**Business Unit Information Security Officer (BISO)- Remote**
**Location:** Kansas City, MO, US, 64108 * Implementation of the corporate information security, data protection and privacy policies across the business.
* Plan and manage the network architecture and compliance through direct collaboration with BU leaders, auditors and certification bodies.
* Experience in compliance management activities for PCI-DSS and in-depth understanding of PCI-DSS requirements.
* Coordinate regulatory compliance activities for Data Privacy.
* Collaboration with the Information Security and Security Operations in governance of sensitive information.
* Management and execution of 3rd party assessment activities including Pen Testing.
* Assess and develop mitigations for system security, threats & risks.
* Serve as a cyber security subject matter expert (SME), coordinating and providing multi-disciplinary knowledge, skills, and experience in security architecture, and security management roles and responsibilities.
* Provide consulting services on current and upcoming projects covering all levels of network and IT security architecture.
* Respond to routine support requests from across the business and support development & delivery of Security and Data Protection best practice training
* Tracking & reporting of vulnerability and patching analysis reports and management of resolution activities.
* Provide additional security input on Architecture Review, Project Management and Change Control Boards.
* Respond to BU queries in support of the business programs and projects.
* Support formal investigations of misconduct in collaboration and manage responses to Information Security and Data Protection incidents and their resolution.
* Manage and respond to Data Privacy and InfoSec support requests from across the business in coordination with Information Security.
* Provide advice and guidance to management and BU workforce members.
* Lead Privacy Impact Assessments on new systems and/or activities involving Personal Data, including review/development of contractual Data Protection language in collaboration with IS organization.
* Development and delivery of Information Security & Data Privacy best practices and training.
* Advanced degree
* Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM), CIPP, CISA, or other similar credentials.
* 8+ years of IT security experience working in an infrastructure, programmer or security architecture position / environment.
* High level of personal integrity, and the ability to professionally handle confidential matters and show an appropriate level of judgment, prudence and maturity.
* High degree of initiative, dependability and ability to work with little supervision.
* Must be a critical thinker with strong problem-solving skills.
* Excellent verbal and written communication skills with a wide range of audiences including technologists, executives, business stakeholders and IT team members.
* Experience in the information security field designing and implementing enterprise security solutions in a global context.
* Experience identifying risks, conducting risk assessments and recommending secure solutions.
* Experience with security practices such as security incident response and risk management.
* Experience of information security management frameworks, such as NIST, ISO 27001, ITIL and COBIT.
* Accustomed to leading multiple Security & Privacy risk assessments
* Deep and broad understanding related to security encompassing end-point technologies, applications, application hosting, physical and virtual data center hosting.
* Experience in the design, development, implementation and operational support of mission critical solutions in large scale environments and organizations.
* Experience with contract and vendor negotiations.
Preference will be given to local candidates but could be remote. The salary range for this job is between $100.806 and $168,346. Salary will take into consideration several factors including location.
remote work Privacy management COBIT itil penetration-testing Cybersecurity Certified Information Security Manager (CISM) PCI DSS Certified Information Systems Security Professional (CISSP)