Cybersecurity Resources for BAs 

We hope you find this list of cybersecurity and risk resources for BAs and Business Change professionals useful. With thanks to cybersecurity experts Bindu Channaveerappa and Mark Cross, and AssistKD's Pete Thompson for their advice and input.

Courses

• AssistKD Cybersecurity One Day Workshop  
• AI Awareness One Day Workshop 

Articles and Workshop Output

• Embracing a Security Mindset: The Next Frontier of Business Analysis
• Business analysis and cybersecurity

BA Brew Podcasts

• BA Brew 63: The AI Brew (Hosted by ChatGPT)
• BA Brew 95: Cybersecurity and Business Analysis (Feat. Bindu Channaveerappa)

Links (Last updated April 2025)

• ENISA (European Union Agency for Cybersecurity)
• CISA (Cybersecurity and Infrastructure Security Agency)  
• NIST (National Institute of Standards and Technology)
• ISO (ISO/IEC 27001 Information Security Framework)
• ISO (ISO 31000:2018 Risk Management Guidelines)
• ISC2 (The International Information System Security Certification Consortium)
• ISSA® (Information Systems Security Association)  
• NCSC (National Cyber Security Centre) Guidance
• McKinsey Insights    

Books and Periodicals

• BCS Cyber Security and Business Analysis Book  
• CISO MAG (CISO Magazine)  
• BCS Cyber Security The Complete Guide to Cyber Threats and Protection Book
• OWASP Foundation The 10 Most Critical Web Application Security Risks eBook

Bindu Channaveerappa is the Author of ‘Cyber Security and Business Analysis: An essential guide to secure and robust systems’ published by BCS Publishing. The book offers practical guidance for analysts to extend their analysis and deliverables to include cyber security requirements throughout the project delivery lifecycle. It includes tools, techniques, frameworks, and real-life case studies.

Mark Cross has been working in IT transformation for 25 years specialising in cloud transformation, data migration, information protection and cybersecurity. He is the founder and principal consultant of Envista Consulting and serves on the committee of the IIBA UK North Branch. 

Pete Thompson is a Director at AssistKD, consultant, examiner, trainer, author, mentor and coach. He has expertise in business analysis and solution delivery, with software development as a specialism. Pete is the author of Defining Digital Solutions, published by BCS Publishing, the first in a comprehensive three book series on Digital Solutions.