Business Information Security Officer (BISO)

About Digibee

Digibee is an iPaaS that scales integration workflows while reducing cost and technical debt. Rather than requiring specialized integration experts, Digibee enables every developer to quickly build, test, deploy, govern, and monitor integrations across on-premise and cloud environments using a simple yet powerful low-code interface.

Founded in São Paulo, Brazil, in 2017 and headquartered in Weston, Florida, our team is widely distributed throughout the Americas. In May of 2023, Digibee closed a Series B funding round of $60 million that is intended to drive our expansion in the United States.

We are looking for a Business Information Security Officer (BISO) to join our team. As a BISO, you will act as the strategic bridge between our security team and the engineering and product team, translating complex security risks into business-aligned decisions and ensuring that security is embedded into every product, process, and strategic initiative. You will be the trusted security advisor to business leaders, partnering with engineering, product, and executive stakeholders to drive a risk-informed culture while enabling the business to move fast and innovate safely. Our ideal fit combines deep technical security expertise with strong business acumen, exceptional communication skills, and the ability to influence at all levels of the organization - from engineers to C-level executives.

On a typical day, you will:

• Partner with leaders, product owners, and engineering teams to identify, assess, and prioritize information security risks, translating technical threats into business impact and actionable mitigation strategies.
• Serve as the primary security point of contact, providing strategic guidance on security architecture, secure-by-design principles, threat modeling, and risk acceptance decisions for new products, features, and technology investments.
• Lead security risk assessments for major business initiatives & projects, M&A activities, third-party integrations, and cloud migrations, leading certifications (SOC 2, PCI-DSS) , regulatory & client requirements and internal security policies.
• Drive the implementation and continuous improvement of security controls, governance frameworks, and KPIs/KRIs, reporting on the security posture of business units to executive leadership and relevant risk committees.
• Champion security awareness and culture across business units by leading training initiatives, tabletop exercises, and incident response simulations, while also supporting real incident response coordination between business stakeholders and the central security teams.

What you'll need to bring:

• Bachelor's degree in Computer Science, Information Security, Cybersecurity, Information Systems, Engineering, or a related field. Relevant certifications such as CISSP, CISM, CRISC, CCSP, CISA, or cloud-specific security certifications (AWS/Azure/GCP) are highly desirable.
• English language, with the ability to communicate security concepts clearly to both technical and non-technical audiences, including executive leadership.
• Strong experience (8+ years) in information security, with at least 3 years in security consulting, security architecture, or senior GRC role, ideally supporting product-driven or cloud-native organizations.
• Experience in security frameworks and standards, risk management methodologies, threat modeling, secure SDLC practices, and cloud security architecture.
• Familiarity with Product and Cloud Engineering companies, including modern development practices such as DevSecOps, CI/CD pipelines, microservices, Kubernetes, infrastructure-as-code, and API security, along with an understanding of how to embed security without slowing down delivery.
• Ability to work independently and manage multiple projects/roles simultaneously, balancing competing priorities across business units while maintaining strong stakeholder relationships and a strategic, outcomes-oriented mindset.

Our culture

We believe in a highly collaborative work environment that fosters constant development and exchange between teams. We encourage learning, sharing knowledge, and using new technologies to create disruptive ideas - we want to create something great together!

At Digibee, we know it's our people who make the difference. We embrace and value diversity and are dedicated to fostering a supportive and respectful culture within our community.

We are a global integration software company with a Brazilian foundation. Our supportive work environment inspires our employees to give their best. Our people love what they do, we work hard and have fun doing it. We know our integration platform is special, and we’re excited to share it with our team, our customers, our industry, and the world.