CrawlJobs Logo

Information Security Risk Officer

Australia, Sydney · Job Posted May 27, 2026
Apply Position
Job Link Share

Job Description

Harrington Starr are seeking a BISO\ Business Information Security Officer for a global trading organisation based in Sydney. This role will involve evangelising all elements of business information security encompassing user awareness, data analysis/ production of dashboards, third party supplier management, liaison with technical cyber teams and the wider technology function, and stakeholder management up to C level. This role will also play a key role in defining the cyber security strategy of the organisation.

Job Responsibility

  • Help establish security policies, procedures, and guidelines on a variety of information security controls
  • Analyze source system data, existing data models, and profiling data to uncover additional security insights not inherently visible
  • Assess surface security risks and propose ideas, and recommendations to mitigate threats
  • Prepare dashboards and technical reports by collecting, analyzing and summarizing information and trends
  • Provide support to the Global SecOps function in the planning, deployment, and execution of the security business plan
  • Act as a liaison to the business and IT groups and assist them in the implementation of data security, compliance requirements, and information security technologies
  • Partner with the enterprise architecture team to create, publish, and continuously improve the information security architecture for the enterprise
  • Identify regional information security issues and gaps with the enterprise information security policies, standards, and procedures among employees, contractors, alliances, and other third parties
  • Map regional legal and regulatory requirements and developments onto global policies/procedures and make suggestions where needed
  • Coordinate the execution of security governance and assessment control initiatives and Cybersecurity Awareness Programs, and assist with implementation where needed

Requirements

  • proven track record in a similar BISO role with good broad knowledge across both security risk and compliance and the ability to liaise with technical teams
  • demonstrable knowledge of working with C level stakeholders ideally in a global environment

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Information Security Risk Officer

8 matching positions

Alternate Facility Security Officer (AFSO)/ Information Systems Security Officer (ISSO)

Position Summary: We are seeking for a detail-oriented and reliable Alternate Se...
Location
Location
United States , Huntsville
Salary
Salary:
Not provided
xbowsystems.com Logo
X-Bow Systems
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • U.S. citizenship and active security clearance (SECRET or higher preferred)
  • 3+ years of experience in industrial security or related field and experience in information systems security or cybersecurity
  • Knowledge of NISPOM (32 CFR Part 117), RMF, NIST SP 800-53, and related standards
  • Experience with system accreditation, auditing, and incident response
  • Strong analytical, problem-solving, and communication skills
  • Relevant certifications (e.g., CISSP, Security+, CISM) preferred
  • Strong organizational, communication, and interpersonal skills
  • Proficiency with security management software and Microsoft Office Suite.
Job Responsibility
Job Responsibility
  • Assist the FSO in implementing and maintaining the facility's security program in accordance with NISPOM and company policies
  • Support personnel security clearance processing, tracking, and recordkeeping
  • Conduct security briefings and debriefings
  • Assist with self-inspections, audits, and preparation for DCSA assessments
  • Maintain classified document control and accountability
  • Respond to and report security incidents or violations
  • Support the development and enforcement of security policies and procedures
  • Serve as the point of contact for security-related matters in the FSO's absence
  • Implement and maintain security controls for information systems in accordance with NISPOM, RMF, and company policies
  • Develop, document, and update System Security Plans (SSPs) and related documentation
  • Fulltime
Read More
Arrow Right

