Business Information Security Officer

Social network you want to login/join with:

col-narrow-left

InterQuest Group

slough, United Kingdom

Other

-

Yes

col-narrow-right

3

31.05.2025

15.07.2025

col-wide

Business Information Security Officer (BISO)

Contract Type: 3-Month Contract

Overview:

A leading organisation in the Retail/FMCG sector is seeking a skilled and motivated Business Information Security Officer (BISO) to support ongoing transformation efforts. This is an excellent opportunity for a professional with strong expertise in Technology, Risk, and Security to play a pivotal role in bridging the gap between business functions and cybersecurity.

As the BISO, you’ll ensure that security policies, training, and awareness initiatives are embedded across the organisation. You’ll work closely with stakeholders across Data, Information Security, IT Operations, and Portfolio teams, driving improvements to control frameworks and risk postures. The role requires strong influence and communication skills, particularly with IT leadership and executive teams, to secure necessary funding and support for mitigating control gaps and managing risk priorities effectively.

Key Responsibilities:

• Act as the primary liaison between business units and the cybersecurity function
• Drive alignment between business strategies and cybersecurity priorities
• Lead the implementation of information security policies, training, and awareness programmes
• Coordinate control improvements across various technical and operational domains
• Identify, assess, and escalate risk and control issues
• Influence senior stakeholders and secure buy-in at the executive level

Key Skills & Experience:

• Proven experience in Information Security and IT Risk Management
• In-depth knowledge of information security principles and frameworks
• Strong background in Governance, Risk, and Compliance (GRC)
• Internal audit evaluation and risk-based assurance planning skills
• Strategic thinker with strong technical insight
• Experienced in stakeholder management up to board level
• Exceptional communication and influencing skills
• Demonstrated ability to develop and implement strategic security plans
• Competent in assessing business processes and IT technologies for risk exposure
• Familiarity with security controls assessment tools and methodologies

Tools & Technologies:

• Experience with Data Loss Prevention (DLP) solutions

Certifications (Desirable):

• CISA
• CISSP
• Familiarity with ISO standards, especially ISO 27001