questionnaires, and discovery checklists aligned to industry frameworks (e.g., CIS Controls, NIST, ISO 27001).
Establish repeatable processes forassessment
scoping, scheduling, data gathering, and report production that scale across the volume of client engagements.
Identifyopportunities to
leverage
automation and tooling (RMM data exports, configuration audits, etc.) to accelerate and improve assessment accuracy.
Documentmethodology
updates and
maintain
an internal knowledge base of assessment standards, benchmarks, and best practice references.
- Findings Analysis & Roadmap Development
Synthesize technical findings into prioritized risk registers and technology roadmaps that give clients a clear picture of where to
focusinvestment and effort.
Mapidentified
gaps
to
potential EXOS service offerings or project engagements, supporting the sales and CSM teams with scoped recommendations.
Apply consistent risk scoring and prioritizationmethodology
across findings to ensure clients receive objective, defensible guidance.
Track recurring themes and common findings across assessments to inform service offering development and internal knowledge sharing.- Stakeholder Engagement & Communication
assessment
engagement, managing timelines, expectations, and communication.
Facilitate discovery workshops, interviews, and walkthroughs with both technical and non-technical client stakeholders.
Collaborate closely with EXOS engineers, sales, and CSM teams to align assessment scope, findings, and recommendations with broader client relationships.
Deliverfindings
presentations that are clear, credible, and tailored to the audience ? from IT staff to executive leadership.
- Continuous Improvement & Internal Enablement
Contribute to building EXOS's assessment practice by documenting lessons learned, refining deliverable quality, and sharing insights across the team.
Support pre-sales efforts byassisting
with scoping conversations, assessment proposals, and articulating the value of assessment engagements to prospective clients.
Stay current on evolving IT and cybersecurity best practices, threat landscapes, and compliance requirements relevant to the SMB and mid-market space.
Provide internal feedback loops to engineering and service delivery teams based on recurring assessment findings that signal systemic gaps in managed environments