Regional Business Information Security Officer (BISO)

About The Position

Requirements

• Proven, practical experience in information security or a closely related field, with leadership or people‑management responsibility.
• Strong knowledge of recognised security frameworks and standards (such as ISO 27001, NIST, OWASP, PCI and NIS2).
• Ability to explain complex security topics clearly and confidently to a wide range of audiences.
• Sound judgement and decision‑making skills, with a clear understanding of business‑relevant security risk.
• Strong stakeholder engagement and influencing skills, built on trust, collaboration and integrity.

Responsibilities

• Lead and manage Banner Information Security Officers across the region, providing clear direction and support.
• Act as the primary link between Information Security and Group Technology, balancing business priorities with effective risk management.
• Own and maintain the cyber risk register for Group Technology, supporting informed risk decisions and prioritisation.
• Embed “secure by design” principles across projects and solutions, identifying and tracking control weaknesses.
• Lead responses to security incidents and contribute as part of the Cyber Security Incident Response Team.
• Build strong relationships with stakeholders, acting as a trusted advisor and information security subject‑matter expert.
• Provide clear, timely reporting and assurance insights to senior leaders, supporting transparency and continuous improvement.

Benefits

• An inclusive environment where your potential is limited only by your imagination.
• We encourage new ideas, support experimentation, and strive to create a workplace where everyone can be their best self.
• We also offer a competitive benefits package and plenty of opportunities to stretch and grow your career.