Business Information Security Officer

Business Information Security Officer in Houston, Texas

Company : US6469 Sysco Payroll, Division of Sysco Resources Services, LLC

Check all associated application documentation thoroughly before clicking on the apply button at the bottom of this description.

Minimum Level of Education : Bachelor's Degree

Minimum Years of Experience : 10+ Years

Employment Type : Full Time

Travel Percentage : Up to 25%

Job Summary : The BISO is a dedicated security professional that is able to balance risk management and Cybersecurity requirements, leading a team of regional Business Information Security Officers.

The role requires business acumen, technical acumen, and strong consultative skills. Business operational understanding is critical because this role will engage with business leaders and operations stakeholders to enhance understanding, identification, and management of business risks.

Duties and Responsibilities :

• Provide independent and objective oversight and monitoring for the implementation of Cybersecurity across Sysco's operating companies.
• Direct and manage Security Leads across regions.
• Translate Policy(s) and Standards set forth by Cybersecurity Risk and Compliance Management Team into the environment.
• Increase awareness and foster accountability for security across the enterprise.
• Facilitate bidirectional communication between operations teams globally and enterprise security while advocating for both in a balanced manner.
• Escalate risks and exceptions to Cybersecurity Risk and Compliance Management Team and Change Management.
• Participate in and assist with security incident readiness and response training & awareness including supporting cybersecurity incident response activities.
• Oversee responsibilities for both security and business continuity (governance, reporting, compliance, risk assessments, etc.).

Education Preferred :

Education (Bachelor's Degree or above) related to Computer Science, Cybersecurity, Information Technology, or related fields

Experience Required :

• 10+ years experience of Cybersecurity and or information risk management
• Knowledge and understanding of the design of the operational systems and operations environments
• Knowledge of the software / firmware installed on operational systems
• Understand applications running in the operations environment and the resulting network traffic
• In-depth understanding of cybersecurity solutions and requirements within the food and service industry
• Excellent communication skills, with an ability to tailor and engage communication across all levels of the organization

Licenses / Certifications Preferred :

Certified Information on Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Information Systems Security Architecture Professional (ISSAP), Information Systems Security Engineering Professional (ISSEP), GIAC Response and Industrial Defense (GRID)

Language Requirements :

Fluency in written and spoken English.

Physical Demands :

Reasonable accommodations will be made to enable individuals with disabilities to perform the essential functions of this job.

Benefits Information :

For information on Sysco's Benefits, please visit SyscoBenefits.com

Affirmative Action Statement :

Applicants must be currently authorized to work in the United States.

We are proud to be an Equal Opportunity and Affirmative Action employer, and consider qualified applicants without regard to race, color, creed, religion, ancestry, national origin, sex, sexual orientation, gender identity, age, disability, veteran status or any other protected factor under federal, state or local law.

This opportunity is available through Sysco Corporation, its subsidiaries and affiliates.

J-18808-Ljbffr