Business Information Security Officer

Business Information Security Officer (BISO)

Retail / FMCG

3-Month Contract

A leading organisation in the Retail/FMCG sector is seeking a skilled and motivated Business Information Security Officer (BISO) to support ongoing transformation efforts. This is an excellent opportunity for a professional with strong expertise in Technology, Risk, and Security to play a pivotal role in bridging the gap between business functions and cybersecurity.

As the BISO, you’ll ensure that security policies, training, and awareness initiatives are embedded across the organisation. You’ll work closely with stakeholders across Data, Information Security, IT Operations, and Portfolio teams, driving improvements to control frameworks and risk postures. The role requires strong influence and communication skills, particularly with IT leadership and executive teams, to secure necessary funding and support for mitigating control gaps and managing risk priorities effectively.

1. Act as the primary liaison between business units and the cybersecurity function
2. Drive alignment between business strategies and cybersecurity priorities
3. Lead the implementation of information security policies, training, and awareness programmes
4. Coordinate control improvements across various technical and operational domains
5. Identify, assess, and escalate risk and control issues
6. Influence senior stakeholders and secure buy-in at the executive level

1. Proven experience in Information Security and IT Risk Management
2. In-depth knowledge of information security principles and frameworks
3. Strong background in Governance, Risk, and Compliance (GRC)
4. Internal audit evaluation and risk-based assurance planning skills
5. Strategic thinker with strong technical insight
6. Experienced in stakeholder management up to board level
7. Exceptional communication and influencing skills
8. Demonstrated ability to develop and implement strategic security plans
9. Competent in assessing business processes and IT technologies for risk exposure
10. Familiarity with security controls assessment tools and methodologies

• Experience with Data Loss Prevention (DLP) solutions

• CISA
• CISSP
• Familiarity with ISO standards, especially ISO 27001

InterQuest Group is acting as an employment agency for this vacancy. InterQuest Group is an equal opportunities employer and we welcome applications from all suitably qualified persons regardless of age, disability, gender, religion/belief, race, marriage, civil partnership, pregnancy, maternity, sex, or sexual orientation. Please inform us if you require any reasonable adjustments during the recruitment process.