The Sr. Director will oversee the BISO manager organization,establishscalable risk governance practices, strengthen security awareness andbehavior basedculture programs, and drive implementation of ...
New
The Sr. Director will oversee the BISO manager organization,establishscalable risk governance practices, strengthen security awareness andbehavior basedculture programs, and drive implementation of ...
New
The Sr. Director will oversee the BISO manager organization,establishscalable risk governance practices, strengthen security awareness andbehavior basedculture programs, and drive implementation of ...
New
As the BISO, you will help leadership understand Redfin's risk profile while helping teams implement security controls that work within their actual business context. About therole * Serve as Redfin ...
As the BISO, you will help leadership understand Redfin's risk profile while helping teams implement security controls that work within their actual business context. About therole * Serve as Redfin ...
As the Director, Business Information Security Officer (BISO) you'll serve as the senior Information Security leader embedded within assigned AmAPAC regions and Corporate IT environments. This role ...
As the Director, Business Information Security Officer (BISO) you'll serve as the senior Information Security leader embedded within assigned AmAPAC regions and Corporate IT environments. This role ...
This role partners with Product, Engineering, BISO, and broader Enterprise Cybersecurity stakeholders to operationalize secure-by-design guidance across the product lifecycle. You will help build and ...
This role partners with Product, Engineering, BISO, and broader Enterprise Cybersecurity stakeholders to operationalize secure-by-design guidance across the product lifecycle. You will help build and ...
Position Overview Provides reporting, analytics, and portfolio management support to the BISO organization through the development of executive dashboards, performance metrics, and project reporting.
Position Overview Provides reporting, analytics, and portfolio management support to the BISO organization through the development of executive dashboards, performance metrics, and project reporting.
Position Overview Provides reporting, analytics, and portfolio management support to the BISO organization through the development of executive dashboards, performance metrics, and project reporting.
Position Overview Provides reporting, analytics, and portfolio management support to the BISO organization through the development of executive dashboards, performance metrics, and project reporting.
West Chester, PA · On-site
$105K - $142K/yr
The Sr. Director will oversee the BISO manager organization,establishscalable risk governance practices, strengthen security awareness andbehavior basedculture programs, and drive implementation of ...
New
West Chester, PA · On-site
$105K - $142K/yr
The Sr. Director will oversee the BISO manager organization,establishscalable risk governance practices, strengthen security awareness andbehavior basedculture programs, and drive implementation of ...
New
The BISO assists in enabling business strategies, while balancing the security risk and ensuring security is aligned with business strategies. Interacts with all levels of leadership in the firm to ...
The BISO assists in enabling business strategies, while balancing the security risk and ensuring security is aligned with business strategies. Interacts with all levels of leadership in the firm to ...
Position Overview Provides reporting, analytics, and portfolio management support to the BISO organization through the development of executive dashboards, performance metrics, and project reporting.
Position Overview Provides reporting, analytics, and portfolio management support to the BISO organization through the development of executive dashboards, performance metrics, and project reporting.
As the Director, Business Information Security Officer (BISO) you'll serve as the senior Information Security leader embedded within assigned AmAPAC regions and Corporate IT environments. This role ...
As the Director, Business Information Security Officer (BISO) you'll serve as the senior Information Security leader embedded within assigned AmAPAC regions and Corporate IT environments. This role ...
Position Overview Provides reporting, analytics, and portfolio management support to the BISO organization through the development of executive dashboards, performance metrics, and project reporting.
Position Overview Provides reporting, analytics, and portfolio management support to the BISO organization through the development of executive dashboards, performance metrics, and project reporting.
Position Overview Provides reporting, analytics, and portfolio management support to the BISO organization through the development of executive dashboards, performance metrics, and project reporting.
Position Overview Provides reporting, analytics, and portfolio management support to the BISO organization through the development of executive dashboards, performance metrics, and project reporting.
