Business Information Security Officer

Your Role:

As a Business Information Security Officer (BISO) at Digital Realty, you will serve as the strategic security leader for the entire European Union (EU), bridging business objectives with robust cybersecurity practices. Your role is critical in shaping and executing security programs that protect enterprise and operational technology environments while ensuring compliance with global regulations including NIS2 and DORA.

This position is high visibility and extreme responsibility including clauses under EU regulations levying person responsibility for technical audit outcomes as well as reporting to the Managing Director of EMEA and the Board of Directors in the EU Main Establishment country. Further this position assigns responsibility for Global Operational Technology security architecture and program functions.

You will lead security planning, architecture design, risk analysis, and governance initiatives, driving alignment between technical teams and business stakeholders, reporting directly to the CISO. Acting as a trusted advisor, you will champion security integration across projects, oversee program delivery, and foster a culture of resilience and innovation. This position requires strong leadership, deep technical expertise, and the ability to manage complex programs that span IT, OT, and regulatory compliance.

What you’ll do

Strategic Leadership & Governance

• Define and execute the enterprise security architecture roadmap aligned with business objectives and regulatory mandates (NIS2, DORA, ISO27001, SOC2, etc.).

• Lead security governance programs, ensuring adherence to contractual obligations and Service Level Agreements (SLAs).

• Drive cross-functional alignment on cybersecurity priorities and risk posture.

• Lead a team of technical ISSOs in sub-regions

• Update and interface all EU sub-region MDs as appropriate.

Security Architecture & Design

• Architect and implement advanced security solutions for IT and OT environments, ensuring scalability and resilience.

• Oversee integration of security controls into cloud, data center, and network infrastructures.

• Establish secure design principles for emerging technologies and critical systems.

Regulatory Compliance & Risk Management

• Ensure compliance with NIS2 DORA and other global regulatory frameworks through robust policies and controls.

• Conduct enterprise-wide risk assessments, vulnerability management, and security audits.

• Develop and maintain incident response and disaster recovery strategies.

Operational Technology Security

• Lead Global OT security initiatives, including segmentation, monitoring, and threat detection for industrial control systems.

• Collaborate with operations teams to secure physical and logical assets across global facilities.

Program & Stakeholder Management

• Drive all deliverables establishing the EU Cyber Program with a high-focus on Compliance Deliverables

• Manage large-scale security programs using Agile methodologies, delivering on time and within budget.

• Prepare executive-level reports on security metrics, compliance status, and program performance.

• Serve as the primary liaison for cybersecurity communications across internal and external stakeholders.

Team Development & Mentorship

• Build and lead a high-performing security architecture team.

• Direct and Manage high visibility Information Systems Security Officers (ISSOs)

• Mentor senior engineers and managers, fostering professional growth and technical excellence.
  

What you’ll need

• Strong understanding of technologies, network operations and Data Center Ops.

• Familiar with GRC tools such as, ServiceNow is highly preferable, but not mandate.

• Curiosity/Preparing for Cyber Security Certifications (CISM/CISSP/OSWE/ etc.)

• Basic knowledge about SOC2, ISO27001, NIST 800-53a, NIST 800-171, FedRAMP, SOX

• Strong knowledge of OT systems and OT system security

• Strong knowledge of network security and architecture