As a Business Information Security Officer, you will identify and mitigate cybersecurity risks, drive effective risk-based decisions, and build collaborative partnerships across the organization.
The Opportunity
As a Business Information Security Officer, you will provide state of the art technical and business expertise while being the face of cyber security to key business and IT leaders and teams across the MassMutual enterprise. You will have the opportunity to showcase your technical and business acumen skills across a diverse and inclusive technology department, while also stretching your leadership and communication skills to all levels of talent across business and IT organizations. As Business Information Security Officer, you will be assigned to key areas of MassMutual's enterprise and be responsible for identifying top threats to those business areas, ultimately helping to reduce cyber risk through top-notch cyber risk management.
The Team
The Business Information Security Officer (BISO) sits within MassMutual's Enterprise Technology Experience (ETX) division, within the Enterprise Cyber Security (ECS) department and provides cyber security risk understanding and enables sound cyber risk decision making through the development and maintenance of a relevant, transparent, proactive, and actionable cyber risk landscape.
The Impact:
The Business Information Security Officer enables cyber security risk reduction by working collaboratively with business partners, at all levels, and with all cyber security functions to identify, prioritize and mitigate cyber-security risks. As Business Information Security Officer, you will be responsible for:
The Minimum Qualifications
The Ideal Qualifications
#LI-SC1
MassMutual is an Equal Employment Opportunity employer Minority/Female/Sexual Orientation/Gender Identity/Individual with Disability/Protected Veteran. We welcome all persons to apply. Note: Veterans are welcome to apply, regardless of their discharge status.
If you need an accommodation to complete the application process, please contact us and share the specifics of the assistance you need.
Salary Range: $104,900.00-$137,700.00
As a Business Information Security Officer, you will provide state of the art technical and business expertise while being the face of cyber security to key business and IT leaders and teams across the MassMutual enterprise. You will have the opportunity to showcase your technical and business acumen skills across a diverse and inclusive technology department, while also stretching your leadership and communication skills to all levels of talent across business and IT organizations. As Business Information Security Officer, you will be assigned to key areas of MassMutual's enterprise and be responsible for identifying top threats to those business areas, ultimately helping to reduce cyber risk through top-notch cyber risk management.
The Team
The Business Information Security Officer (BISO) sits within MassMutual's Enterprise Technology Experience (ETX) division, within the Enterprise Cyber Security (ECS) department and provides cyber security risk understanding and enables sound cyber risk decision making through the development and maintenance of a relevant, transparent, proactive, and actionable cyber risk landscape.
The Impact:
The Business Information Security Officer enables cyber security risk reduction by working collaboratively with business partners, at all levels, and with all cyber security functions to identify, prioritize and mitigate cyber-security risks. As Business Information Security Officer, you will be responsible for:
- Identifying and Providing Top Risk Information & Understanding through dedicated education, rich risk metric data, communication and continuous relationship-building with business and IT leaders
- Driving and Enabling Effective Risk-Based Business Decisions for each business area across the enterprise through strong partnership and effective stakeholder management
- Serving as a Trusted Partner to stakeholders by helping design and implement security solutions that deliver positive business results and reduces risk
- Bi-Directionally Bridging Cyber Teams closer to the business and IT portfolios in order to help meet business needs while addressing growing cyber risks
The Minimum Qualifications
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related field; advanced degree preferred.
- 5+ years in Cyber Security, Technology Risk Management, Cyber Security Program Management or a related field
The Ideal Qualifications
- At least 1 of the Industry certifications such as CISSP, CISM, CEH, CompTIA (Security+), AWS (Certified Cloud Practitioner) or GIAC certifications (e.g., GPEN, GWAPT). If no industry certifications, expect at least one will be obtained within the first year.
- Experience with all aspects of cyber-security risk including - identification, analysis, quantification, and remediation strategies.
- Strong relationship management - building and maintaining collaborative partnerships across all levels of an organization.
- Strong technical acumen in cyber security and technology services
- Strong communication skills and ability to lead and influence others.
- Proven ability to articulate the why and to enable fact-based decision making.
