Creating Connections and Breaking Down Barriers with the Business Information Security Officer Role

We have all heard the university Information Security Office referred to by many names, centered around the perception of the department of "no." In today's continually changing cyber threat landscape, strengthening the security objective through a business lens drives imperative change throughout organizations and across campuses. As information security continues to evolve to meet the cyber threats we face and the business needs of our organizations, new types of leadership roles are emerging. New security initiatives are most effective when they consist of technology and process. Business information security officers (BISOs) can assist in implementing the latest technology, helping define and operationalize the strategies working best within their unit. Meant to bridge the gap between security and the centralized CISO function, BISOs bring security initiatives from the CISO role and frame how that applies within the work done across units and schools on campus. The result is an understanding by those who are not always quick to adopt security initiatives and an opportunity for a more collaborative and communicative stasis. This session will provide a guided, thought-provoking conversation on the impact and role BISOs bring to develop cyber champions and advocates for security programs across higher education organizations. This session will cover what a BISO is and how to turn your security office from the office associated with “no” into the office of “collaboration.”