Cyber Security, Information Systems Security Officer

Jumpstart your career as a Cybersecurity professional with BAE Systems, supporti...
Location
Location
United States , Nashua
Salary
Salary:
77809.00 - 132275.00 USD / Year
baesystems.com Logo
Baesystems
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • SECRET Clearance is required for this position
  • Minimum of High School Diploma with 3 or more years of experience or Degree and 2 years of experience required
  • IAM Level I certification commensurate with DoD 8570.1M requirements (or ability to obtain certification within 6 months)
  • High level of personal motivation and initiative to learn and acquire new skills, and adapt seamlessly to an ever-changing security environment
  • Customer focused, excellent communicator and ability to work with limited supervision.
  • Strong organizational skills
  • Able to interface with other IA team members, other security disciplines (industrial security, physical security, special programs security, etc.), and program personnel
  • Basic understanding of simple networks, operations systems and computer functions.
  • Coursework in a technical discipline (i.e. programming/scripting, systems administration, cybersecurity/information assurance, etc.)
Job Responsibility
Job Responsibility
  • Responsible for supporting adherence to all aspects of a rigorous Risk Management Framework (RMF) compliance program as stipulated by NISPOM/DAAPM, JSIG, ICD 503, STIGs and associated NIST publications.
  • Partner with the Information System Security Manager (ISSM) to maintain Authority to Operate (ATO) approvals for various systems by adhering to the Risk Management Framework (RMF).
  • Support cybersecurity efforts throughout the RMF process for one or more assigned programs(s) to include the enforcement of System Security Plans, Plans of Action and Milestones (POA&Ms), assessing and auditing systems security controls.
What we offer
What we offer
  • health, dental, and vision insurance
  • health savings accounts
  • a 401(k) savings plan
  • disability coverage
  • life and accident insurance
  • employee assistance program
  • legal plan
  • discounts on things like home, auto, and pet insurance
  • paid time off
  • paid holidays
  • Fulltime
Read More
Arrow Right

Information Security Officer

It is a role with accountability for Cybersecurity function, executive-level pri...
Location
Location
Egypt , Cairo
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10 years of relevant experience
  • Proficient in interpreting and applying policies, standards and procedures
  • Consistently demonstrates clear and concise written and verbal communication
  • Proven influencing and relationship management skills
  • Proven analytical skills
  • Fluency in English is a must
  • Arabic Language is a plus
  • Maintaining at least one active certificate of the Information Security Management international certificates such as CISSP, CISM, CRISC, C-CISO or ISO 27001 Lead implementer
  • Bachelor’s degree/University degree or equivalent experience as a minimum
Job Responsibility
Job Responsibility
  • Acts as Information Security Subject Matter Expert to senior stakeholders and /or other team members
  • Cyber Issue Management, Monitoring & Regulatory engagement
  • Establish working relationships cross-sector and internally with First, Second, and Third Line of Defense
  • Coordinate with First line partners the collection, entry, and maintenance of deliverables to Internal and External Questions/Exams
  • Facilitate the Responses by Key Stakeholders to Internal and External Reviewers for requested meetings and potential concerns raised with a risk focus
  • Communicate to Senior Management on issues identified during Internal and External reviews including missed deadlines, risk impact, and improper design/execution of controls
  • Identify areas of opportunities for process improvements or potential control breaks in the organizations Cybersecurity standards, procedures, and/or controls
  • Execute the Issue Management process, for Issues identified within various Information Security (IS) programs
  • Assist process and control owners in evaluating control deficiencies holistically, including identification of root causes and required corrective action plans
  • Oversee and ensure timely and complete issue remediation within businesses and functions and escalate any delays and / or challenges, as needed
  • Fulltime
Read More
Arrow Right

