Sr. Business Information Security Officer (BISO)
Department: Information Technology – Enterprise Security Location: Grapevine, TX or Cranberry Township, PA (Remote) Position Overview The Sr. Business Information Security Officer (BISO) serves as the primary bridge between Omnicell’s Enterprise Security Team and designated lines of business and functions. This role helps business units understand, adopt, and operationalize security policies and processes in a way that enables secure growth while meeting regulatory, customer, and audit expectations. Aligns security priorities with business strategies and go‑to‑market plans. Translates technical risk into clear business and regulatory impact for leaders. Simplifies and integrates security into processes, projects, and technology initiatives. Builds trust and credibility with executives, product teams, IT, Legal, and Privacy. The BISO partners closely with Enterprise Security pillars (Cyber Architecture & GRC, SecOps, Product/Cloud Security, IAM, Third‑Party Risk, Resilience), Privacy, Legal, and commercial, services, and operations leadership. Qualifications & Experience 7+ years of experience in information security, cybersecurity, or IT risk management, with at least 3+ years in a customer‑ or business‑facing security role (e.g., BISO, Security Architect, GRC, Product/Cloud Security, or similar) Demonstrated experience working with complex, multi‑business‑unit or enterprise stakeholders, ideally in highly regulated industries (e.g., healthcare, life sciences, finance, or public sector) Proven ability to translate complex technical risks into business language for VP‑ and director‑level audiences Strong understanding of:Enterprise security programs (policies, standards, risk registers, CAPs) Core domains such as IAM, network and cloud security, data protection, third‑party risk, incident response, and BCDR How security controls are evidenced and evaluated in audits and certifications (e.g., HITRUST, SOC 2, HIPAA/HITECH compliance activities) Excellent written and verbal communication and storytelling skills, including the ability to create executive‑ready narratives and lead productive discussions with non‑security stakeholders Strong influence, relationship‑building, and prioritization skills in a complex, matrixed organization
Preferred Qualifications
Bachelor’s or MBA degree in Cybersecurity, Information Systems, Computer Science, Business, Risk Management Professional certifications such as CISSP, CISM, CRISC, CISA, CCSK/CCSP, CIPM/CIPT, CGEIT, or equivalent Experience in healthcare, medical devices, digital health, or SaaS/cloud services supporting regulated customers (e.g., hospitals, health systems, payers) Prior experience as a BISO, regional security lead, or customer‑facing security architect serving healthcare or other highly regulated markets Working Conditions Corporate office, hybrid, or remote work arrangements within the United States, consistent with Omnicell policies Collaboration across US time zones, with coordination with international stakeholders as needed Flexibility to support critical security incidents, urgent vulnerabilities, or customer escalations outside of standard business hours when required Travel Requirements Occasional travel (10–20%) to:Omnicell US offices and hubs Customer and partner sites Periodic enterprise or security team meetings; limited international travel as needed