CrawlJobs Logo
Brown & Brown UK Logo Brown & Brown UK · IT - Administration

Business Information Security Officer

United States, Daytona Beach Employment contract 180000.00 - 200000.00 USD / Year · Job Posted June 05, 2026
Apply Position
Job Link Share

Job Description

Brown & Brown is seeking a Business Information Security Officer (BISO) to join our growing team remotely in Georgia, Texas, Illinois, and DC! The Business Information Security Officer (BISO) serves as the primary liaison between the security function and divisional profit centers and corporate teams. Reporting directly to the Chief Security Officer (CSO), the BISO works closely with divisional IT leaders, and business executives to align business operations with both information and physical security strategies. The BISO also represents the Chief Information Security Officer (CISO) and the VP of Global Physical Security in local information security and physical security matters. Serving as the single conduit into the information security/physical security organization, this role ensures security is embedded in divisional culture, focuses on key risks, and provides guidance on security policies and controls.

Job Responsibility

  • Support the implementation, maintenance, and continuous improvement of information and physical security programs in alignment with corporate policies, standards, and frameworks
  • Contribute as a key member in shaping both the Brown & Brown security roadmap and divisional technology roadmap
  • Serve as a subject matter expert for information and physical security, supporting strategy development and execution
  • Provide guidance on prioritizing divisional investments that impact security
  • Allocate security resources (architecture, engineering, operations, risk management) to meet divisional needs
  • Support merger and acquisition activities, including pre-deal due diligence and post-deal 90-day security integration
  • Advise divisional leaders on security-related risk and assist in meeting broader risk management and compliance objectives
  • Monitor emerging security trends and assess potential impacts to divisions or profit centers
  • Ensure risk remediation processes are followed, issues are mitigated, and exceptions are tracked according to organizational standards
  • Manage IT certification and accreditation processes in collaboration with auditors and certification bodies
  • Oversee regulatory compliance for data privacy and protection across the division
  • Align divisional funding requirements with strategic security initiatives
  • Participate in relevant security and business councils or working groups
  • Educate stakeholders to strengthen awareness and security culture
  • Understand business objectives and translate risk discussions into business-focused terms
  • Drive security risk assessments across the division
  • Engage business partners constructively on security issues
  • Establish clear risk ownership and accountability
  • Ensure compliance with security policies, regulations, and tools
  • Perform other duties as assigned

Requirements

  • CISSP, CISM, or equivalent certifications (preferred)
  • BA/BS in business, security, or technology
  • 8–10+ years of experience in information security, cybersecurity, risk management, governance, physical security, or regulatory compliance, with a focus on business-aligned service delivery
  • Experience working with cross-functional teams
  • Working knowledge of ISO27001, NIST, Cyber Essentials and other security standards
  • Deep experience of security architecture and the tooling required to instantiate
  • Knowledge of Property & Casualty insurance is a plus
  • Experience running a SOC and working cyber incidents
  • Experience leading teams responsible for security across mid-to-large organizations (55+ people)
  • Strong understanding of organizational environments and their connection to external business drivers
  • Ability to understand business operations, evaluate risk in context, and connect business initiatives to value and risk

Nice to have

  • Knowledge of Property & Casualty insurance is a plus
  • CISSP, CISM, or equivalent certifications (preferred)

What we offer

  • Health Benefits: Medical/Rx, Dental, Vision, Life Insurance, Disability Insurance
  • Financial Benefits: ESPP
  • 401k
  • Student Loan Assistance
  • Tuition Reimbursement
  • Mental Health & Wellness: Free Mental Health & Enhanced Advocacy Services
  • Beyond Benefits: Paid Time Off, Holidays, Preferred Partner Discounts and more
Brown & Brown UK - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Business Information Security Officer

