Business Information Security Officer (BISO)
Hybrid · Windsor, England, United Kingdom
Job Summary
Lead information security strategy for the business unit, acting as the primary bridge between the business and the central information security function. Own information security risk management, ensure alignment with regulatory expectations and standards, embed security-by-design across initiatives, and provide clear reporting and security awareness leadership to senior stakeholders. Responsibilities include governance for cyber security, incident resilience, and driving continuous improvement while enabling informed risk decisions in a regulated enterprise environment.
Required Qualifications
- Extensive experience in cyber and information security leadership in complex, regulated enterprise environments
- Strong governance, risk management and compliance expertise with knowledge of ISO 27001, NIST, COBIT and GDPR
- Experience briefing CIOs and business leaders; translating technical risk into business insight
- Proven ability to lead security initiatives across risk management, incident response, assurance and security improvement programs
- Ability to embed security-by-design across technology initiatives and change programs
- Strong delivery mindset with capability to manage multiple complex initiatives simultaneously
- Experience with AI and emerging technologies in a security context, including enterprise AI co-pilots and knowledge assistants
Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.
Hiring someone like this?
Get your role in front of qualified candidates on Sorce.