Chief Information Security Officer

At Boeing, we innovate and collaborate to make the world a better place. We're c...
Location
Location
Australia , Brisbane
Salary
Salary:
Not provided
boeing.com Logo
Boeing
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Senior leadership experience in cyber and information security assurance ideally within Defence, national security, or critical infrastructure
  • Proven track record of building and leading successful teams
  • Deep knowledge of ISM, DSPF, DISP, and Defence accreditation processes, as well as familiarity with ISO 27001, NIST CSF, and NIST SP 800-171 frameworks
  • Demonstrated experience securing both IT and OT environments
  • Demonstrated experience leading regulatory compliance assessments/efforts pertaining to the ASD ISM and Essential Eight cybersecurity frameworks
  • Experience presenting complex security risks, strategies, and concepts in business terms to executive leadership and Board of Directors
Job Responsibility
Job Responsibility
  • Develop and implement a comprehensive information security and cyber defence strategy across Boeing Defence Australia and other regional subsidiaries, that integrates closely with the other non-cyber security domains
  • Advise the BDA CSO, executive leadership, and program directors on cyber risk management, threats, mitigation strategies and security investment
  • In close collaboration with Enterprise cybersecurity teams, ensure alignment between Australian requirements and Boeing global security standards
  • Ensure compliance with the ISM, DSPF, DISP, ASDEFCON security clauses, and Defence accreditation processes
  • Oversee IRAP assessments, system security plans, risk assessments, and continuous monitoring programs ensuring consistent implementation of ASD Essential Eight maturity targets
  • Lead cybersecurity for all IT and OT environments across Boeing Australia, including manufacturing systems, mission systems labs, sustainment facilities, and unmanned systems operations
  • Drive secure-by-design engineering for ICT, OT, cloud, and cross-domain solutions
  • Develop and oversee the Australian cyber defence capability, including SOC operations, threat intelligence, and incident response
  • Coordinate cyber incident management across BDA and other supported subsidiaries, in conjunction with local Boeing global IT and cyber teams, ensuring timely regulatory reporting is undertaken
  • Provide cybersecurity assurance for bids, platform upgrades, and sovereign capability programs
What we offer
What we offer
  • Competitive base pay and incentive programs
  • Industry-leading tuition assistance program pays your institution directly
  • Resources and opportunities to grow your career
  • Up to $10,000 match when you support your favorite nonprofit organizations
  • Fulltime
Read More
Arrow Right

Business Information Security Officer

Brown & Brown is seeking a Business Information Security Officer (BISO) to join ...
Location
Location
United States , Daytona Beach
Salary
Salary:
180000.00 - 200000.00 USD / Year
bbrown.com Logo
Brown & Brown UK
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • CISSP, CISM, or equivalent certifications (preferred)
  • BA/BS in business, security, or technology
  • 8–10+ years of experience in information security, cybersecurity, risk management, governance, physical security, or regulatory compliance, with a focus on business-aligned service delivery
  • Experience working with cross-functional teams
  • Working knowledge of ISO27001, NIST, Cyber Essentials and other security standards
  • Deep experience of security architecture and the tooling required to instantiate
  • Knowledge of Property & Casualty insurance is a plus
  • Experience running a SOC and working cyber incidents
  • Experience leading teams responsible for security across mid-to-large organizations (55+ people)
  • Strong understanding of organizational environments and their connection to external business drivers
Job Responsibility
Job Responsibility
  • Support the implementation, maintenance, and continuous improvement of information and physical security programs in alignment with corporate policies, standards, and frameworks
  • Contribute as a key member in shaping both the Brown & Brown security roadmap and divisional technology roadmap
  • Serve as a subject matter expert for information and physical security, supporting strategy development and execution
  • Provide guidance on prioritizing divisional investments that impact security
  • Allocate security resources (architecture, engineering, operations, risk management) to meet divisional needs
  • Support merger and acquisition activities, including pre-deal due diligence and post-deal 90-day security integration
  • Advise divisional leaders on security-related risk and assist in meeting broader risk management and compliance objectives
  • Monitor emerging security trends and assess potential impacts to divisions or profit centers
  • Ensure risk remediation processes are followed, issues are mitigated, and exceptions are tracked according to organizational standards
  • Manage IT certification and accreditation processes in collaboration with auditors and certification bodies
What we offer
What we offer
  • Health Benefits: Medical/Rx, Dental, Vision, Life Insurance, Disability Insurance
  • Financial Benefits: ESPP
  • 401k
  • Student Loan Assistance
  • Tuition Reimbursement
  • Mental Health & Wellness: Free Mental Health & Enhanced Advocacy Services
  • Beyond Benefits: Paid Time Off, Holidays, Preferred Partner Discounts and more
  • Fulltime
Read More
Arrow Right

