×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security Data Security

Business Information Security Officer - Finance

Job in New York, New York County, New York, 10261, USA
Listing for: Bloomberg
Full Time position
Listed on 2026-06-13
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, Data Security
Salary/Wage Range or Industry Benchmark: 80000 - 100000 USD Yearly USD 80000.00 100000.00 YEAR
Job Description & How to Apply Below
Location: New York

Business Information Security Officer - Finance

Location:

New York

Business Area:
Legal, Compliance, and Risk

#:

Description & Requirements

What’s the Role?

As a Business Information Security Officer (BISO) for Finance, you will protect the confidentiality, integrity, and availability of the Finance department’s information assets. You will identify and assess security risks and vulnerabilities, enforce security policies and controls, and partner with Finance leadership to ensure a secure posture that supports business needs and critical activities while aligning with the organization’s risk appetite and regulatory obligations.

This role extends beyond a traditional advisory BISO model, with end-to-end ownership of DLP and surveillance controls, including active monitoring, investigation of data events, and escalation of policy violations and high-risk activity within the Finance environment.

In doing so, you serve as the accountable security control lead for Finance, responsible for ensuring controls are effective today and continuously enhancing and scaling these capabilities as business risk, workflows, and technology evolve. This position requires a leader who can operate strategically with senior stakeholders while driving operational rigor and measurable control effectiveness.

We’ll Trust You To:
  • Serve as the Business Information Security Officer (BISO) representative for the Finance organization, aligning information security strategy with business objectives, risk tolerance, and regulatory requirements.
  • Partner with Finance leadership to identify, assess, and prioritize information security risks, translating technical findings into clear business impact and actionable mitigation strategies.
  • Provide security oversight to ensure secure configuration and governance across collaboration platforms, including Microsoft 365, across single-tenant and multi-tenant environments.
  • Advise on secure data sharing practices for highly sensitive financial, regulatory, and strategic data across internal teams and third parties.
  • Lead and support risk assessments and security reviews for Finance systems, workflows, and third‑party vendors, and effectively and succinctly communicate identified risks, recommended mitigation strategies, or formal risk acceptance requirements to business leadership for decision and implementation.
  • Oversee and administer Data Loss Prevention (DLP) and surveillance controls, including policy tuning and alert review to reduce risk of data exfiltration and policy violations.
  • Investigate data events and potential incidents, escalating high‑risk findings to appropriate leadership and driving remediation to closure.
  • Review and interpret security monitoring logs, alerts, and metrics to identify trends, emerging risks, and control gaps.
  • Collaborate cross‑functionally with Security, Technology, Legal & Compliance, Risk and Finance stakeholders to provide cohesive security support to the Finance secure environment.
  • Synthesize complex datasets (e.g., metrics, event trends, audit findings) into actionable insights using Excel, Qlik, or similar dashboarding tools, and present findings in a concise, executive‑ready format.
  • Create tailored cybersecurity trainings and tabletop sessions for the Finance population.
  • Deliver concise, executive‑ready reporting and presentations that clearly articulate risk exposure, control effectiveness, and recommended remediation strategies.
  • Provide security oversight when introducing new business workflows, including SaaS applications and/or AI tools, ensuring appropriate risk assessment and control implementation prior to deployment, in partnership with Security, Technology, and Risk teams as appropriate.
You’ll Need To Have:
  • Experience in information security, technology risk, or cyber risk management, preferably within a financial services or highly regulated environment.
  • Strong understanding of Microsoft 365 architecture, including identity and access management, tenant configurations (single and multi‑tenant models), and secure collaboration controls.
  • Experience implementing or governing secure cloud collaboration environments at scale.
  • Hands‑on experience with DLP…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search