Business Information Security Officer – BISO

Job not on LinkedIn

🔥 3 minutes ago

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Digibee

WebsiteLinkedInAll Job Openings

51 - 200 employees

Founded 2017

☁️ SaaS

🔌 API

🏢 Enterprise

💰 $60.5M Series B - Digibee on 2023-06

SaaS • API • Enterprise

Digibee is a cloud-native integration and automation platform that helps enterprises connect apps, legacy systems, data, and AI. It provides low-code/visual tools for building integrations, orchestrating workflows, deploying agents, and managing MCP/AI connectivity with built-in observability, security, and serverless scaling. Digibee is offered as a SaaS platform for IT teams, developers, and architects to accelerate digital transformation, modernize core systems, and automate high-volume, mission-critical processes.

📋 Description

• Partner with leaders, product owners, and engineering teams to identify, assess, and prioritize information security risks, translating technical threats into business impact and actionable mitigation strategies. • Serve as the primary security point of contact, providing strategic guidance on security architecture, secure-by-design principles, threat modeling, and risk acceptance decisions for new products, features, and technology investments. • Lead security risk assessments for major business initiatives & projects, M&A activities, third-party integrations, and cloud migrations, leading certifications (SOC 2, PCI-DSS), regulatory & client requirements and internal security policies. • Drive the implementation and continuous improvement of security controls, governance frameworks, and KPIs/KRIs, reporting on the security posture of business units to executive leadership and relevant risk committees. • Champion security awareness and culture across business units by leading training initiatives, tabletop exercises, and incident response simulations, while also supporting real incident response coordination between business stakeholders and the central security teams.

🎯 Requirements

• Bachelor's degree in Computer Science, Information Security, Cybersecurity, Information Systems, Engineering, or a related field. Relevant certifications such as CISSP, CISM, CRISC, CCSP, CISA, or cloud-specific security certifications (AWS/Azure/GCP) are highly desirable. • English language, with the ability to communicate security concepts clearly to both technical and non-technical audiences, including executive leadership. • Strong experience (8+ years) in information security, with at least 3 years in security consulting, security architecture, or senior GRC role, ideally supporting product-driven or cloud-native organizations. • Experience in security frameworks and standards, risk management methodologies, threat modeling, secure SDLC practices, and cloud security architecture. • Familiarity with Product and Cloud Engineering companies, including modern development practices such as DevSecOps, CI/CD pipelines, microservices, Kubernetes, infrastructure-as-code, and API security, along with an understanding of how to embed security without slowing down delivery. • Ability to work independently and manage multiple projects/roles simultaneously, balancing competing priorities across business units while maintaining strong stakeholder relationships and a strategic, outcomes-oriented mindset.

🏖️ Benefits

• N/A