Business Information Security Officer (BISO) Job Description

View Business Information Security Officer (BISO) jobs

Business Information Security Officer (BISO) Job Description Template

Our company is looking for a Business Information Security Officer (BISO) to join our team.

Responsibilities:

  • Greater awareness of information security and data privacy requirements (globally);
  • Support the Business Unit and CISO in seeking cost optimizing and driving reduction in operations costs of managing the security controls;
  • Data Protection;
  • Information Security Risk Management;
  • Leverage the Enterprise and specific Information Security Risk Assessments to establish and monitor the program;
  • Increased levels of security across designated Business Unit;
  • Ensure clear lines of communication between business and the Chief Information Security Officer;
  • Provide reporting on the state and efficacy of security controls for their projects and platforms;
  • Provide input into the Company;
  • Review and provide input into the Information Security Policy and Standards;
  • Establish a documented Information Security Program and supporting strategy for the area of responsibility (AOR);
  • Ensure program is aligned with the AIS Information Security Program, Policies and Standards;
  • Leverage the Enterprise and AOR specific Information Security Risk Assessments to establish and monitor the program;
  • Youll develop and communicate security and compliance requirements to Information Services and key business partners;
  • Update the program annually.

Requirements:

  • Analytical aptitude with an emphasis on investigative, methodical critical questioning and logical thinking; a data-driven decision maker;
  • 8+ years or more year of experience in audit or information security related role;
  • Bachelor’s degree or equivalent experience;
  • Ability to manage multiple complex priorities and competing agendas without express authority over delivery teams;
  • Project management experience highly desired;
  • Ability to interpret and apply policies and regulations across a large, complex business;
  • High level of interpersonal skills to interact with leaders at multiple levels and facilitate team interactions;
  • Advanced skills with MS-Windows and other related PC applications.