Director, Security Consulting — Business Information Security Officer (BISO) Commercial IT

Director, Security Consulting — BISO for Commercial IT based in Gaithersburg, MD. Leads strategy, standards, and delivery of security consulting across a global portfolio; collaborates with product, platform, and business leaders to embed secure-by-design practices, drive risk-informed decisions, and improve control effectiveness. Responsibilities include executive engagement with VP/SVP-level stakeholders; defining security patterns, reference architectures, and governance integrations; leading major security assessments across transformations including AI/ML, M&A, cloud adoption, and regulated digital products; directing deep architecture reviews, threat modeling, and remediation prioritization; and shaping enterprise security standards, metrics, and dashboards. Requires a Bachelor’s degree in a related field and 12-15 years of information security experience, including 8+ years in senior security consulting or BISO leadership, with proven ability to influence executive audiences, implement control frameworks (NIST CSF, ISO 27001/27002, CIS Controls), and manage cross-functional teams in a global, matrixed organization.