Raynham, MA · On-site
$114K - $155K/yr
The Sr. Director will oversee the BISO manager organization,establishscalable risk governance practices, strengthen security awareness andbehavior basedculture programs, and drive implementation of ...
New
Raynham, MA · On-site
$114K - $155K/yr
The Sr. Director will oversee the BISO manager organization,establishscalable risk governance practices, strengthen security awareness andbehavior basedculture programs, and drive implementation of ...
New
This role partners with Product, Engineering, BISO, and broader Enterprise Cybersecurity stakeholders to operationalize secure-by-design guidance across the product lifecycle. You will help build and ...
This role partners with Product, Engineering, BISO, and broader Enterprise Cybersecurity stakeholders to operationalize secure-by-design guidance across the product lifecycle. You will help build and ...
As the Director, Business Information Security Officer (BISO) you'll serve as the senior Information Security leader embedded within assigned AmAPAC regions and Corporate IT environments. This role ...
As the Director, Business Information Security Officer (BISO) you'll serve as the senior Information Security leader embedded within assigned AmAPAC regions and Corporate IT environments. This role ...
Position Overview Provides reporting, analytics, and portfolio management support to the BISO organization through the development of executive dashboards, performance metrics, and project reporting.
Position Overview Provides reporting, analytics, and portfolio management support to the BISO organization through the development of executive dashboards, performance metrics, and project reporting.
Partner with the global BISO organization to ensure Global Information Security (GIS) requirements and initiatives are communicated, reviewed, and tracked in a consistent, timely, and effective ...
Partner with the global BISO organization to ensure Global Information Security (GIS) requirements and initiatives are communicated, reviewed, and tracked in a consistent, timely, and effective ...
BISO Enablement * Partner closely with BISOs to offload remediation coordination, tracking, and follow up. * Enable BISOs to remain focused on early engagement, business risk translation, and ...
BISO Enablement * Partner closely with BISOs to offload remediation coordination, tracking, and follow up. * Enable BISOs to remain focused on early engagement, business risk translation, and ...
Partner with the global BISO organization to ensure Global Information Security (GIS) requirements and initiatives are communicated, reviewed, and tracked in a consistent, timely, and effective ...
Partner with the global BISO organization to ensure Global Information Security (GIS) requirements and initiatives are communicated, reviewed, and tracked in a consistent, timely, and effective ...
This role partners with Product, Engineering, BISO, and broader Enterprise Cybersecurity stakeholders to operationalize secure-by-design guidance across the product lifecycle. You will help build and ...
This role partners with Product, Engineering, BISO, and broader Enterprise Cybersecurity stakeholders to operationalize secure-by-design guidance across the product lifecycle. You will help build and ...
$36.5K - $47.4K
17% of jobs
$52.2K is the 25th percentile. Wages below this are outliers.
$47.4K - $58.3K
18% of jobs
$58.3K - $69.2K
11% of jobs
The median wage is $73.6K / yr.
$69.2K - $80.1K
11% of jobs
$80.1K - $91K
10% of jobs
$91K - $102K
2% of jobs
$102K - $112.9K
6% of jobs
$115.6K is the 75th percentile. Wages above this are outliers.
$112.9K - $123.8K
2% of jobs
$123.8K - $134.7K
5% of jobs
$134.7K - $145.6K
7% of jobs
$145.6K - $156.5K
11% of jobs
$36.5K
$89K
$156.5K
| Aspect | Biso | Data Analyst |
|---|---|---|
| Required Credentials | Typically a diploma or certification in business or finance | Bachelor's degree in statistics, data science, or related field |
| Work Environment | Office settings, financial institutions, or corporate environments | Office or remote, working with data sets and reporting tools |
| Industry Usage | Finance, banking, and business sectors | Technology, marketing, healthcare, and finance |
| Common Search/Comparison | Often compared for roles involving business operations and data handling | More focused on data analysis and interpretation |
The main difference between a Biso and a Data Analyst lies in their focus and skill set. Biso roles typically emphasize business operations and financial processes, requiring certifications in business or finance. Data Analysts focus on analyzing data, requiring skills in statistics and data tools. While both work with data, Biso professionals are more involved in business decision support, whereas Data Analysts interpret data to inform strategies.

