Information Security Officer (BISO) - Technology Risk & Vulnerability Management

Mount Laurel, NJ
job summary:
(Must be able to go onsite in Mount Laurel, NJ two days a week)

Job Title: Business Information Security Officer (BISO) - Technology Risk & Vulnerability Management

Role Summary

We are seeking a dedicated and experienced Business Information Security Officer (BISO) to support cybersecurity alignment and risk mitigation for US-based applications. This role focuses heavily on overseeing "Currency Uplifts"-the critical process of updating applications and their underlying infrastructure away from end-of-support (EOS) tools, infrastructure, and solutions.

The successful candidate will be responsible for validating risk assessments, tracking control exceptions, and ensuring all assets within the portfolio meet established corporate security standards. Acting as a vital bridge, this role provides reporting and visibility to the US Governance, Risk, and Compliance (GR&C) team to proactively identify out-of-compliance assets and drive risk reduction.

Core Responsibilities

Risk Assessment & Validation: Partner with core BISOs, Business Asset Owners (BAOs), and Technology Asset Owners (TAOs) to review, update, and complete Technology Asset Risk Assessments (TARAs) to identify inherent risk, and Control Gap Assessments (CGAs) to evaluate residual risk.

Scope & Compliance Governance: Act as the gatekeeper to ensure all active projects stay strictly within the defined scope of the currency uplift mandate. Track control exceptions and ensure strict alignment with corporate security frameworks.

Cross-Functional Collaboration: Serve as the primary liaison between specialized currency teams and the broader US BISO organization. Participate heavily in weekly alignment meetings, project standups, and stakeholder syncs (occupying approximately 50% of the daily schedule).

Vulnerability Tracking & Reporting: Monitor and track the overall success of currency uplifts against key metrics, specifically focusing on the reduction of asset vulnerabilities, control gaps, and End-of-Life/End-of-Support (EOL/EOS) concerns.

Metrics & Dashboards: Compile and deliver weekly tracker reports identifying work completed, project milestones achieved, and risk escalations or concerns.

Candidate Qualifications

Must-Have Technical Skills (Hard Skills)

Information Security Experience: Minimum of 5 years of dedicated experience in Information Security, IT Risk, or Cyber GRC roles.

First Line of Defense (1LoD): Proven experience operating within a 1B Line of Defense framework, directly managing and mitigating operational tech risk.

Risk Assessment Frameworks: Deep practical knowledge of Risk Technology Frameworks, including the execution of inherent and residual risk methodologies.

Core GRC Tools: Hands-on proficiency with Archer (GRC platform) and ServiceNow for tracking, reporting, and workflow management.

Professional Skills (Soft Skills)

Autonomous Execution: Ability to work independently, take ownership of a portfolio, and drive tasks to completion with minimal supervision.

Advanced Time Management: Highly organized with the ability to balance heavy meeting schedules (~50% of time) with deep-work analytical tracking and reporting.

Communication & Influence: Strong internal stakeholder management skills, with the ability to cleanly communicate risk concepts to both technical (TAOs) and non-technical (BAOs) partners.

Nice-to-Have Qualifications

Industry-standard security certifications such as CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), or equivalent risk/security training.

Position Context & Logistics

Interaction Landscape: 100% internal stakeholder interaction (No external client-facing responsibilities).

Data Access: This position is purely governance and risk-focused; the contractor will not have access to customer production data.


location: Mount Laurel Township, New Jersey
job type: Contract
salary: $80 - 85 per hour
work hours: 8am to 5pm
education: Bachelors

responsibilities:
Core Responsibilities
  • Risk Assessment & Validation: Partner with core BISOs, Business Asset Owners (BAOs), and Technology Asset Owners (TAOs) to review, update, and complete Technology Asset Risk Assessments (TARAs) to identify inherent risk, and Control Gap Assessments (CGAs) to evaluate residual risk.
  • Scope & Compliance Governance: Act as the gatekeeper to ensure all active projects stay strictly within the defined scope of the currency uplift mandate. Track control exceptions and ensure strict alignment with corporate security frameworks.
  • Cross-Functional Collaboration: Serve as the primary liaison between specialized currency teams and the broader US BISO organization. Participate heavily in weekly alignment meetings, project standups, and stakeholder syncs (occupying approximately 50% of the daily schedule).
  • Vulnerability Tracking & Reporting: Monitor and track the overall success of currency uplifts against key metrics, specifically focusing on the reduction of asset vulnerabilities, control gaps, and End-of-Life/End-of-Support (EOL/EOS) concerns.
  • Metrics & Dashboards: Compile and deliver weekly tracker reports identifying work completed, project milestones achieved, and risk escalations or concerns.
qualifications:
Candidate Qualifications

Must-Have Technical Skills (Hard Skills)

Information Security Experience: Minimum of 5 years of dedicated experience in Information Security, IT Risk, or Cyber GRC roles.