8 matching positions

Business Information Security Officer

The Information Security Officer (ISO) Sr. Analyst is an intermediate level posi...
Location
Location
Mexico , Ciudad De Mexico
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • +5 years of Information Security Risk Management or related business\technology experience
  • Proficient in interpreting and applying policies, standards and procedures
  • Consistently demonstrates clear and concise written and verbal communication
  • Proven influencing and relationship management skills
  • Proven analytical skills
  • Bachelor’s degree/University degree or equivalent experience
Job Responsibility
Job Responsibility
  • Address security issues identified in the various information security programs
  • Review and address issues identified within various Information Security (IS) programs and ensure all IS issues related to Internal Audit, and External Auditors are closed by their original target date
  • Improve the efficacy of governance processes by identifying risks, monitoring controls, and remediating issues
  • Establish cross-sector working relationships and complete weekly awareness discussions with local team to efficiently tackle security issues
  • Ensure risk exceptions are raised, registered and closed on a timely basis and communicate updates and changes to the global standards
  • Complete Risk Assessment process, including completing accurate inventory reporting, data classification, threat analysis, and action plans
  • Test and validate that the business complies with applicable IS requirements
  • develop and implement IS policies and procedures
  • Determine and validate appropriate level of controls are being implemented to safeguard sensitive data
  • Develop Corrective Action Plans for all Information Security-related gaps and approve all closures through reviewing evidence to ensure each closure meets Citi Requirements
  • Fulltime
Read More
Arrow Right

Business Information Security Officer

Join Barclays as a Business Information Security Officer, where you’ll support t...
Location
Location
United Kingdom , Knutsford
Salary
Salary:
Not provided
barclays.co.uk Logo
Barclays
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Ideally a financial services background with Significant experience in cyber information security, ideally with experience in the financial industry
  • Extensive experience in implementing cyber information security risk management processes and tools, as well as experience in understanding, mitigating or reducing risks, drawing on technical experience and risk assessments
  • Considerable critical thinking and analytical skills, with substantial demonstrable experience in the cyber information security field, including systems audit, internal controls, and/or security consulting
Job Responsibility
Job Responsibility
  • Collaboration with stakeholders to understand their security requirements in business processes and IT projects, to enhance overall risk management
  • Execution of risk assessments to identify and prioritise potential cybersecurity threats that could impact the banks operations and data and guide the implementation of mitigation strategies and communicate findings to relevant findings to relevant senior stakeholders
  • Collaboration with business units to develop and implement security policies and procedures for the banks operations aligned to the risk management framework
  • Management of the implementation, testing and monitoring of security controls across the banks IT systems to ensure the effectiveness of controls and mitigation of risk
  • Execution of training content and sessions to educate employees, enhance cybersecurity awareness and provide guidance on safe online practices
  • Management of complex cybersecurity incidents by collaborating with IT teams and response experts to effectively resolve cases through analysis, expertise support and project supervision
  • Identification of emerging cybersecurity trends, threats, and new technologies to address potential risks by advocating the adoption of new security solutions
What we offer
What we offer
  • Competitive holiday allowance
  • Life assurance
  • Private medical care
  • Pension contribution
  • Fulltime
Read More
Arrow Right

Business Information Security Officer

Ready to help shape how our business stays secure while supporting teams to work...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
edfenergy.com Logo
EDF UK
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Extensive cyber security management experience, underpinned by deep expertise across core security disciplines
  • Strong capability in identifying, assessing and clearly communicating cyber risks to technical and non-technical stakeholders
  • Solid understanding of information and cyber security principles combined with commercial and business acumen
  • Pragmatic and solutions focused, with the resilience to drive outcomes in complex environments
  • Credible leadership skills supported by excellent communication skills, both written and verbal
  • Great interpersonal skills with the ability to influence, empower and engage stakeholders at all levels, including senior executives and technical experts
  • Experience delivering security projects within technically complex and highly regulated environments
  • Meet the criteria for Security Clearance (SC), which will ordinarily require you to have British residency for the last five years
Job Responsibility
Job Responsibility
  • Act as the strategic cyber security lead for your business unit, aligning security priorities to business strategy whilst operationalising the enterprise-wide security strategy
  • Own the cyber risk posture, ensuring risks are clearly understood, prioritised and aligned to the agreed risk appetite
  • Drive delivery of security initiatives and roadmap commitments across major programmes and business change
  • Provide clear, structured reporting on cyber risk, compliance, control maturity, and delivery progress to business leadership forums, influencing senior stakeholders and promoting a strong security culture
  • Partner with security and technology teams across the UK to ensure consistent and effective implementation of policies and standards
What we offer
What we offer
  • Competitive salary
  • Potential for an annual bonus
  • Market‑leading pension scheme
  • Customisable benefits such as electric vehicle leasing, discounted gym membership, life assurance, tech vouchers, experience days and more
Read More
Arrow Right

