Business Information Security Officer - BISO | Supply Chain and Manufacturing
Apply NowCompany: BioSpace
Location: North Chicago, IL 60064
Description:
Job Details
Company Description
AbbVie's mission is to discover and deliver innovative medicines and solutions that solve serious health issues today and address the medical challenges of tomorrow. We strive to have a remarkable impact on people's lives across several key therapeutic areas immunology, oncology, neuroscience, and eye care and products and services in our Allergan Aesthetics portfolio. For more information about AbbVie, please visit us at www.abbvie.com . Follow @abbvie on X , Facebook , Instagram , YouTube , LinkedIn and Tik Tok .
Job Description
The Business Information Security Officer (BISO) serves as the senior information security partner within specific business units, responsible for aligning cybersecurity strategies with business goals, managing risks, and fostering a robust security culture across the organization. The BISO functions as a bridge between business IT initiatives and the cybersecurity team, providing expert guidance on security risks, compliance, and incident response.
The Business Information Security Officer (BISO) is instrumental in safeguarding the organization's assets by seamlessly aligning cybersecurity strategies with business objectives. Serving as a pivotal link between business units and the cybersecurity function, the BISO elevates the organization's security posture through expert risk management, proactive incident response, and comprehensive compliance efforts. By fostering a robust security culture, working collaboratively with diverse stakeholders, leveraging strong project management, data analytics, and leadership skills, the BISO drives business growth and innovation in a secure and resilient operational environment. This role ensures that cybersecurity is not merely a technical necessity but a strategic enabler of business success as well as competitive advantage.
Responsibilities
Qualifications
Preferred:
Additional Information
Applicable only to applicants applying to a position in any location with pay disclosure requirements under state orlocal law:
Note: No amount of payis considered to bewages or compensation until such amount is earned, vested, anddeterminable.The amount and availability of any bonus,commission, incentive, benefits, or any other form ofcompensation and benefitsthat are allocable to a particular employee remains in the Company's sole andabsolutediscretion unless and until paid andmay be modified at the Companys sole and absolute discretion, consistent withapplicable law.
AbbVie is an equal opportunity employer and is committed to operating with integrity, driving innovation, transforming lives and serving our community. Equal Opportunity Employer/Veterans/Disabled.
US & Puerto Rico only - to learn more, visit https://www.abbvie.com/join-us/equal-employment-opportunity-employer.html
US & Puerto Rico applicants seeking a reasonable accommodation, click here to learn more:
https://www.abbvie.com/join-us/reasonable-accommodations.html
Company Description
AbbVie's mission is to discover and deliver innovative medicines and solutions that solve serious health issues today and address the medical challenges of tomorrow. We strive to have a remarkable impact on people's lives across several key therapeutic areas immunology, oncology, neuroscience, and eye care and products and services in our Allergan Aesthetics portfolio. For more information about AbbVie, please visit us at www.abbvie.com . Follow @abbvie on X , Facebook , Instagram , YouTube , LinkedIn and Tik Tok .
Job Description
The Business Information Security Officer (BISO) serves as the senior information security partner within specific business units, responsible for aligning cybersecurity strategies with business goals, managing risks, and fostering a robust security culture across the organization. The BISO functions as a bridge between business IT initiatives and the cybersecurity team, providing expert guidance on security risks, compliance, and incident response.
The Business Information Security Officer (BISO) is instrumental in safeguarding the organization's assets by seamlessly aligning cybersecurity strategies with business objectives. Serving as a pivotal link between business units and the cybersecurity function, the BISO elevates the organization's security posture through expert risk management, proactive incident response, and comprehensive compliance efforts. By fostering a robust security culture, working collaboratively with diverse stakeholders, leveraging strong project management, data analytics, and leadership skills, the BISO drives business growth and innovation in a secure and resilient operational environment. This role ensures that cybersecurity is not merely a technical necessity but a strategic enabler of business success as well as competitive advantage.
Responsibilities
- Strategic Alignment & Risk Management
- Develop and execute cybersecurity strategies that align with business objectives and regulatory requirements.
- Identify, assess, and mitigate information security risks across business units, utilizing risk management frameworks.
- Leadership & Collaboration
- Serve as the primary liaison between business units, the CISO, and the Information Security and Risk Management (ISRM) team.
- Establish and lead a BISO Advisory capability, facilitating collaboration among IT, legal, and risk management representatives.
- Incident Response & Crisis Management
- Lead incident response efforts, ensuring swift detection, classification, and remediation of security incidents.
- Conduct post-incident reviews and comprehensive tabletop exercises to enhance preparedness.
- Compliance & Governance
- Ensure compliance with regulatory requirements such as GDPR, HIPAA, CCPA, and alignment with standards like ISO 27001.
- Lead audit preparation efforts, coordinating internal assessments and addressing gaps.
- Training & Awareness
- Design and deliver security awareness programs, emphasizing the importance of cybersecurity within business operations.
- Cultivate a cybersecurity-conscious culture throughout all levels of the organization.
Qualifications
- Bachelors Degree and minimum 10 years of experience in Information Security, Cybersecurity, or a related field; or masters degree and 9 years of experience; or PhD and 5 years of experience.
- Prior, demonstrable experience as a senior information security executive within a manufacturing environment.
- Demonstration of experience in the consultative role of liaising and advising executive & key stakeholders on security matters. (References!)
- Experience designing and implementing global security solutions.
- Deep knowledge of information security management frameworks (ISO 27001, NIST CSF) and regulatory compliance requirements.
- Proven ability to communicate effectively with a wide range of stakeholders, including executives and technical teams.
- Strong project management, data analytics, problem-solving, and leadership skills.
- Possession of CISSP, CISM, CRISC, CISA certifications, or at least two of these credentials.
Preferred:
- Advanced degree in a related field.
- Experience with contract and vendor negotiations.
- Expertise in cybersecurity risk management, including conducting assessments and recommending solutions.
- Prior experience as a Chief Information Security Officer (CISO) of a medium or large enterprise.
Additional Information
Applicable only to applicants applying to a position in any location with pay disclosure requirements under state orlocal law:
- The compensation range described below is the range of possible base pay compensation that the Companybelieves ingood faith it will pay for this role at the timeof this posting based on the job grade for this position.Individualcompensation paid within this range will depend on many factors including geographic location, andwemay ultimatelypay more or less than the posted range. This range may be modified in thefuture.
- We offer a comprehensive package of benefits including paid time off (vacation, holidays, sick),medical/dental/visioninsurance and 401(k) to eligibleemployees.
- This job is eligible to participate in our short-term incentiveprograms.
- This job is eligible to participate in our long-term incentiveprograms
Note: No amount of payis considered to bewages or compensation until such amount is earned, vested, anddeterminable.The amount and availability of any bonus,commission, incentive, benefits, or any other form ofcompensation and benefitsthat are allocable to a particular employee remains in the Company's sole andabsolutediscretion unless and until paid andmay be modified at the Companys sole and absolute discretion, consistent withapplicable law.
AbbVie is an equal opportunity employer and is committed to operating with integrity, driving innovation, transforming lives and serving our community. Equal Opportunity Employer/Veterans/Disabled.
US & Puerto Rico only - to learn more, visit https://www.abbvie.com/join-us/equal-employment-opportunity-employer.html
US & Puerto Rico applicants seeking a reasonable accommodation, click here to learn more:
https://www.abbvie.com/join-us/reasonable-accommodations.html