$105K - $141K/yr
Full-time
Retirement, PTO
Posted yesterday
New
At Johnson & Johnson,we believe health is everything. Our strength in healthcare innovation empowers us to build aworld where complex diseases are prevented, treated, and cured,where treatments are smarter and less invasive, andsolutions are personal.Through our expertise in Innovative Medicine and MedTech, we are uniquely positioned to innovate across the full spectrum of healthcare solutions today to deliver the breakthroughs of tomorrow, and profoundly impact health for humanity.Learn more at jnj.com
As guided by Our Credo, Johnson & Johnson is responsible to our employees who work with us throughout the world. We provide an inclusive work environment where each person is considered as an individual. At Johnson & Johnson, we respect the diversity and dignity of our employees and recognize their merit.
Job Function:
Technology Enterprise Strategy & SecurityJob Sub Function:
Security & ControlsJob Category:
People LeaderAll Job Posting Locations:
Palm Beach Gardens, Florida, United States of America, Raritan, New Jersey, United States of America, Raynham, Massachusetts, United States of America, Warsaw, Indiana, United States of America, West Chester, Pennsylvania, United States of AmericaJob Description:
DePuy Synthes is recruiting for a(n) Sr. Director, GRC, IT Controls andCyberCulture.
Johnson & Johnson announced plans to separate our Orthopedics business toestablisha standalone orthopedics company, operatingasDePuy Synthes. The process of the planned separation isanticipatedto be completed within 18 to24 months, subject to legal requirements, including consultation with works councils and other employee representative bodies, as may berequired, regulatory approvals and other customary conditions and approvals. Should you accept this position, it isanticipatedthat, following conclusion of the transaction, you would be an employee of DePuySynthesand your employment would be governed by DePuy Synthes employment processes, programs, policies, and benefit plans. In that case, details of any planned changes would be provided to you by DePuy Synthes atan appropriate timeand subject to any necessary consultation processes.
Job Overview
This role serves as a senior cybersecurity leader reporting to the CISO, with enterprise accountability for building, maturing, and operationalizing the Governance, Risk & Compliance (GRC) function across DePuy Synthes. The Sr. Director will oversee the BISO manager organization,establishscalable risk governance practices, strengthen security awareness andbehavior basedculture programs, and drive implementation of IT controls and an enterprise assurance framework. The role will also oversee external cybersecurity assessments and disclosures, including cyber insurance, ESG-related cybersecurity inputs, and other third-party assurance activities. This highly visible leadership role will help ensure cybersecurity risk, compliance, control effectiveness, and cultural adoption are consistently managed across the enterprise in support of business priorities, regulatory expectations, and organizational resilience.
Key Responsibilities
Build and mature the enterprise GRC function, including governance forums, risk management processes, compliance oversight, control monitoring, issue management, and executive reporting.
Provide leadership and oversight for the BISO manager organization, ensuring consistent engagement with business leaders, effective cyber risk advisory support, and alignment of security priorities to businessobjectives.
Lead enterprise cyber risk management activities, including risk identification, assessment, mitigation planning, escalation, and reporting to senior leadership and governance bodies.
Own the enterprise cybersecurity policy and standards lifecycle - from creation and implementation to continuous review - ensuring clarity, compliance, and alignment with organizational goals.
Oversee SOX cybersecurity and IT control activities, including implementation, operating effectiveness,evidencereadiness, remediation tracking, and partnership with Finance, Internal Audit, External Audit, and IT control owners.
Establish and operationalize an enterprise IT controls and assurance framework that enables consistent control design, testing, monitoring, reporting, and continuous improvement across the organization.