Business Information Security Officer

A senior individual contributor role serving as the cybersecurity liaison for HP...
Location
Location
Ireland , Leixlip
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 12+ years of experience in cybersecurity, risk management, or related fields, with significant exposure to financial services regulatory environments
  • proven ability to partner with business executives and influence decision-making through clear articulation of cyber risk in business and regulatory terms
  • deep knowledge of cybersecurity frameworks and controls relevant to financial institutions (NIST, ISO 27001, DORA, SOX, GDPR, etc.)
  • experience engaging with financial regulators, auditors, and external examiners on cybersecurity compliance
  • strong understanding of incident response processes, with the ability to coordinate remediation and communication at the business unit level
  • exceptional communication, stakeholder management, and executive presence
  • bachelor’s degree required
  • advanced degree and/or certifications (e.g., CISM, CISSP, CRISC) preferred.
Job Responsibility
Job Responsibility
  • act as the primary cybersecurity liaison for HPEFS, partnering with executives to translate cyber risk into business and regulatory impact and enable informed leadership decisions
  • inform the HPEFS leadership about emerging cyber threat landscape to be proactive in protecting the business
  • drive cybersecurity strategies tailored to the regulatory environment for financial services, including but not limited to Central Bank of Ireland requirements, Digital Operational Resilience Act (DORA), SOX, GDPR (cyber-related obligations)
  • lead cyber risk assessments for products, services, and bank operations, ensuring controls meet both enterprise and banking regulatory expectations
  • serve as the on-point liaison during security incidents impacting HPEFS, coordinating with CDRM’s centralized incident response team and driving business-side remediation and communication
  • oversee vulnerability management for HPEFS assets, ensuring issues are tracked, prioritized, and remediated in alignment with regulatory timelines and enterprise standards
  • partner with the HPEFS IT leader to align on security priorities, infrastructure controls, and technology programs impacting financial services operations
  • support closure of audit, regulatory, and compliance findings through coordination of corrective action plans and, where appropriate, risk acceptance processes
  • monitor evolving regulatory requirements and industry trends, advising leadership on compliance gaps, risk exposure, and readiness for regulatory examinations
  • influence enterprise cybersecurity priorities by advocating for HPEFS needs within the broader CDRM strategy
What we offer
What we offer
  • health and wellbeing benefits
  • personal and professional development programs
  • unconditional inclusion in the workplace.
  • Fulltime
Read More
Arrow Right

Business Information Security Officer

The BISO is a dedicated security professional that is able to balance risk manag...
Location
Location
United States , Houston
Salary
Salary:
Not provided
sysco.com Logo
Sysco
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Education (Bachelor’s Degree or above) related to Computer Science, Cybersecurity, Information Technology, or related fields
  • 10+ years experience of Cybersecurity and or information risk management
  • Knowledge and understanding of the design of the operational systems and operations environments
  • knowledge of application and product system development lifecycle and tools and appsec protocols
  • Understand applications running in the operations environment and the resulting network traffic
  • In-depth understanding of cybersecurity solutions and requirements within the food and service industry
  • Excellent communication skills, with an ability to tailor and engage communication across all levels of the organization
  • Fluency in written and spoken English
Job Responsibility
Job Responsibility
  • Provide independent and objective oversight and monitoring for the implementation of Cybersecurity across Sysco’s operating companies
  • Direct and manage Security Leads across regions
  • Translate Policy(s) and Standards set forth by the Cybersecurity Risk and Compliance Management Team into the environment
  • Increase awareness and foster accountability for security across the enterprise
  • Facilitate bidirectional communication between operations teams globally and enterprise security while advocating for both in a balanced manner
  • Escalate risks and exceptions to Cybersecurity Risk and Compliance Management Team and Change Management
  • Participate in and assist with security incident readiness and response training & awareness including supporting cybersecurity incident response activities
  • Oversee responsibilities for both security and business continuity (governance, reporting, compliance, risk assessments, etc.)
  • Fulltime
Read More
Arrow Right