First Line of Defense (1LoD): Proven experience operating within a 1B Line of Defense framework, directly managing and mitigating operational tech risk.

Risk Assessment Frameworks: Deep practical knowledge of Risk Technology Frameworks, including the execution of inherent and residual risk methodologies.

Core GRC Tools: Hands-on proficiency with Archer (GRC platform) and ServiceNow for tracking, reporting, and workflow management.

Professional Skills (Soft Skills)

Autonomous Execution: Ability to work independently, take ownership of a portfolio, and drive tasks to completion with minimal supervision.

Advanced Time Management: Highly organized with the ability to balance heavy meeting schedules (~50% of time) with deep-work analytical tracking and reporting.

Communication & Influence: Strong internal stakeholder management skills, with the ability to cleanly communicate risk concepts to both technical (TAOs) and non-technical (BAOs) partners.

Nice-to-Have Qualifications

Industry-standard security certifications such as CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), or equivalent risk/security training.


Equal Opportunity Employer: Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other legally protected group status.

At Randstad Digital, we welcome people of all abilities and want to ensure that our hiring and interview process meets the needs of all applicants. If you require a reasonable accommodation to make your application or interview experience a great one, please contact [email protected].


Pay offered to a successful candidate will be based on several factors including the candidate's education, work experience, work location, specific job duties, certifications, etc. In addition, Randstad Digital offers a comprehensive benefits package, including: medical, prescription, dental, vision, AD&D, and life insurance offerings, short-term disability, and a 401K plan (all benefits are based on eligibility).

This posting is open for thirty (30) days.

Posted 2026-07-10

Recommended Jobs

Physical Therapist - Travel Contract

Jackson Therapy Partners
Sayreville, NJ

Looking for a change of scenery and a chance to help others. Join a traveling Physical Therapist role in Sayreville, NJ working in an outpatient orthopedic setting. You will help patients recover fro…

View Details
Posted 2026-06-28

AEM Developer (Newark, NJ)

CEDENT
Newark, NJ

~10+ years’ experience in AEM Hands-on experience programming in Web Technologies like JSP, JavaScript, XML, XPATH, AJAX, JQuery, Adobe APIs, Apache Sling, OSGi bundles, Apache Web Server. ~ Deep un…

View Details
Posted 2025-12-08

Delivery Associate

SMS Delivery LLC
Paterson, NJ

Job Description Job Description SMS DELIVERY LLC Teterboro, NJ $24.50 per hour Full Time/ Part Time HIRING IMMEDIATELY: 26 FT BOX TRUCK DRIVERS $24.50 PER HOUR Prescreening call a…

View Details
Posted 2026-05-29

General Dentist

Radius Staffing Solutions
Laurel Springs, NJ

Job Description Job Description About the Opportunity & Location A well-established, multi-specialty dental practice near Laurel Springs, NJ, is seeking a compassionate and experienced General…

View Details
Posted 2026-06-08

Personal Trainer

Crunch Fitness - Morris Plains/Stanhope/Toms River
Stanhope, NJ

Job Description Job Description Benefits: Bonus based on performance Employee discounts Free uniforms Opportunity for advancement Wellness resources Training & development Jo…

View Details
Posted 2026-04-01

ASST. CASE MANAGER, DRC

The GEO Group
North Brunswick, NJ

Job Description Job Description Overview Are you looking for a career you can feel good about? We hire only those that strive to do their best. By joining our family, you'll receive the honor …

View Details
Posted 2026-07-10

Clinical Operations Coordinator - SUD Network

Avenues Recovery
Toms River, NJ

Job Description Job Description Avenues Recovery Center is a nationwide network of drug and alcohol rehabilitation centers with eighteen locations across seven states. We provide individualized,…

View Details
Posted 2026-07-04

Bilingual Application Processor

United Merchant Services
Hackensack, NJ

Job Description Job Description United Merchant Services, Inc. (dba Bluu) is a New Jersey-based, comprehensive payment processing company for merchants nationwide. UMS continues to introduce inno…

View Details
Posted 2026-03-27

Restaurant Server

CS RESORT MANAGER
Hamburg, NJ

Job Description Job Description Crystal Springs Resort is seeking experienced Restaurant Servers who are passionate about delivering exceptional food & beverage service and creating memorable g…

View Details
Posted 2026-07-02