Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Partner with leaders to embed security in business strategies and initiatives.
- Company: Join a forward-thinking team focused on cybersecurity and risk management.
- Benefits: Enjoy competitive pay, wellness support, and tailored benefits for your location.
- Other info: Dynamic work environment with opportunities for growth and professional development.
- Why this job: Make a real impact by influencing enterprise-level security decisions and outcomes.
- Qualifications: Experience in cybersecurity roles and strong stakeholder management skills required.
The predicted salary is between 60000 - 80000 ÂŁ per year.
Are you ready to embed security by design and influence risk decisions at enterprise scale? Can you partner with senior leaders to turn cyber risk into trusted business outcomes?
About Our Team
The Business Information Security Office (BISO) team partners with business, product, and technology leaders to deliver measurable security outcomes that support enterprise objectives. We focus on managing complex risk, embedding secure‑by‑design practices, and driving long‑term cybersecurity maturity. Our work enables trusted innovation, operational resilience, and informed risk decision‑making across the organization.
About the Role
As a Business Information Security Officer (BISO), you act as the primary security partner for assigned business units, bridging business strategy and enterprise cybersecurity. You are accountable for planning and executing security initiatives that reduce risk, strengthen cyber defenses, and enable delivery at scale. The role is highly collaborative, advisory, and outcome‑focused—ensuring security is embedded early and pragmatically across products, platforms, and major initiatives.
Responsibilities:
- Act as the primary security partner for assigned business units, building trusted senior stakeholder relationships.
- Embed security early into business initiatives, product development, and technology delivery.
- Sponsor and support enterprise and business‑aligned security initiatives end‑to‑end.
- Provide expert security guidance across concurrent IT, engineering, and business projects.
- Oversee security assessments including vulnerability management, penetration testing, and third‑party risk.
- Translate security findings into prioritized, actionable remediation plans with clear ownership.
- Provide security input into solution architecture and major technology decisions.
- Serve as the security point of contact for customer‑facing inquiries, audits, and due‑diligence.
- Identify, document, and govern cyber risks, supporting risk acceptance and escalation processes.
- Develop and report meaningful security metrics to inform leadership decisions and continuous improvement.
Requirements:
- Several years’ experience in a BISO or senior security leadership / advisory role.
- Strong cloud and application security experience (AWS, Azure, GCP; secure SDLC).
- Hands‑on knowledge of security tooling (SIEM, SOAR, EDR/XDR, CSPM, SAST/DAST).
- Experience embedding security into CI/CD pipelines and DevSecOps practices.
- Proven capability in risk assessments, threat modeling, and control gap analysis.
- Experience collaborating with SOC and Incident Response teams during security events.
- Working knowledge of security frameworks and regulations (NIST, ISO 27001, CIS, GDPR, etc.).
- Ability to translate technical risk into clear, business‑relevant language.
- Strong stakeholder management skills with the ability to influence without authority.
- Bachelor’s degree in Engineering, Computer Science, or equivalent experience, plus relevant certifications (CISSP, CISM, GIAC, or similar).
Cyber Security Business Information Officer (BISO) in Oxford employer: Elsevier
Contact Detail:
Elsevier Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Cyber Security Business Information Officer (BISO) in Oxford
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, especially those already working in BISO roles. Attend events, webinars, or even local meetups to make connections that could lead to job opportunities.
✨Tip Number 2
Showcase your expertise! Create a portfolio or a blog where you share insights on cyber security trends, risk management, and best practices. This not only demonstrates your knowledge but also helps you stand out from the crowd.
✨Tip Number 3
Prepare for interviews by brushing up on your stakeholder management skills. Be ready to discuss how you've influenced decisions in past roles and how you can bring that experience to the BISO team.
✨Tip Number 4
Don't forget to apply through our website! It’s the best way to ensure your application gets noticed. Plus, it shows you're genuinely interested in joining our team and contributing to our mission.
We think you need these skills to ace Cyber Security Business Information Officer (BISO) in Oxford
Some tips for your application 🫡
Tailor Your Application: Make sure to customise your CV and cover letter to highlight your experience in cyber security and how it aligns with the BISO role. Use keywords from the job description to show that you understand what we're looking for.
Showcase Your Collaboration Skills: Since this role is all about partnering with senior leaders, be sure to include examples of how you've successfully collaborated in the past. We want to see your ability to build trusted relationships and influence decisions.
Highlight Relevant Experience: Don’t forget to emphasise your hands-on experience with security tooling and cloud security. Mention specific projects or initiatives where you've embedded security practices, as this will resonate with us.
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way to ensure your application gets into the right hands and shows your enthusiasm for joining our team!
How to prepare for a job interview at Elsevier
✨Know Your Cybersecurity Stuff
Make sure you brush up on your knowledge of cloud and application security, especially with platforms like AWS, Azure, and GCP. Be ready to discuss how you've embedded security into CI/CD pipelines and your hands-on experience with security tools like SIEM and EDR.
✨Speak Their Language
When discussing technical risks, translate them into business-relevant terms. This shows that you understand both the cybersecurity landscape and the business implications, which is crucial for a BISO role.
✨Build Relationships
Demonstrate your stakeholder management skills by sharing examples of how you've built trusted relationships with senior leaders in previous roles. Highlight your ability to influence decisions without direct authority—this is key in a collaborative environment.
✨Prepare for Scenario Questions
Expect scenario-based questions where you'll need to outline how you'd handle specific security challenges or risk assessments. Think through your past experiences and be ready to provide clear, actionable remediation plans that show your strategic thinking.