ZipRecruiter

Log In

1

Biso Jobs (NOW HIRING)

Cummins

Data Protection Manager

Indianapolis, IN

This role reports to the Director of Information Protection & Resilience as part of the BISO, and it serves as a governance leader and contributor toward enterprise information protection. Key ...

Cummins

Student - IT - School to Work

Columbus, IN · On-site

This role reports to the Director of Information Protection & Resilience as part of the BISO. Key Responsibilities 1. Microsoft Teams Framework Development * Establish and maintain Policies;

next page

Showing results 1-20

People also search for

All JobsBiso Jobs

Biso information

See salary details

$36.5K

$89K

$156.5K

How much do biso jobs pay per year?

As of May 29, 2026, the average yearly pay for biso in the United States is $88,983.00, according to ZipRecruiter salary data. Most workers in this role earn between $55,500.00 and $130,500.00 per year, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as a Business Information Security Officer (BISO), and why are they important?

To thrive as a Business Information Security Officer (BISO), you need a solid background in information security, risk management, and a relevant degree such as computer science or cybersecurity, often complemented by certifications like CISSP or CISM. Familiarity with security frameworks (such as NIST or ISO 27001), incident response tools, and governance, risk, and compliance (GRC) systems is typically required. Strong communication, relationship-building, and strategic thinking skills help BISOs bridge gaps between IT security and business objectives. These skills are critical for aligning security initiatives with business needs, protecting organizational assets, and ensuring regulatory compliance.

What are the main responsibilities and challenges faced by a Business Information Security Officer (BISO) in supporting both business objectives and cybersecurity initiatives?

A Business Information Security Officer (BISO) acts as a bridge between the cybersecurity team and business units, ensuring that security strategies align with business goals. Their key responsibilities include assessing security risks, advising on compliance, and facilitating the integration of security measures into business processes. One common challenge is balancing the need for robust security controls with the business's desire for agility and innovation. BISOs often collaborate closely with IT, compliance, and executive leadership, requiring excellent communication and negotiation skills. This role provides opportunities for career growth into senior security leadership or broader risk management positions.

What are BISO roles and what do they do?

BISO stands for Business Information Security Officer. A BISO acts as a bridge between an organization’s business units and its information security team. They are responsible for ensuring that security strategies align with business objectives, managing business-specific security risks, and promoting a culture of security awareness within their assigned unit. BISOs often work closely with executives, IT teams, and compliance officers to implement security policies, respond to incidents, and ensure regulatory compliance.

What is the difference between Biso vs Data Analyst?

AspectBisoData Analyst
Required CredentialsTypically a diploma or certification in business or financeBachelor's degree in statistics, data science, or related field
Work EnvironmentOffice settings, financial institutions, or corporate environmentsOffice or remote, working with data sets and reporting tools
Industry UsageFinance, banking, and business sectorsTechnology, marketing, healthcare, and finance
Common Search/ComparisonOften compared for roles involving business operations and data handlingMore focused on data analysis and interpretation

The main difference between a Biso and a Data Analyst lies in their focus and skill set. Biso roles typically emphasize business operations and financial processes, requiring certifications in business or finance. Data Analysts focus on analyzing data, requiring skills in statistics and data tools. While both work with data, Biso professionals are more involved in business decision support, whereas Data Analysts interpret data to inform strategies.

More about Biso jobs
What cities are hiring for Biso jobs? Cities with the most Biso job openings:
What are the most commonly searched types of Biso jobs? The most popular types of Biso jobs are:
What states have the most Biso jobs? States with the most job openings for Biso jobs include:
What job categories do people searching Biso jobs look for? The top searched job categories for Biso jobs are:
Biso jobs near you
Infographic showing various Biso job openings in the United States as of May 2026, with employment types broken down into 70% Full Time, 20% Part Time, and 10% Contract. Highlights an 60% In-person, 20% Hybrid, and 20% Remote job distribution, with an average salary of $88,983 per year, or $42.8 per hour.

