Business Information Security Leader - Corporate Systems - Hybrid Bridgewater, NJ or Morrisville, NC

Syneos Health•Morrisville, NC

18h•Hybrid

About The Position

Syneos Health is a leading fully-integrated life sciences services organization built to accelerate customer success. We partner with innovators at every point across the drug development and commercialization continuum, helping them navigate complexity, anticipate change and accelerate progress. Every day we perform better because of how we work together, as one team, each the best at what we do. We bring together talented experts across a broad spectrum of business critical corporate functions. Every role plays an essential part in enabling our customers to achieve their goals. Our teams are agile, collaborative, and committed to delivering—for each other, for our customers, and ultimately for the people who rely on the services we support. Discover what your 25,000 future colleagues already know: Why Syneos Health We are passionate about developing our people, through career development and progression; supportive and engaged line management; technical and therapeutic area training; peer recognition and total rewards program. We are committed to building an inclusive culture – where you can authentically be yourself. Central to this is our purpose – Driven to Deliver – which captures the passion of our colleagues to show up each day and shape solutions that have the ability to dramatically impact someone’s life. We are continuously building the company we all want to work for and our customers want to work with. Why? Because we know that when we bring together smart colleagues from across the world, we can shape the future of healthcare, driving impact for customers and defining the pace of patient progress. The Business Information Security Leader (BISL) serves as the senior security executive embedded within an assigned business unit (Clinical, Commercial, or Corporate) accountable for information security across that sector. The BISL works across all departments and teams globally within its assigned business unit. This role has responsibility for strategic solution design aligned to company-wide objectives. The BISL is accountable for ensuring transparency of cyber risk posture, embedding security into business strategy and enabling secure product delivery. The BISL works as a security business partner to a business unit, leading the development and evolution of security strategy for the sector, and ensuring it is achieving shared business and security goals. The BISL operates as a trusted member of the business-aligned Syneos Technology Solutions (STS) leadership team while maintaining a strong functional alignment to the Chief Information Security Officer (CISO). The candidate must have a broad understanding of technologies and security strategies and effectively communicate to all levels within the organization. This role ensures that security is integrated across the full product lifecycle and that business decisions appropriately balance risk, regulatory requirements, and operational objectives. In addition to the job responsibilities below, this individual will need to understand and adapt to the ever-changing cybersecurity risk landscape to best advise on risk mitigation and avoidance strategies for their assigned business unit.

Requirements

Broad understanding of technologies and security strategies
Effectively communicate to all levels within the organization
Understand and adapt to the ever-changing cybersecurity risk landscape
Experience in strategic solution design aligned to company-wide objectives
Experience in ensuring transparency of cyber risk posture
Experience in embedding security into business strategy
Experience in enabling secure product delivery
Experience as a security business partner to a business unit
Experience leading the development and evolution of security strategy for a sector
Experience ensuring shared business and security goals are achieved
Experience operating as a trusted member of a business-aligned leadership team
Experience maintaining strong functional alignment to a CISO
Experience ensuring security is integrated across the full product lifecycle
Experience balancing risk, regulatory requirements, and operational objectives
Experience advising on risk mitigation and avoidance strategies
Experience partnering across all departments and teams globally within a business unit
Experience aligning security priorities with business strategy, digital roadmaps, and regulatory requirements
Experience embedding security-by-design principles into portfolio planning, demand intake and product development processes
Experience informing Information Security priorities with product team strategy & goals
Experience representing security requirements in portfolio governance forums
Experience providing senior level accountability for business unit security strategy
Experience ensuring consistent direction, prioritization, and alignment with company wide objectives
Experience maintaining strong partnership with the CISO
Experience maintaining visibility into the aggregated cyber risk posture of a business unit
Experience ensuring risk assessments are conducted for new and materially changed technologies
Experience serving as a security risk advisor to business-aligned leadership
Experience providing mitigation and remediation guidance
Experience tracking and highlighting risk treatment plans progress
Experience providing formal risk posture reporting to leadership
Experience escalating roadblocks inhibiting timely mitigation or closure of risks
Experience preventing unmanaged technology risk proliferation
Experience exercising senior decision authority for cybersecurity and technology risk matters within a Business Unit
Experience overseeing risk acceptance, escalation to enterprise forums, and long-term risk posture considerations
Experience participating in business demand and portfolio review processes
Experience ensuring projects receive appropriate security requirements and technical guidance
Experience driving early involvement of regulatory, privacy, and compliance subject matter experts
Experience monitoring and driving adherence to enterprise security standards and architectural patterns
Experience ensuring business unit adherence to security policies, standards, and regulatory requirements
Experience partnering with Compliance, Privacy, Legal and other Risk functions to address control gaps
Experience partnering with CISO subject matter experts to support security-related audits, regulatory inquiries, and remediation activities
Experience representing the business unit in enterprise security, risk, and compliance governance forums
Experience providing senior-level input on regulatory risk and remediation priorities
Experience supporting security investigations and post-incident reviews
Experience providing senior oversight and accountability for remediation outcomes and systemic improvements
Experience driving business engagement in continuity and disaster recovery planning
Experience ensuring lessons learned are incorporated into control improvements and architecture patterns
Experience promoting a culture of secure behavior and accountability
Experience cascading and tailoring security communications and awareness for maximum business unit impact
Experience translating complex security risks into business-relevant language
Experience providing periodic executive-ready reporting and risk insights
Experience influencing decision-making through data-driven risk transparency
Experience providing strategic leadership and direction across senior leaders, managers, and cross-functional stakeholders within the Business Unit

