Job description

About Us We are a leading distribution company at the intersection of logistics and technology, specializing in developing and deploying high-performance applications that power the modern supply chain. As we scale our digital footprint and enhance our software solutions, we are seeking a strategic and technically-savvy Business Information Security Officer (BISO) to bridge the gap between security, business, and application development. Role Overview As the BISO, you will serve as the primary security liaison for our application development teams and business units. Your mission is to embed security into the software development lifecycle (SDLC), align our security posture with business objectives, and ensure compliance with industry regulations. You’ll work closely with stakeholders across engineering, IT, compliance, and executive leadership to drive a culture of security by design. Key Responsibilities • Act as the business-facing security leader for application development, product teams, and distribution operations. • Collaborate with DevOps and software engineering teams to integrate security into CI/CD pipelines. • Translate business objectives into risk-based security requirements and controls. • Conduct security risk assessments for new and existing products, platforms, and services. • Advise on secure architecture and design, especially for cloud-native and distributed systems. • Partner with legal, compliance, and IT to ensure regulatory and contractual obligations are met (e.g., SOC 2, ISO 27001, GDPR, etc.). • Lead security awareness efforts for development and business teams. • Monitor and report on application and business security metrics to leadership. • Serve as the point of contact during security incidents impacting application or business systems. Qualifications Must-Have: • 7+ years of experience in information security, with at least 3 in a security leadership or liaison role (e.g., BISO, security architect, or product security lead). • Strong understanding of software development processes, DevSecOps, and SDLC. • Familiarity with application security standards (e.g., OWASP Top 10, SAST/DAST tools). • Proven ability to communicate and influence both technical and non-technical stakeholders. • Experience in aligning security programs with business objectives and risk tolerance. Preferred: • Background in logistics, distribution, or manufacturing industries. • Hands-on experience with cloud platforms (e.g., AWS, Azure, GCP) and their security models. Relevant certifications: CISSP, CISM, CSSLAbout Us We are a leading distribution company at the intersection of logistics and technology, specializing in developing and deploying high-performance applications that power the modern supply chain. As we scale our digital footprint and enhance our software solutions, we are seeking a strategic and technically-savvy Business Information Security Officer (BISO) to bridge the gap between security, business, and application development. Role Overview As the BISO, you will serve as the primary security liaison for our application development teams and business units. Your mission is to embed security into the software development lifecycle (SDLC), align our security posture with business objectives, and ensure compliance with industry regulations. You’ll work closely with stakeholders across engineering, IT, compliance, and executive leadership to drive a culture of security by design. Key Responsibilities • Act as the business-facing security leader for application development, product teams, and distribution operations. • Collaborate with DevOps and software engineering teams to integrate security into CI/CD pipelines. • Translate business objectives into risk-based security requirements and controls. • Conduct security risk assessments for new and existing products, platforms, and services. • Advise on secure architecture and design, especially for cloud-native and distributed systems. • Partner with legal, compliance, and IT to ensure regulatory and contractual obligations are met (e.g., SOC 2, ISO 27001, GDPR, etc.). • Lead security awareness efforts for development and business teams. • Monitor and report on application and business security metrics to leadership. • Serve as the point of contact during security incidents impacting application or business systems. Qualifications Must-Have: • 7+ years of experience in information security, with at least 3 in a security leadership or liaison role (e.g., BISO, security architect, or product security lead). • Strong understanding of software development processes, DevSecOps, and SDLC. • Familiarity with application security standards (e.g., OWASP Top 10, SAST/DAST tools). • Proven ability to communicate and influence both technical and non-technical stakeholders. • Experience in aligning security programs with business objectives and risk tolerance. Preferred: • Background in logistics, distribution, or manufacturing industries. • Hands-on experience with cloud platforms (e.g., AWS, Azure, GCP) and their security models. • Relevant certifications: CISSP, CISM, CSSLP, or similar. Why Join Us? • Opportunity to lead and shape the security strategy of a tech-forward distribution company. • Work at the intersection of logistics and innovation. • Supportive leadership and cross-functional collaboration. • Competitive salary, benefits, and professional development support. • P, or similar. Why Join Us? • Opportunity to lead and shape the security strategy of a tech-forward distribution company. • Work at the intersection of logistics and innovation. • Supportive leadership and cross-functional collaboration. • Competitive salary, benefits, and professional development support.

Requirements