Lead oversight of external cybersecurity assessments and assurance requests, including cyber insurance questionnaires, ESG-related cybersecurity inputs, customer or partner assessments, and other third-party reviews requiring enterprise cyber risk and control representation.
Drive cybersecurity compliance with applicable global regulations, standards, and frameworks, ensuring the organization candemonstratecontrol effectiveness and audit readiness.
Lead security awareness, behavior, and culture initiatives that improve workforce accountability, reducehumancentricrisk, and embed secure practices intodaytodaybusiness operations.
Lead and develophighperformingcybersecurity leaders and teams, fostering a culture of accountability, collaboration, disciplined execution, and continuous improvement.
Provideexecutivelevelreporting on cybersecurity risk, compliance status, control effectiveness, assurance outcomes, and program maturity to senior leadership and governance bodies.
Qualifications
Education
Required:Bachelor's degree in Information Security, Computer Science, Engineering, ora relatedfield.
Preferred: Master's degree (MS, MBA, or equivalent) in Cybersecurity, Information Systems, or Business.
Experience and Skills
Required:
12-14 years of progressive experience in cybersecurity, information security, technology risk management, IT controls, or GRC, including senior leadership roles.
Demonstrated experience building or maturing enterprise GRC programs in a regulated, global, or complex operating environment.
Experience leading BISO, cyber risk advisory, security governance, or business aligned cybersecurity teams.
Deep knowledge of cybersecurity risk management, compliance frameworks, IT controls, SOX control expectations, assurance practices, and audit readiness.
Experience overseeing external cybersecurity assessments, including cyber insurance, ESG-related cybersecurity reporting, customer or partner assessments, and third-party assurance requests.
Experience building, mentoring, and leading senior level cybersecurity teams.
Strong strategic, analytical, and communication skills, with the ability to translate technical risk, control gaps, and compliance obligations into business impact.
Preferred:
Experience implementing or transforming enterprise IT controls, SOX programs, control testing, remediation governance, and assurance frameworks.
Experience driving cybersecurity awareness, behavior change, and culture programs across a large enterprise.
Experienceoperatingin complex, global organizations undergoing transformation or separation.
Demonstrated success improvingcybersecuritymaturity, control effectiveness, and risk accountability at scale.
Proven ability to influence executive stakeholders andpartnereffectively across IT, Finance, Internal Audit, External Audit, Legal, Risk, Compliance, and business leadership functions.
Other:
Language: English (fluent)
Travel: Up to 20%, domestic and international
Certifications (preferred): CISSP, CISM, CRISC, or equivalent
For more information on how we support the whole health of our employees throughout their wellness,careerand life journey, please visitwww.careers.jnj.com.
Johnson & Johnson is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, disability, protected veteran status or other characteristics protected by federal, state or local law. We actively seek qualified candidates who are protected veterans and individuals with disabilities as defined under VEVRAA and Section 503 of the Rehabilitation Act.
Johnson and Johnson is committed to providing an interview process that is inclusive of our applicants' needs. If you are an individual with a disability and would like to request an accommodation, please email the Employee Health Support Center (ra-employeehealthsup@its.jnj.com) or contact AskGS to be directed to your accommodation resource.
#DePuySynthesCareers
Required Skills:
Preferred Skills:
Business Process Design, Crisis Management, Critical Thinking, Cybersecurity, Developing Others, Inclusive Leadership, Industry Analysis, Information Security Auditing, Information Security Management System (ISMS), Information Technology (IT) Security Assessments, Information Technology Strategies, Leadership, Presentation Design, Process Optimization, Risk Management Framework, Security Architecture Design, Security Policies, Strategic ThinkingThe anticipated base pay range for this position is :
$178,000.00 - $307,050.00Additional Description for Pay Transparency:
Subject to the terms of their respective plans, employees are eligible to participate in the Company's consolidated retirement plan (pension) and savings plan (401(k)).