RSM UK Deal Services
Business Information Security Officer

How your CV stacks up
Upload your CV to see how well it fits this job role
?%
As one of the world's largest networks of audit, tax and consulting firms, RSM delivers big ideas and premium service to help middle-market businesses thrive. We are a fast-growing firm with big ambitions -- we have a clear goal to become the premium adviser to the middle market, globally. This vision touches everything we do, motivating and inspiring us to become better every day. If you are looking for a firm where you can build a future and make an impact, then RSM is the place for you.
Make an Impact at RSM UK
The Line of Business, Business Information Security Officer (BISO) supports the integration of cyber security practices within RSM’s Lines of Business. This role acts as a conduit between business teams and the central cyber security function, communicating and embedding security requirements, and ensuring secure delivery of projects and services.
Responsibilities include assessing and managing risks, ensuring compliance with relevant regulations and standards, aligning cyber strategy and Lines of Business strategy and promoting a culture of security integration and awareness.
This is an ideal role for someone experienced in cyber security, risk, and compliance who has experience working with senior stakeholders and delivering business-facing security work.
You'll Make An Impact By
- Manage and maintain the Information Security Management System (ISMS), including development and upkeep of security policies, standards, procedures, and compliance with frameworks such as ISO 27001 and Cyber Essentials Plus.
- Partner with Lines of Business leadership and operational teams to align cyber and business requirements, embed security into operating models, and support projects, new initiatives, and technology solutions.
- Identify, assess, and manage cyber risks through risk assessments, internal audits, and ongoing evaluation of security controls and vulnerabilities.
- Act as the primary information security contact for the Lines of Business, providing guidance, coordinating with the central security team, and supporting client and supplier assurance activities.
- Monitor, report, and communicate security risks, compliance status, and emerging threats, providing regular updates to senior management and staying current with industry trends and innovations.
Reasons to use Rodeo
I’m in my final year doing Economics and I don’t know whether to apply for grad schemes now or do a masters first. What do you think?
Honest answer — it depends on where you want to end up. A lot of top grad schemes (Big 4, civil service, banking) don’t need a masters. Let’s look at the ones you’d be competitive for now, and we can decide if a masters actually adds anything.
Also worth knowing: most autumn 2026 applications are open now. Timing matters more than you think.
Start with a chat, not a search bar
Grad scheme, placement, apprenticeship? Not sure what you want yet — that's fine. Your agent talks it through with you and turns "I have no idea" into a shortlist.
Graduate Consultant — 2026 Scheme
Why you're a good match
StrongYour economics background and your summer at a regional bank line up with what PwC looks for on the consulting scheme. Applications close in four weeks.
See breakdownIt searches the market for you
Every day your agent scans the market matching roles against what actually matters to you, not just keywords on a CV.
Why you're a good match
You’ve got the grades and the economics background, and your bank internship is exactly the experience this scheme looks for. Apply soon — deadlines close within the month.
Experience fit
Your summer at the bank plus your econometrics coursework map directly to the day-one responsibilities on this scheme — client modelling, market briefings, and deal support.
Only hits
No noise. No "maybe this fits." Just roles with a clear explanation of why they're right — and where to focus when applying.
What We Are Looking For
Are you someone who thrives on variety, loves learning new things, and enjoys connecting with people? If you can spot inefficiencies in everyday life and are passionate about making improvements, this role is perfect for you!
We value diverse experiences and perspectives. Here’s what we’re looking for in our ideal candidate:
- 5–10 years’ experience implementing, managing, and maintaining information security controls, including ISMS administration and maintaining ISO 27001 and Cyber Essentials+ certifications.
- Proven ability to embed cyber security into business services, working closely with operational teams to integrate controls into operating models and processes.
- Experience collaborating with digital operations and application development teams to incorporate security across delivery lifecycles and enable secure innovation.
- Strong stakeholder management, communication, and interpersonal skills, with the ability to influence, provide constructive feedback, and engage at both senior and operational levels.
- Highly organised, analytical, and proactive team player with strong investigative skills and a commitment to continuous personal and team development.


Get help with your application
Your very own career expert that helps elevate your application to the next level.
What We Can Offer You
We recognise that our people are our most important assets. That’s why we offer a flexible reward and benefits package that will help you have fulfilling experience, both in and out of work.
- Hybrid and Flexible working
- 26 Days Holiday (with the option of purchasing additional days)
- Lifestyle, Health, and Wellbeing including financial wellbeing benefits such as financial tools, electric car scheme and access to a virtual GP
- Access to a suite of 300+ courses on demand developed by our in-house Talent Development team
Diversity and Inclusion at RSM
At RSM, we want to create a strong sense of belonging so that people of all identities, backgrounds, and cultures feel they can bring their true self to work. Our clients come from all walks of life. We aim to achieve that same diversity of background, experience and perspective in our own teams, so that we can genuinely understand our client's needs. Diverse teams bring a broader range of ideas and insights to work. That's why we're working together to ensure our firm's principles and processes support a firm culture that embraces difference and strengthens inclusion.
“It took my CV and asked me questions relevant to understanding what kind of jobs to suggest for me. Suggestions were almost perfect. Jobs were exactly what I’ve been looking for.”
Jessica, London
Skills
Location