Nice To Haves

Experience in a highly competitive and ever-changing environment

Responsibilities

Serve as the senior security advisor to the assigned business-aligned STS leadership team.
Partner across all departments and teams globally within the assigned business unit.
Align security priorities with STS business strategy, digital roadmaps, and regulatory requirements.
Embed security-by-design principles into portfolio planning, demand intake and product development processes.
Inform Information Security priorities with STS product team strategy & goals.
Represent security requirements in portfolio governance forums.
Provide senior level accountability for the business unit security strategy, ensuring consistent direction, prioritization, and alignment with company wide objectives while maintaining strong partnership with the CISO.
Maintain visibility into the aggregated cyber risk posture of the assigned business unit.
Ensure risk assessments are conducted, partnering with the Risk Management function, for new and materially changed technologies.
Serve as a security risk advisor to business-aligned STS leadership, provide mitigation and remediation guidance, track and highlight risk treatment plans progress.
Provide formal risk posture reporting to STS leadership on a defined cadence.
Escalate roadblocks inhibiting timely mitigation or closure of risks.
Prevent unmanaged technology risk proliferation.
Exercise senior decision authority for cybersecurity and technology risk matters within the Business Unit, including oversight of risk acceptance, escalation to enterprise forums, and long-term risk posture considerations.
Participate in business demand and portfolio review processes to ensure early security engagement.
Ensure projects receive appropriate security requirements and technical guidance.
Drive early involvement of regulatory, privacy, and compliance subject matter experts.
Monitor and drive adherence to enterprise security standards and architectural patterns.
Deliver strategic solution design aligned to company-wide objectives.
Ensure business unit adherence to security policies, standards, and regulatory requirements (e.g., Privacy, SOX, GxP as applicable).
Partner with Compliance, Privacy, Legal and other Risk functions to address control gaps.
Partner with CISO subject matter experts to support security-related audits, regulatory inquiries, and remediation activities.
Represent the business unit in enterprise security, risk, and compliance governance forums, providing senior-level input on regulatory risk and remediation priorities.
Support security investigations and post-incident reviews , providing senior oversight and accountability for remediation outcomes and systemic improvements.
Drive business engagement in continuity and disaster recovery planning.
Ensure lessons learned are incorporated into control improvements and architecture patterns.
Promote a culture of secure behavior and accountability.
Cascade and tailor security communications and awareness for maximum business unit impact.
Translate complex security risks into business-relevant language.
Provide periodic executive-ready reporting and risk insights.
Influence decision-making through data-driven risk transparency.
Provide strategic leadership and direction across senior leaders, managers, and cross-functional stakeholders within the Business Unit, enabling consistent execution in a complex, matrixed environment.

Benefits

Company car or car allowance
Medical, Dental and Vision insurance
Company match 401k
Eligibility to participate in Employee Stock Purchase Plan
Eligibility to earn commissions/bonus based on company and individual performance
Flexible paid time off (PTO) and sick time

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume