Principal Business Information Security Officer

JLLT Business Information Security Officer

The JLLT Business Information Security Officer (BISO) serves as the trusted advisor to the JLL business units for all information security issues. This role is a senior member of the JLLT Global Information Security team that works collaboratively with other information security leaders (e.g., Cyber Defense, Application Security, Property Security, etc.) and business teams to develop a strong understanding of business needs and guides the business in making security risk-based decisions.

Combining business acumen with technical knowledge, the BISO assists in improving the information security posture with respect to delivering services and partnering with the regional/business unit leadership. The BISO will understand the key assets and processes, identify, and evaluate risks and controls, and suggest incremental controls or risk mitigation strategies where necessary. Additionally, the BISO will ensure business compliance with Information Security Policy and Standards while continuously monitoring and reporting on risks and documented exceptions. The BISO helps the business achieve their objectives while not compromising the client's security posture.

Sounds like you To apply you need to be:

Desired Skills

• Subject matter expert across information security domains (i.e., Application security, cloud security, vulnerability management, endpoint security, etc.) and the ability to communicate information security issues using business language.
• Ability to form strong relationships with key business stakeholders (e.g., LOB, HR, Legal).
• Communicate with customers as needed to assist the business to achieve its objectives by representing our security program, supporting audits and reviews, assisting in customer communication of security incidents, etc.
• Provide escalation path for security issues, incidents, and inquiries to the global cybersecurity team.
• Maintains awareness with information security industry developments and trends.
• Experience giving presentations and interacting with customers in different business areas.

Qualifications

• Minimum of seven years of information security experience.
• Bachelor's degree in technology or business field.
• Familiarity with compliance regulations and frameworks (e.g., NIST, ISO, GDPR, etc.).
• Ability to translate technical/security issues to business users.
• Ability to independently influence others to achieve objectives.

Scheduled Weekly Hours:

40

If this job description resonates with you, we encourage you to apply even if you don't meet all of the requirements. We're interested in getting to know you and what you bring to the table!