Business Information Security Officer

Do you want to create strategies and chart a course for our Cyber progress?
 

Are you interested in evangelizing our core information security tools and risk management solutions?
 

About our Team
This team delivers outcomes, longer-term improvements and benefits that are measurable and impact the achievement of organization goals. This includes managing complex and critical issues, creating strategies and charting a course for cyber progress.
 

About the Role
As a BISO for our TIO markets, you will be responsible for planning, organizing, and executing enterprise-wide information and security initiatives. You will deliver long-term improvements and benefits impacting our organizational goals focusing on risk management and cybersecurity defences.
 

Requirements

• Possess a strong proficiency with AWS services (EC2, S3, IAM, Lambda, CloudTrail, CloudWatch, KMS, GuardDuty, Security Hub, WAF, etc.).

• Have the ability to design secure, scalable cloud architectures with proper identity, access management, and network segmentation.

• Experience with AWS Config, AWS Control Tower, or Terraform for compliance automation and infrastructure as code (IaC).

• Possess an understanding of Kubernetes (EKS), Docker, and container image scanning tools.

• Hands-on experience integrating security controls into Jenkins, GitHub Actions, or GitLab CI pipelines.

• Familiarity with code scanning tools (Snyk, SonarQube, Checkmarx, or Veracode) and dependency management.

• Scripting proficiency (Python, Bash, or PowerShell) to automate security testing and compliance checks.

• Experience implementing vault solutions (HashiCorp Vault, AWS Secrets Manager).

• Ability to translate technical risks into business terms for senior stakeholders and non-technical leaders.

• Experience partnering with IT, Cloud, and Business Units to embed security in strategic initiatives.

• Leading security programs, tracking KPIs/metrics, and ensuring timely delivery of remediation plans.  Designing and delivering cybersecurity awareness programs tailored to business functions.

Responsibilities

• Driving information, cyber, and infrastructure security governance across all business and technology units, ensuring alignment with enterprise cybersecurity programs, objectives, and regulatory requirements.

• Serving as the primary liaison between Business Units, Cloud Engineering, and the Cyber Security organization to embed security awareness and best practices into AWS cloud operations, CI/CD pipelines, and DevOps workflows.

•  Leading cloud security oversight for AWS environments, including configuration management, identity and access controls, encryption, and compliance with organizational policies and industry standards (ISO 27001, NIST, SOC 2).

•  Managing and coordinating technical risk assessments — including vulnerability scanning, penetration testing, and application risk reviews — to ensure secure deployment across cloud and hybrid infrastructures.

• Overseeing the security posture of CI/CD pipelines (Jenkins, GitHub Actions, or similar), integrating automated scanning tools and secure code validation into build and deployment processes.

• Collaborating with DevOps and Infrastructure teams to define and implement secure-by-design practices for containerized workloads, Kubernetes clusters, and AWS-native services (EKS, EC2, S3, Lambda). 

•  Defining and executing a risk-based information and infrastructure security strategy, including setting measurable goals, developing security training programs, and creating roadmaps for improving DevSecOps maturity.

•  Developing and report cybersecurity metric scorecards to track compliance with enterprise standards, vulnerability remediation progress, and adoption of security controls across business and cloud environments.

• Providing expert guidance on security architecture decisions, evaluating new tools and technologies for impact on cloud environments, automation frameworks, and enterprise security strategy.

•  Leading cross-functional security initiatives to ensure business innovation aligns with secure architecture principles, risk management standards, and ongoing governance frameworks.

Work in a way that works for you:

We promote a healthy work/life balance across the organisation. We offer an appealing working prospect for our people. With numerous wellbeing initiatives, shared parental leave, study assistance and sabbaticals, we will help you meet your immediate responsibilities and your long-term goals.

Working for you:

We know that your wellbeing and happiness are key to a long and successful career. These are some of the benefits we are delighted to offer:
● Generous holiday allowance with the option to buy additional days
● Health screening, eye care vouchers and private medical benefits
● Wellbeing programs
● Life assurance                                                                                              
● Access to a competitive contributory pension scheme
● Save As You Earn share option scheme
● Travel Season ticket loan
● Electric Vehicle Scheme
● Optional Dental Insurance
● Maternity, paternity and shared parental leave
● Employee Assistance Programme
● Access to emergency care for both the elderly and children
● RECARES days, giving you time to support the charities and causes that matter to you
● Access to employee resource groups with dedicated time to volunteer
● Access to extensive learning and development resources
● Access to employee discounts scheme via Perks at Work

About the business:

A global leader in information and analytics, we help researchers and healthcare professionals advance science and improve health outcomes for the benefit of society. Building on our publishing heritage, we combine quality information and vast data sets with analytics to support visionary science and research, health education and interactive learning, as well as exceptional healthcare and clinical practice. What you do every day will help advance science and healthcare to advance human progress. 

We know your well-being and happiness are key to a long and successful career. We are delighted to offer country specific benefits. Click here to access benefits specific to your location.

We are committed to providing a fair and accessible hiring process. If you have a disability or other need that requires accommodation or adjustment, please let us know by completing our Applicant Request Support Form or please contact 1-855-833-5120.

Criminals may pose as recruiters asking for money or personal information. We never request money or banking details from job applicants. Learn more about spotting and avoiding scams here.

Please read our Candidate Privacy Policy.

We are an equal opportunity employer: qualified applicants are considered for and treated during employment without regard to race, color, creed, religion, sex, national origin, citizenship status, disability status, protected veteran status, age, marital status, sexual orientation, gender identity, genetic information, or any other characteristic protected by law.

USA Job Seekers:

EEO Know Your Rights.