Senior Manager, Business Information Security Officer
Hybrid · Malvern, Pennsylvania, United States
Job Summary
Senior Manager, Business Information Security Officer leads a team delivering security services, builds strategic relationships within business and security teams to meet initiatives, embeds security risk management into key processes, advises on risk posture and governance, communicates security metrics and executive reports to senior management, defines security goals and guardrails, recommends process and policy changes, and participates in special projects. The role requires extensive experience in security leadership, risk management, regulatory compliance, and governance, with strong collaboration across business partners and security programs.
Required Qualifications
- Eight+ years related work experience
- Three years in Security and Compliance required
- Undergraduate degree or equivalent combination of training and experience
- Graduate degree preferred
- Security Certifications: CISSP and/or CISM within one year
- Strategic Program Leadership experience in BISO or similar security initiative
- Deep understanding of risk management frameworks and regulatory requirements (SOX, HIPAA, GDPR)
- Familiarity with NIST CSF, ISO 27001, CIS Controls, SIEM, DLP, IAM
- Strong communication and ability to influence senior leadership
- Budget and cross-functional team management
Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.
Hiring someone like this?
Get your role in front of qualified candidates on Sorce.