Business Information Security Officer
Posted a month ago
- London, Greater London
- Any
- External
- Expires In 2 months
Description
Business Information Security Officer – Job DescriptionWith the growth of the business globally we are expanding ourGlobal Security Office(GSO) and are looking to recruit aBusiness Information Security Officerto join the team in London. Reporting to the Chief Security Officer, you will come from an Information Security background with experience of serving as a trusted BISO to mid-large sized organisations. Role SummaryThe BISO provides leadership, executive support, and strategic and tactical guidance for the cybersecurity program supporting enterprise security initiatives. As a business enabler, the BISO is an effective communicator with the technical aptitude to drive security fundamentals into aspects of the business.The BISO must be capable of working closely with senior management, third parties, project managers and business subject matter experts (SMEs). Additionally, the BISO should be personable and able to translate business leader requirements to augment the security program / roadmap. The BISO role requires a technical background and ability to understand technologies, their purpose, and their security requirements and data protection needs, wherever they reside. The BISO should also understand threats, as well as risk mitigations and technical controls recommended by security leaders.Role Responsibilities Act as a liaison to ensure cybersecurity practices are built into business unit initiatives for the entire lifecycle.Act as a trusted point of contact across business units.Work closely with security leadership to instill cybersecurity policies and practices throughout business units to address security operations, incident response, application security and infrastructure.Be actively informed and engaged in security projects across the business.Enforce the strong security culture set forth by the CSO, ensuring uniformity across security leadership, business units and employees.Foster strong relationships with internal business units and excel in cybersecurity communication.Advise business units on enterprise-wide people, process and technology security recommendations.Maintain up-to-date knowledge related to security threats, vulnerabilities and mitigations set forth to reduce the attack surface; circulate this knowledge through the business units.Provide motivation to business units to adopt cybersecurity controls.Remove complexity and obstacles that hinder efficient security controls enterprise-wide.Build relationships with business units to deliver security-by-design controls incorporated into projects, architecture, infrastructure and applications.Stay abreast of new laws, regulations and standards, and assess their impact to the business.Verify security content training initiatives and internal/external communication are conducted regularly.Openly support the CSO, management team and executive leadership, even during tumultuous times.Perform other duties as assigned.Key SkillsStrong written and verbal communication skills across all levels of the organization.High level of integrity, trustworthiness and confidence, and able to represent the company and security leadership with the highest level of professionalism.Adept at understanding business focus and processes and ability to inject cybersecurity into the business through teamwork and influence.Strong project management, multitasking and organizational skills.Ability to work effectively with diverse teams and varying personalities and adapt management style to effectively reach mutually beneficial outcomes.Able to attain and preserve credibility with the team through sustained industry knowledge.Applicable knowledge of national and global cybersecurity policies, regulations and security frameworks.Demonstrated understanding and comprehension of a wide range of cybersecurity solutions.Experience Requirements Some experience of cybersecurity or information technology project management.Some experience of related security systems administration (preferable).Extensive experience of cybersecurity and/or information technology experience.Preferable, but not required: CISSP, CISM, CRISC, CISABachelor's degree in business administration, information assurance or related technical field.
#J-18808-Ljbffr
Business Information Security Officer – Job DescriptionWith the growth of the business globally we are expanding ourGlobal Security Office(GSO) and are looking to recruit aBusiness Information Security Officerto join the team in London. Reporting to the Chief Security Officer, you will come from an Information Security background with experience of serving as a trusted BISO to mid-large sized organisations. Role SummaryThe BISO provides leadership, executive support, and strategic and tactical guidance for the cybersecurity program supporting enterprise security initiatives. As a business enabler, the BISO is an effective communicator with the technical aptitude to drive security fundamentals into aspects of the business.The BISO must be capable of working closely with senior management, third parties, project managers and business subject matter experts (SMEs). Additionally, the BISO should be personable and able to translate business leader requirements to augment the security program / roadmap. The BISO role requires a technical background and ability to understand technologies, their purpose, and their security requirements and data protection needs, wherever they reside. The BISO should also understand threats, as well as risk mitigations and technical controls recommended by security leaders.Role Responsibilities Act as a liaison to ensure cybersecurity practices are built into business unit initiatives for the entire lifecycle.Act as a trusted point of contact across business units.Work closely with security leadership to instill cybersecurity policies and practices throughout business units to address security operations, incident response, application security and infrastructure.Be actively informed and engaged in security projects across the business.Enforce the strong security culture set forth by the CSO, ensuring uniformity across security leadership, business units and employees.Foster strong relationships with internal business units and excel in cybersecurity communication.Advise business units on enterprise-wide people, process and technology security recommendations.Maintain up-to-date knowledge related to security threats, vulnerabilities and mitigations set forth to reduce the attack surface; circulate this knowledge through the business units.Provide motivation to business units to adopt cybersecurity controls.Remove complexity and obstacles that hinder efficient security controls enterprise-wide.Build relationships with business units to deliver security-by-design controls incorporated into projects, architecture, infrastructure and applications.Stay abreast of new laws, regulations and standards, and assess their impact to the business.Verify security content training initiatives and internal/external communication are conducted regularly.Openly support the CSO, management team and executive leadership, even during tumultuous times.Perform other duties as assigned.Key SkillsStrong written and verbal communication skills across all levels of the organization.High level of integrity, trustworthiness and confidence, and able to represent the company and security leadership with the highest level of professionalism.Adept at understanding business focus and processes and ability to inject cybersecurity into the business through teamwork and influence.Strong project management, multitasking and organizational skills.Ability to work effectively with diverse teams and varying personalities and adapt management style to effectively reach mutually beneficial outcomes.Able to attain and preserve credibility with the team through sustained industry knowledge.Applicable knowledge of national and global cybersecurity policies, regulations and security frameworks.Demonstrated understanding and comprehension of a wide range of cybersecurity solutions.Experience Requirements Some experience of cybersecurity or information technology project management.Some experience of related security systems administration (preferable).Extensive experience of cybersecurity and/or information technology experience.Preferable, but not required: CISSP, CISM, CRISC, CISABachelor's degree in business administration, information assurance or related technical field.
#J-18808-Ljbffr
.webp "Apply4U | Sign Up")
.webp "Apply4U | Contact Us")
.webp "Apply4U | Sign up")
