LII Business Information Security Officer

About The Position

Requirements

• Bachelor`s or Master`s Degree in technical or business discipline or related experience; Master`s Degree preferred.
• Generally more than 10 years related experience with 5 years in leadership role.
• Demonstrated real world, hands on technical design and implementation experience.
• Strong familiarity with Information Security precepts, practices, and solutions.
• Extensive knowledge across a broad range of identity and access management technologies.
• In depth knowledge of IT concepts, strategies and methodologies and their application to business opportunities.
• In depth knowledge of project delivery, business operations, objectives and strategies.
• Advanced knowledge of management concepts, practices and techniques.
• Strong interpersonal skills with the ability to effectively influence others.
• Ability to build collaborative working relationships with a broad range of enterprise stakeholders.
• Strong decision making capabilities, with proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one.

Responsibilities

• Build and nurture strong partnerships with SBU stakeholders—including IT leadership, Product Owners, and senior business executives—to foster trust and drive efficient program implementation.
• Balance individual customer needs with broader business priorities, ensuring alignment with Global Cybersecurity strategies.
• Participate actively in SBU program increment planning events and, as a dotted-line member of the LII CIO leadership team, help cascade and influence a strategic cyber risk management vision that supports innovation and business execution.
• Influence the prioritization and delivery of security services, as well as the development of new security products and features.
• Support the creation and execution of risk remediation action plans and manage exception processes as needed.
• Ensure the prioritization of security initiatives within SBU teams is balanced effectively alongside other business priorities.
• Drive shared accountability for the development and ongoing management of secure applications.
• Collaborate with other BISOs, the Market Strategy & Delivery Leader and the CISO to define and communicate key performance indicators (KPIs), key risk indicators (KRIs), and relevant metrics.
• Stay abreast of the evolving threat landscape and advise stakeholders on emerging risks and recommended courses of action.
• Commit to ongoing professional development, especially in areas of regulatory change, technology evolution, and cybersecurity and privacy trends—applying this knowledge to enhance global strategies and programs.
• Partner with local counsel on incident response and regulatory compliance matters as applicable.
• Support SOC and/or legal functions by assisting in the management of security incidents and events to safeguard IT assets, regulated data, and the company’s reputation.
• Champion third-party risk management by advising business owners on vendor engagement, remediation efforts, and continuous monitoring actions.
• Advance the security champion program to deepen and broaden security engagement across SBU application development teams.
• Develop and maintain a robust network of industry contacts; conduct research on industry trends, competitive landscape, and emerging technologies to inform strategic and tactical recommendations.
• Travel up to roughly 20-25% of the time across the region to engage in‑market with leadership teams, technology partners, and key stakeholders.

Benefits

• comprehensive benefits
• workplace flexibility
• professional development opportunities
• opportunities provided through our Employee Resource Groups