Business Information Security Officer (BISO)

col-narrow-left
Job ID:
2504930
Location:
San Francisco, CA
Category:
Information Technology, Telecommunications, Array
Salary:
$160,000.00 per year
Employment Type:
Full time
Posted:
09.12.2018
col-narrow-right
col-wide

Job Description:

Business Information Security Officer (BISO)

Looking for a candidate with 10 plus years large enterprise company experience, Risk audit operational data DLP investigation. Critical cost optimization driving reduction, operating cost optimization, driving reduction operating costs managing security controls. You will work with internal business on corporate risks.

Job Description

The Business Information Security Officer (BISO) functions as the security leader with their area of responsibility. This role will have dual reporting structure, one reporting to the AoR and one into the Information Security Program Office and is responsible for establishing and driving a business specific Information Security program aligned with the business area risks and the Company Corporation Information Security Program. The BISO serves as the trusted advisor, both to the business and to the CISO. This role will liaise between the business and Company Information Security (AIS), keeping clear lines of communication including but not limited to; transparency to the business on upcoming security initiatives, reporting of security risks to the CISO and appropriate committees, as well as a key player in the information security incident response process, from identifying impact to the business and to consumers, to helping shape remediation, and developing external and internal message points. In addition, this role will ensure business compliance with the Information Security Policy and Standards while continuously monitoring and reporting on risks and documented exceptions.

Qualifications

  • Bachelor's Degree or equivalent experience
  • 8+ years or more year of experience in audit or information security related role.
  • Strong understanding of audit/risk management methodologies and regulatory requirements pertaining to information security, privacy and/or data security
  • Project management experience highly desired
  • Ability to manage multiple complex priorities and competing agendas without express authority over delivery teams
  • Ability to interpret and apply policies and regulations across a large, complex business
  • Analytical aptitude with an emphasis on investigative, methodical critical questioning and logical thinking; a data-driven decision maker
  • High level of interpersonal skills to interact with leaders at multiple levels and facilitate team interactions
  • Advanced skills with MS-Windows and other related PC applications
Company Info
Request Technology - Robyn Honquest