Business Information Security Officer (BISO) Job Description Template
Our company is looking for a Business Information Security Officer (BISO) to join our team.
Responsibilities:
- Greater awareness of information security and data privacy requirements (globally);
- Support the Business Unit and CISO in seeking cost optimizing and driving reduction in operations costs of managing the security controls;
- Data Protection;
- Information Security Risk Management;
- Leverage the Enterprise and specific Information Security Risk Assessments to establish and monitor the program;
- Increased levels of security across designated Business Unit;
- Ensure clear lines of communication between business and the Chief Information Security Officer;
- Provide reporting on the state and efficacy of security controls for their projects and platforms;
- Provide input into the Company;
- Review and provide input into the Information Security Policy and Standards;
- Establish a documented Information Security Program and supporting strategy for the area of responsibility (AOR);
- Ensure program is aligned with the AIS Information Security Program, Policies and Standards;
- Leverage the Enterprise and AOR specific Information Security Risk Assessments to establish and monitor the program;
- Youll develop and communicate security and compliance requirements to Information Services and key business partners;
- Update the program annually.
Requirements:
- Analytical aptitude with an emphasis on investigative, methodical critical questioning and logical thinking; a data-driven decision maker;
- 8+ years or more year of experience in audit or information security related role;
- Bachelor’s degree or equivalent experience;
- Ability to manage multiple complex priorities and competing agendas without express authority over delivery teams;
- Project management experience highly desired;
- Ability to interpret and apply policies and regulations across a large, complex business;
- High level of interpersonal skills to interact with leaders at multiple levels and facilitate team interactions;
- Advanced skills with MS-Windows and other related PC applications.