This report provides an overview of the common requirements, responsibilities, experience, and expertise necessary to operate as a business information security officer (BISO). Security leaders can use this as the basis of a job requisition. This research also features the common roles the BISO works alongside, metrics for evaluating this role, and the recommended behaviors and characteristics necessary for a BISO to effectively collaborate with key stakeholders to inform business decisions and move key business initiatives forward securely.