- Excellence in Execution - Ensuring commitments are met and ensuring key stakeholders are constantly informed of status.
- Strong leadership qualities and an ability to communicate with all levels of the organization.
- Sound business and technical acumen, judgment and decision-making skills.
- Strong communication and interpersonal skills.
- Self-starter who is willing to take on new challenges in response to the changing cyber threat landscape
- Excellent written and verbal communication skills.
- Demonstrated success in guiding sound cyber risk and security remediation strategies aligned with core business objectives and risk appetite.
- Ability to deal with the ambiguity associated with working in a fast paced and changing environment.
- Experience or knowledge in life insurance and/or financial services products and services.
- Strong understanding of regulatory requirements, compliance frameworks (e.g., PCI-DSS, GDPR), and industry standards (e.g., NIST, ISO 27001).
- Excellent communication skills, with the ability to articulate complex technical concepts to non-technical stakeholders and influence decision-making at all levels.
#LI-SC1
MassMutual is an Equal Employment Opportunity employer Minority/Female/Sexual Orientation/Gender Identity/Individual with Disability/Protected Veteran. We welcome all persons to apply. Note: Veterans are welcome to apply, regardless of their discharge status.
If you need an accommodation to complete the application process, please contact us and share the specifics of the assistance you need.
Salary Range: $104,900.00-$137,700.00
Top Skills
Computer Science
Cybersecurity
Information Technology
MassMutual Boston, Massachusetts, USA Office
Our new Boston campus opened in November in the Seaport neighborhood.
Boston Campus
Just like MassMutual, Boston's Seaport district is surrounded by decades of history, yet is now being recognized as a hub for digital innovation and professional growth. With us you can develop the skills you need to build a successful future and connect with talented and collaborative colleagues working together to help people secure their future and protect the ones they love.
Similar Jobs at MassMutual
Big Data • Fintech • Information Technology • Insurance • Financial Services
The Business Information Security Officer identifies and mitigates cybersecurity risks, engages with stakeholders, and implements security solutions across the enterprise.
Top Skills:
Compliance Frameworks (Pci-DssCybersecurityGdprIso 27001)NistRisk Management
Big Data • Fintech • Information Technology • Insurance • Financial Services
The IAM Engineer - Authentication/Okta Consultant will design, implement, and manage IAM solutions, focusing on Okta integration, ensuring security and compliance, while enhancing user access experiences.
Top Skills:
OauthOktaOpenid ConnectPowershellPythonSAML
Big Data • Fintech • Information Technology • Insurance • Financial Services
As an Information Security Consultant, you will conduct penetration tests, lead threat research, and oversee adversary simulation exercises. Your role includes analyzing intelligence to identify risks, developing threat detection rules, and advising on mitigation strategies. Collaboration with incident response teams is essential for evaluating and enhancing security controls.
What you need to know about the Boston Tech Scene
Boston is a powerhouse for technology innovation thanks to world-class research universities like MIT and Harvard and a robust pipeline of venture capital investment. Host to the first telephone call and one of the first general-purpose computers ever put into use, Boston is now a hub for biotechnology, robotics and artificial intelligence — though it’s also home to several B2B software giants. So it’s no surprise that the city consistently ranks among the greatest startup ecosystems in the world.
Key Facts About Boston Tech
- Number of Tech Workers: 269,000; 9.4% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Thermo Fisher Scientific, Toast, Klaviyo, HubSpot, DraftKings
- Key Industries: Artificial intelligence, biotechnology, robotics, software, aerospace
- Funding Landscape: $15.7 billion in venture capital funding in 2024 (Pitchbook)
- Notable Investors: Summit Partners, Volition Capital, Bain Capital Ventures, MassVentures, Highland Capital Partners
- Research Centers and Universities: MIT, Harvard University, Boston College, Tufts University, Boston University, Northeastern University, Smithsonian Astrophysical Observatory, National Bureau of Economic Research, Broad Institute, Lowell Center for Space Science & Technology, National Emerging Infectious Diseases Laboratories
