Director, Business Security Leader (BISO)

Job Title:

Director, Business Security Leader (BISO)

Job Description

We're Concentrix. A new breed of tech company — Human-centered. Tech-powered. Intelligence-fueled.
We create game-changing solutions across the enterprise, that help brands grow across the world and into the future. We are trusted by clients across all major sectors, from up-and-coming success stories to iconic Fortune Global 500 brands in over 70 countries spanning 6 continents.
Our game-changers:
Challenge Conventions
Deliver outcomes unimagined
Create experiences that go beyond WOW
If this is you, we would love to discuss career opportunities with you.
In our Information Technology and Global Security team, you will deliver the latest technology infrastructure, transformative software solutions and industry-leading global security for our staff and clients. You will work with the best in the world to design, implement and strategize IT, security, application development, innovation, and solutions in today's hyperconnected world. You will be part of the technology team that is core to our vision of develop, build and run the future of CX.
Concentrix provides eligible employees with an opportunity to enroll in many benefit programs, generally including private medical plans, great compensation package, retirement savings plans, paid learning days, and flexible workplaces. Specific benefits plans will vary by country/region.
We're a remote-first company looking for the absolute best talent in the world. Experience the power of a game-changing career.
#LI-Hybrid

• Concentrix Corporation is looking for a EMEA Geo Business Information Security Officer to join the Global Security team reporting to the Global Business Information Security Officer – Insider Risk and Compliance team.
  
  Role Description:
  The Business Information Security Officer (BISO) – EMEA GEO, leads the Global Security team in EMEA GEO.  The EMEA BISO is responsible for helping the EMEA GEO business improve its information security posture with respect to delivering on commitments to our clients, as well as reducing risk both inside client accounts and throughout the EMEA GEO.  The BISO works closely with the business and clients to drive findings to remediation.  This is achieved by understanding the key assets and processes, identifying the risks and controls, evaluating the residual risk and suggesting incremental controls, as and where appropriate. The BISO engages with the business unit, acting in a consultative way to ensure security policies are being adhered to and incorporated into their processes and procedures, providing valuable guidance and assistance in solving real business problems. The BISO ensures Information Security risks are proactively managed and effectively controlled, mitigated and/or remediated with relevant stakeholders both internal and external. The BISO ensures Concentrix's information is protected by effectively applying the Confidentiality, Integrity and Availability framework as required by Concentrix Information Security policy and standards.

Main Responsibilities:

• Mentor and support security team members
• Drive consistent adoption of Concentrix Information Security Policy and Standards across EMEA GEO business unit(s)
• Ensure that appropriate visibility of non-compliance is raised to country executive leadership and partner with the business to remediate findings
• Proactively identify information security deficiencies or opportunities for improvement and facilitate development of pragmatic solutions to drive consistency country-wide
• Serve as a trusted business executive focal for all things Global Security (excluding physical security)
• Engage with clients and customers as needed to assist the business in attainment of objectives
• Provide regular, timely reporting on information security initiative status across supported business units
• Perform information security reviews and security governance compliance assessment preparation for in scope standards such as: ISO270001, PCI, etc.
• Be “part of the business unit” team and act in a consultative way to help business improve its security posture and adhere to security policies and expected controls
• Ensure new accounts, services, third party or client relationship, etc. has appropriate security controls embedded and that the risks are appropriate addressed
• Participate as needed in business unit and client facing engagements and present as needed
• Assist business in managing and preventing future incidents

Accountability:

• Ensure the security and business process compliance in various accounts to meet business and client expectations.

• Continuously improve the compliance level driven by operational requirement and business growth.
• Partner/support the country BISO with the completion of various security programs/initiatives in the concerned accounts driven by Insider Risk and Compliance team or other teams within Global Security, including but not limited to the GSA and NNI, awareness campaigns. 
• Monitor assigned areas of risk ownership ensuring closures are tracked and presented to required stakeholders.

• Lead and manage the internal review work to achieve efficiency, effectiveness, and timeliness.
• Establish governance and cadence as enforced per guidelines.
• Ensure assigned education sessions are conducted in a timely manner.

Qualifications:

• 10 to 15 years of experience working in risk and compliance management, internal security controls, internal/external security assessment or audit, internal or cyber incident investigations.
  • Or 10 to 15 years’ experience working in the Client Success (BPO industry)
• Exceptional strategic planning and relationship skills, especially with Senior Leaders and Executives.
• Previous experience working in Client facing role is a must.
• Bachelor's/Master’s degree in Information Security or relevant areas.
• Relevant information or Cybersecurity certifications (e.g., CISSP, CISM, CRISC).
• Experience in the BPO industry working in quality, security compliance or delivery strongly preferred.
• Deep understanding of BPO Business Operation and CRM services delivery processes.
• Understanding fraud, process non-compliance and incident investigations as well as various risks in the Client Success (BPO industry), including supporting industries like Banking, Financial, Healthcare/Insurance, Retail, among others.
• Strong understanding of security frameworks and regulatory requirements (e.g., SOC 2, GDPR, ISO 27001, PCI-DSS).
• Exceptional project management and audit oversight skills.
• Excellent communication and leadership abilities, with a collaborative and proactive approach.
• Fluent in French and English.  Arabic is a plus.

Location:

UK, Work at Home, GB

Language Requirements:

Time Type:

Full time

If you are a California resident, by submitting your information, you acknowledge that you have read and have access to the Job Applicant Privacy Notice for California Residents