Business Information Security Officer

Join Barclays as a Business Information Security Officer. We currently have two ...
Location
Location
United Kingdom , Knutsford
Salary
Salary:
Not provided
barclays.co.uk Logo
Barclays
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Understanding of Security & Control Frameworks & Methodologies
  • Knowledge of Security Tooling and industry standards, including NIST frameworks
  • Excellent communication skills, with the ability to engage effectively with stakeholders at all levels of the organisation, up to and including Senior Executives
Job Responsibility
Job Responsibility
  • Collaboration with stakeholders to understand their security requirements in business processes and IT projects, to enhance overall risk management
  • Execution of risk assessments to identify and prioritise potential cybersecurity threats that could impact the banks operations and data and guide the implementation of mitigation strategies and communicate findings to relevant findings to relevant senior stakeholders
  • Collaboration with business units to develop and implement security policies and procedures for the banks operations aligned to the risk management framework
  • Management of the implementation, testing and monitoring of security controls across the banks IT systems to ensure the effectiveness of controls and mitigation of risk
  • Execution of training content and sessions to educate employees, enhance cybersecurity awareness and provide guidance on safe online practices
  • Management of complex cybersecurity incidents by collaborating with IT teams and response experts to effectively resolve cases through analysis, expertise support and project supervision
  • Identification of emerging cybersecurity trends, threats, and new technologies to address potential risks by advocating the adoption of new security solutions
What we offer
What we offer
  • Competitive holiday allowance
  • Life assurance
  • Private medical care
  • Pension contribution
  • Fulltime
Read More
Arrow Right

Business Information Security Officer MEI (BISO)

In support of Fugro's digitalization journey and nature of its business, as a Ge...
Location
Location
India , Navi Mumbai
Salary
Salary:
Not provided
fugro.com Logo
Fugro
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor or Masters Information Security, Information Technology or relevant professional experience
  • 3-8 years of experience. Ideal candidates would have work experience in both Security Operations and Governance, Risk and Compliance
  • Relevant Information Security certifications are seen as a plus, but not required
Job Responsibility
Job Responsibility
  • Collaborates with stakeholders to address and identify high-risk areas and support business-critical projects and key initiatives
  • Works with Project Managers, Business Analysts, architecture, compliance, and support team to ensure Fugro Information Security standards are being followed
  • Responsible for information security posture and assurance for MEI, and where applicable Global
  • Influences to achieve positive change to the Information Security posture through regular engagement and collaboration
  • Actively shares knowledge and insights to increase Information Security awareness throughout the region
  • Collaborates with the Security Operations Center and to respond to and manage priority incidents
  • Actively works with the Security Operating Center to remediate regional vulnerabilities and develop possible use cases
  • Fulltime
Read More
Arrow Right

Business Information Security Officer - GSC - US

The BISO is a dedicated security professional that is able to balance risk manag...
Location
Location
United States , Houston
Salary
Salary:
Not provided
sysco.com Logo
Sysco
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years experience of Cybersecurity and or information risk management
  • Knowledge and understanding of the design of the operational systems and operations environments
  • knowledge of application and product system development lifecycle and tools and appsec protocols
  • Understand applications running in the operations environment and the resulting network traffic
  • In-depth understanding of cybersecurity solutions and requirements within the food and service industry
  • Excellent communication skills, with an ability to tailor and engage communication across all levels of the organization
  • Education (Bachelor’s Degree or above) related to Computer Science, Cybersecurity, Information Technology, or related fields (Preferred)
  • Certified Information on Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Information Systems Security Architecture Professional (ISSAP), Information Systems Security Engineering Professional (ISSEP), GIAC Response and Industrial Defense (GRID) (Preferred)
  • Fluency in written and spoken English.
Job Responsibility
Job Responsibility
  • Provide independent and objective oversight and monitoring for the implementation of Cybersecurity across Sysco’s operating companies
  • Direct and manage Security Leads across regions
  • Translate Policy(s) and Standards set forth by the Cybersecurity Risk and Compliance Management Team into the environment
  • Increase awareness and foster accountability for security across the enterprise
  • Facilitate bidirectional communication between operations teams globally and enterprise security while advocating for both in a balanced manner
  • Escalate risks and exceptions to Cybersecurity Risk and Compliance Management Team and Change Management
  • Participate in and assist with security incident readiness and response training & awareness including supporting cybersecurity incident response activities
  • Oversee responsibilities for both security and business continuity (governance, reporting, compliance, risk assessments, etc.)
  • Fulltime
Read More
Arrow Right