Chief Information Security Officer

Location
Location
France , Paris
Salary
Salary:
Not provided
mirakl.com Logo
Mirakl
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of proven experience in information systems security
  • Significant experience in a software publisher, ideally SaaS, or at a large-scale digital platform organization
  • Demonstrated success implementing security standards such as ISO 27001, SOC 2, or PCI-DSS
  • Experience building and operating a SOC, conducting penetration tests, and managing external security vendors across multiple domains
  • Deep command of information security concepts and risk management, particularly in Cloud environments
  • Proficiency in penetration testing methodologies and attack technique analysis
  • Strong cross-functional leadership and executive-level communication skills
  • Ability to work autonomously, drive initiatives, and translate complex security topics into clear, actionable guidance
  • Rigor and thoroughness in policy writing, audit preparation, and stakeholder engagement
  • Professional proficiency in French & English
Job Responsibility
Job Responsibility
  • Define and deploy Mirakl's global security strategy, put in place the organizational structures to ensure its execution, and demonstrate its effectiveness through factual security dashboards
  • Identify, assess, and map risks and threats
  • translate findings into actionable plans including business continuity, monitoring processes, and crisis management protocols
  • Own the Information Security Policy (ISSP) — draft, update, and enforce it — while maintaining ISO 27001 certification and SOC II Type 2 report, and evaluating opportunities to expand our certification portfolio
  • Build and operate a robust incident response capability
  • continuously assess organizational resilience through penetration tests and multi-vector compromise simulations
  • Foster a security culture across Mirakl through awareness programs and best practices, and partner with Labs teams on DevSecOps and Secure Coding approaches
  • Fulltime
Read More
Arrow Right

Business Information Security Officer MEI (BISO)

In support of Fugro's digitalization journey and nature of its business, as a Ge...
Location
Location
India , Navi Mumbai
Salary
Salary:
Not provided
fugro.com Logo
Fugro
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor or Masters Information Security, Information Technology or relevant professional experience
  • 3-8 years of experience. Ideal candidates would have work experience in both Security Operations and Governance, Risk and Compliance
  • Relevant Information Security certifications are seen as a plus, but not required
Job Responsibility
Job Responsibility
  • Collaborates with stakeholders to address and identify high-risk areas and support business-critical projects and key initiatives
  • Works with Project Managers, Business Analysts, architecture, compliance, and support team to ensure Fugro Information Security standards are being followed
  • Responsible for information security posture and assurance for MEI, and where applicable Global
  • Influences to achieve positive change to the Information Security posture through regular engagement and collaboration
  • Actively shares knowledge and insights to increase Information Security awareness throughout the region
  • Collaborates with the Security Operations Center and to respond to and manage priority incidents
  • Actively works with the Security Operating Center to remediate regional vulnerabilities and develop possible use cases
  • Fulltime
Read More
Arrow Right

Business Information Security Officer - GSC - US

The BISO is a dedicated security professional that is able to balance risk manag...
Location
Location
United States , Houston
Salary
Salary:
Not provided
sysco.com Logo
Sysco
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years experience of Cybersecurity and or information risk management
  • Knowledge and understanding of the design of the operational systems and operations environments
  • knowledge of application and product system development lifecycle and tools and appsec protocols
  • Understand applications running in the operations environment and the resulting network traffic
  • In-depth understanding of cybersecurity solutions and requirements within the food and service industry
  • Excellent communication skills, with an ability to tailor and engage communication across all levels of the organization
  • Education (Bachelor’s Degree or above) related to Computer Science, Cybersecurity, Information Technology, or related fields (Preferred)
  • Certified Information on Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Information Systems Security Architecture Professional (ISSAP), Information Systems Security Engineering Professional (ISSEP), GIAC Response and Industrial Defense (GRID) (Preferred)
  • Fluency in written and spoken English.
Job Responsibility
Job Responsibility
  • Provide independent and objective oversight and monitoring for the implementation of Cybersecurity across Sysco’s operating companies
  • Direct and manage Security Leads across regions
  • Translate Policy(s) and Standards set forth by the Cybersecurity Risk and Compliance Management Team into the environment
  • Increase awareness and foster accountability for security across the enterprise
  • Facilitate bidirectional communication between operations teams globally and enterprise security while advocating for both in a balanced manner
  • Escalate risks and exceptions to Cybersecurity Risk and Compliance Management Team and Change Management
  • Participate in and assist with security incident readiness and response training & awareness including supporting cybersecurity incident response activities
  • Oversee responsibilities for both security and business continuity (governance, reporting, compliance, risk assessments, etc.)
  • Fulltime
Read More
Arrow Right