Business Information Security Officer, Europe

Business Information Security Officer, Europe

Join to apply for the Business Information Security Officer, Europe role at Levi Strauss & Co.

About the Job

We’re looking for a Business Information Security Officer (BISO), Europe , to join our team in London, reporting to the Senior Manager, Business Information Security Office and Strategy.

As the BISO for Europe, you’ll act as a bridge between our central cybersecurity team and regional business units. You’ll work with regional leadership to understand business goals, embed cybersecurity strategies—including AI-related risks—and align security objectives with business operations. Your role will also involve risk identification and assessment, advising on mitigation, and promoting a security-aware culture across the region.

Key Responsibilities

Business Partnership & Advisory

• Partner with regional business leaders to advise on cybersecurity matters, including AI security.
• Understand regional team goals to communicate cyber risks effectively.
• Advise on cybersecurity risk levels and potential impacts.
• Support cost-benefit analysis of security programs.
• Collaborate with Privacy and legal teams on due diligence and data functions.

Risk Management & Governance

• Support third-party risk management activities, including assessments.
• Manage PCI compliance, leading assessments across countries with app owners and payment solutions.
• Contribute to regional data loss prevention initiatives.
• Advise on AI governance and security within the region.
• Ensure adherence to risk mitigation protocols, tracking efforts per frameworks like NIST CSF, CIS.
• Facilitate risk communication within supported business units.

Communication & Culture

• Engage with partners on cybersecurity issues and build relationships.
• Stay informed on cultural and regulatory changes across Europe.
• Educate partners on cybersecurity risks and best practices.
• Participate in cybersecurity councils and working groups.
• Coordinate between regional departments and central cybersecurity teams.

About You

• Bachelor’s degree in Information Security, Computer Science, Engineering, or related field.
• Experience engaging with management on security risk reporting.
• Knowledge of European regulations like GDPR.
• 6+ years in cybersecurity, with experience in business partnering.
• Understanding of cybersecurity principles, risk frameworks (NIST, CIS, PCI), and security tech.
• Familiarity with AI security risks and governance frameworks (NIST AI RMF, EU AI Act).
• Relevant certifications (e.g., CISSP, CISM, CRISC).

Levi Strauss & Co. is an equal opportunity employer. We value diversity and inclusion.

Location

London, United Kingdom

Employment Type

Full-time

#J-18808-Ljbffr