The Business Information Security Manager (BISM) is a strategic role within Information Security that plays an integral part in the development, implementation, and compliance of information security across the enterprise; serving at the business segment level. The Business Information Security Manager is responsible for managing risks related to information security through direct involvement with the business units. This individual also leads the implementation and translation of enterprise security requirements, policies, and procedures.

• Primary cyber advisor to the business functions and is responsible for innovating and optimizing their products while continuing to maintain a level of security that aligns with the enterprise's risk posture. Serving as an advocate for the business, the BISM maintains a clear focus on information security, risk, and compliance. The BISM will manage and co-ordinate information security activities, programs and initiatives for the business as well as provide security incident support, as needed.

• Whether a part of the acquisition, new business or existing non-integrated companies, analyze industry landscape and corporate objectives to provide a structured playbook and prioritized roadmap for integration with Information Security Shared Services.

• Provide leadership to ensure effective implementation of information security policy, standards and specifications for the business line in cooperation with the enterprise Information Security Program

• Partner with business stakeholders and internal security teams to provide recommendations and take actions to ensure products/services have appropriate security controls embedded and that the risks are appropriately addressed.

  Basic Qualifications:

  Education and Experience: Bachelors and 5 years experience or HS/GED and 9 years experience in information Security, Risk, and Compliance.

Knowledge of Security Risk, Governance and Compliance methods and processes. Knowledge of software development processes particularly in relation to security development.

Knowledge of key network and technical security controls. Security Training and Awareness and Security Incident Management knowledge.

Preferred Qualifications:

Experience: 8+ yrs relevant work experience (Information Security, Technology, Risk, Compliance)

4+ yrs experience in working closely with executive leadership on related responsibilities.  Understanding of risks in banking/financial services sector.

Certifications: CISSP, CISM, CISA

Additional Basic Qualifications:

Must be 18 years of age or older

Deluxe Corporation is an Equal Opportunity / Affirmative Action employer:

All qualified applicants will receive consideration for employment without regard to race, color, creed, religion, disability, sex, age, ethnic or national origin, marital status, sexual orientation, gender identity or presentation, pregnancy, genetics, veteran status or any other status protected by state or federal law. EOE/Minorities/Females/Vet/Disability

Please view the electronic EEO is the Law Poster (https:////www.eeoc.gov/sites/default/files/2023-06/22-088_EEOC_KnowYourRights6.12ScreenRdr.pdf) which serves to inform you of your equal employment opportunity protections as part of the application process.

Reasonable Accommodation for Job Seekers with a Disability: If you require reasonable accommodation in completing this application, interviewing, completing any pre-employment testing, or otherwise participating in the employee selection process, please direct your inquiries to deluxecareers@deluxe.com .