Principal Business Information Security Officer (BISO)
LPL Financial•Charlotte, NC
About The Position
As a Principal Business Information Security Officer (BISO), you will join a growing organization responsible for securing LPL's advisors and their clients, enabling the business to innovate while balancing the need to reduce risk. You will partner with business and relevant stakeholders to securely help them meet their goals and objectives, provide information security and risk management consultation on initiatives, programs and projects, and collaborate and innovate with other security groups within LPL. You will focus on securing LPL’s key products and business growth strategies.
Requirements
- Bachelor's degree
- 10+ years in Cyber Security, Technology Risk Management, Cyber-security Program Management or a related field
- 3+ years guiding all aspects of cyber-security risk including - identification, synthesis, quantification, and remediation strategies.
- Experience working in Agile or Waterfall methodology and a deep understanding of phased approaches to the Software Development Life Cycle
- Working knowledge of: Cloud computing architectures and the associated security designs and challenges
- Common DevSecOps processes and technologies and how to effectively harden them
- Common web application development technologies along with tools and processes to enable teams to develop safely
- Data management and security principles applicable to financial services and modern architectures.
- API security
- Strong executive presence and ability to engage with customers regarding security (e.g. Executive Briefings and incident communications).
- Ability to communicate clearly and effectively with both technology/development and business partners
- Strong relationship, team building and facilitation skills
- Ability to translate technical/security issues to business users
- Proven ability to articulate the why and to enable fact-based decision making.
- Ability to independently influence others to achieve objectives
- Ability to deal with the ambiguity associated with working in a fast paced and changing environment
- Experience working in a matrix model, as the BISO supports operational and transformational efforts for a given region or organizational function
Nice To Haves
- Bachelor's degree in computer science or information systems
- Certified Information System Security Professional (CISSP) or Certified in Risk and Information Systems Control (CRISC) certifications preferred
Responsibilities
- Develop and maintain in depth understanding of business unit processes, systems, technologies, data, customers, consumers, partners
- Become an expert in assigned products including the design, security profile and risks
- Partner with Compliance, Legal, and Technology resources to achieve effective working relationships that can further the effectiveness of the Information Security program
- Interpret and implement information security policies and standards specific to the business unit you support.
- Participate and influence Cloud and Native Architecture principles, APIs, as well as appropriate enterprise Data handling practices.
- Communicate and oversee security solutions required to meet business objectives
- Proactively identify noncompliance and areas of potential improvement, and facilitate development and deployment of standard solutions
- Provide regular and timely reporting on the status of cyber security across the business unit
- Provide escalation path for security issues, incidents and inquiries
- Provide Cyber Security Guidance across functions.
- Drive remediation activities across the business unit.
Benefits
- 401K matching
- health benefits
- employee stock options
- paid time off
- volunteer time off
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
Upload and Match Resume
What This Job Offers
Job Type
Full-time
Career Level
Principal