Business Information Security Officer

Conti Electric Inc

Sterling Heights, MI • On-site

Full-time

Posted 29 days ago

Job description

Job description:

Purpose:

The Business Information Security Officer (BISO) for Operational Technology (OT) and Customer Facing solutions serves as the primary security liaison between the cyber security organization and business units responsible for OT environments and externally delivered solutions. This role owns the security program for these domains, driving secure onboarding of systems and partners, maintaining documentation standards, participating in design and architecture reviews and leading security assessments for both OT networks and customer-facing solutions.

This is a highly cross functional role requiring deep technical security knowledge, strong stakeholder communication skills and an understanding of industrial control systems (ICS), and enterprise solution delivery. The BISO acts as a security strategist ensuring that security is embedded into processes from initial designs through ongoing operations post-delivery.

Reports to: NORAM Chief Information Security Officer (CISO)

Location: Sterling Heights, MI or Montreal, CAN

Department: IT Cyber Security Services

Key Responsibilities: Onboarding & Vendor/System integration

- Leading the security onboarding process for new OT Systems and customer facing solutions, ensuring all assets are assessed, documented and approved before production deployment.

- Define and enforce security requirements, including network segmentation standards, access control models, and identity management policies for OT and customer solution environments.

- Coordinate with procurement, legal and IT teams to ensure that third party vendors meet security baseline requirements through contract review and vendor risk assessments.

Documentation & Standards Management

- Own the security documentation library for OT and customer-facing solution domains including network diagrams, network flows, security control matrices, security plans and backup solutions.

- Develop and maintain security standards and procedures specific to OT environments.

- Ensure documentation remains current through periodic review cycles and is aligned with applicable compliance frameworks.

- Collaborate with engineering, operations and product teams to capture security architecture decisions and maintain accurate as

-built documentation. Design Review & Architecture Participation

- Participate in architecture design review as a security SME. EQUANS is an equal opportunity employer.

- Review proposed OT system architectures, network designs and customer solution designs for security gaps

– providing documented findings and remediation recommendations. Security Review & Risk Assessment

- Lead security reviews for OT network changes, new customer-facing solutions and significant modifications to existing deployments, producing risk assessment reports with prioritized findings.

- Coordinate penetration testing and vulnerability assessments activities scoped to OT and customer solution environments; track findings through remediation.

- Assess and communicate residual risk to business stakeholders and CISO, facilitating informed risk acceptance decisions when appropriate.

- Serve as the security point of contact for customer security questionnaires, audits and third party security assessments related to delivered solutions.

Minimum Qualifications Required Education/Experience

- Minimum of 7+ years in information security with at least 3 years focused on OT/ICS security or customer-facing solution security in a solutions provider, or managed services context.

- Demonstrated experience conducting security design reviews, architecture assessments, and risk analysis for complex networked environments.

- Working knowledge of OT/ICS security standards and frameworks.

- Familiarity with enterprise IT security frameworks

- Experience managing security documentation programs

- Strong understanding of network security principles; segmentation, DMZ design, firewall policy, remote access, identity and access management.

- Excellent verbal and written communication skills; ability to present security risk to both technical and non-technical audiences.

Preferred

- CISSP, CISM, GICSP or equivalent

- Direct experience with DCS, PLCs, historians or industrial IOT networks

- Experience working alongside regulated industries such as energy/utilities or manufacturing.

- Background in solutions delivery or managed security services

- Experience with security tooling relevant to OT and enterprise environments

- Familiarity with secure remote access solution implementations and designs.

Working Environment

The working environment characteristics described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions. While performing the duties of this job, the employee is not exposed to weather conditions. The noise level in the work environment is usually moderate. The position could require some lifting.

“All qualified applicants will receive consideration for employment without regard to race, color, sex, sexual orientation, gender identity, religion, national origin, disability, veteran status, or other legally protected status”.