Pearson Education - Durham, NC

posted about 1 month ago

Full-time - Mid Level
Hybrid - Durham, NC
Publishing Industries

About the position

The Business Information Security Officer (BISO) is a leadership role at Pearson responsible for aligning the cybersecurity strategy with business objectives. This position serves as the primary liaison between business units and the cybersecurity organization, facilitating communication, risk management, and the integration of security into business processes and technology solutions. The ideal candidate will possess a blend of technical expertise, business acumen, and strong communication skills.

Responsibilities

  • Act as the primary point of contact between the business unit(s) and the cybersecurity organization, ensuring alignment of security initiatives with business goals.
  • Identify, assess, and communicate cybersecurity risks to business leaders, providing strategic advice on mitigating risks and ensuring compliance with cybersecurity policies and standards.
  • Provide expert guidance on cybersecurity and compliance matters to business leaders and teams, including advising on security controls, regulatory compliance, and incident response.
  • Work closely with business leaders to integrate cybersecurity into business processes, technology roadmaps, and projects from inception to completion.
  • Support the organization's incident response efforts by coordinating with business units to ensure timely and effective response to security incidents.
  • Promote and enhance a strong security culture within the business unit(s) by leading security awareness programs and training initiatives.
  • Collaborate with procurement and vendor management teams to assess and manage cybersecurity risks associated with third-party vendors.
  • Develop and present cybersecurity metrics and reports to business leaders, ensuring they have the necessary information to make informed decisions.
  • Stay abreast of the latest cybersecurity trends, threats, and technologies, and continuously seek opportunities to enhance the organization's security posture.

Requirements

  • Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field; Master's degree or MBA is a plus.
  • 7+ years of experience in cybersecurity, IT risk management or related fields.
  • 5+ years of leadership experience within a business-focused security role.
  • Proven track record of aligning security strategies with business objectives.
  • Strong understanding of cybersecurity frameworks, technologies, and best practices.
  • Experience with Cisco infrastructure and security capabilities, Azure, Office 365, and supporting Microsoft technologies.

Nice-to-haves

  • Experience in the education industry is highly desirable.
  • Cloud and data quality experience.
  • Knowledge of regulatory requirements relevant to the industry, such as GDPR, HIPAA, PCI-DSS, etc.
  • Familiar with various NIST frameworks including NIST, NIST 800-30 and NIST RMF.
  • Experience working in a matrixed organization with multiple lines of business.

Benefits

  • Flexible work environment with hybrid options.
  • Opportunities for professional development and growth.
  • Inclusive culture that values diversity and belonging.
Job Description Matching

Match and compare your resume to any job description

Start Matching
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service