Business Information Security Leader - Corporate Systems - Hybrid Bridgewater, NJ or Morrisvil

Business Information Security Leader – Corporate Systems – Hybrid (Bridgewater, NJ or Morrisville, NC)

Syneos Health has three business units, Corporate, Clinical, and Commercial. Each of these units has a unique set of functions and requirements to operate smoothly and efficiently. The Business Information Security Leader (BISL) serves as the senior security executive embedded within an assigned business unit (Clinical, Commercial, or Corporate) accountable for information security across that sector. The BISL works across all departments and teams globally within its assigned business unit.

This role has responsibility for strategic solution design aligned to company-wide objectives.

The BISL works as a security business partner, leading the development and evolution of security strategy for the sector and ensuring it achieves shared business and security goals. The BISL operates as a trusted member of the business‑aligned Syneos Technology Solutions (STS) leadership team while maintaining a strong functional alignment to the Chief Information Security Officer (CISO). The candidate must have a broad understanding of technologies and security strategies and effectively communicate to all levels within the organization.

This role ensures that security is integrated across the full product lifecycle and that business decisions appropriately balance risk, regulatory requirements, and operational objectives.

• Serve as the senior security advisor to the assigned business‑aligned STS leadership team.
• Partner across all departments and teams globally within the assigned business unit.
• Align security priorities with STS business strategy, digital roadmaps, and regulatory requirements.
• Embed security‑by‑design principles into portfolio planning, demand intake and product development processes.
• Inform Information Security priorities with STS product team strategy and goals.
• Represent security requirements in portfolio governance forums.
• Provide senior‑level accountability for the business unit security strategy, ensuring consistent direction, prioritization, and alignment with company-wide objectives while maintaining strong partnership with the CISO.

• Maintain visibility into the aggregated cyber risk posture of the assigned business unit.
• Ensure risk assessments are conducted, partnering with the Risk Management function, for new and materially changed technologies.
• Serve as a security risk advisor to business‑aligned STS leadership, providing mitigation and remediation guidance and tracking risk treatment plans.
• Provide formal risk posture reporting to STS leadership on a defined cadence.
• Escalate roadblocks inhibiting timely mitigation or closure of risks.
• Prevent unmanaged technology risk proliferation.
• Exercise senior decision authority for cybersecurity and technology risk matters within the Business Unit, including oversight of risk acceptance, escalation to enterprise forums, and long-term risk posture considerations.

• Participate in business demand and portfolio review processes to ensure early security engagement.
• Ensure projects receive appropriate security requirements and technical guidance.
• Drive early involvement of regulatory, privacy, and compliance subject matter experts.
• Monitor and drive adherence to enterprise security standards and architectural patterns.
• Deliver strategic solution design aligned to company-wide objectives.

• Ensure business unit adherence to security policies, standards, and regulatory requirements (e.g., Privacy, SOX, GxP as applicable).
• Partner with Compliance, Privacy, Legal and other Risk functions to address control gaps.
• Partner with CISO subject matter experts to support security-related audits, regulatory inquiries, and remediation activities.
• Represent the business unit in enterprise security, risk, and compliance governance forums, providing senior-level input on regulatory risk and remediation priorities.

• Support security…