Sr. Manager Information Security & Compliance

The Ritz-Carlton Yacht CollectionFort Lauderdale, FL
Match Resume

About The Position

Join the Ritz-Carlton Yacht Collection: Where Every Voyage is a Symphony of Luxury Embark on an extraordinary journey with the Ritz-Carlton Yacht Collection, an exquisite extension of the renowned Ritz-Carlton brand, dedicated to redefining ultra-luxury hospitality at sea. As a "Lady or Gentleman" of our esteemed team, you'll be entrusted with the art of delivering the impeccable "Gold Standards" that have made the Ritz-Carlton an epitome of excellence across the globe. The Essence of Excellence: The Gold Standards The Gold Standards are the bedrock of the Ritz-Carlton experience, setting us apart in the industry and establishing a legacy of unparalleled service. These standards embody the values and culture that define our brand, and serve as the compass guiding our every endeavor. The Employee Promise At The Ritz-Carlton, our Ladies & Gentlemen are the most important resource in our service commitment to each other and our guests. By applying the principles of trust, honesty, respect, integrity, and commitment, we empower and nurture talent to the benefit of each individual and the company. The Ritz-Carlton fosters a culture where all are valued, quality of life is enhanced, individual aspirations are fulfilled, and The Ritz-Carlton Mystique is strengthened. Join us on a journey where every day is a testament to the highest standard of luxury and service. Apply now and be part of an unparalleled legacy in hospitality. Job Summary The Senior Manager, Information Security & Compliance is responsible for establishing, operating, and continuously improving the company’s IT security, risk, and compliance programs across both shoreside and shipboard technology environments. This role ensures that enterprise IT systems, cloud platforms, applications, and data are secure, compliant, and resilient. The position requires a hands-on, IT-centric security leader who can embed security into infrastructure, cloud architecture, DevOps pipelines, and enterprise platforms, while operating effectively in a lean team model.

Requirements

  • Bachelor’s degree in Information Technology, Computer Science, or related field
  • 7+ years of experience in IT security, risk, or compliance, with at least 3 years in a leadership or senior role
  • Strong experience securing: Cloud Security Architecture (AWS, Azure), Enterprise IT systems and infrastructure, and Identity and access management systems
  • Hands-on experience with: PCI DSS, SOC 2, ISO 27001, NIST frameworks and Vulnerability management and IT risk management
  • Proven ability to integrate security into IT operations and DevOps environments
  • Experience working in lean teams, leveraging MSSPs and external partners.

Nice To Haves

  • Experience with SSO/MFA integrations, Zero Trust architecture, and security governance.
  • Familiarity with security tools (SOC/SIEM, vulnerability scanners, cloud-native security services).
  • Experience in maritime, cruise, hospitality, or distributed IT environments
  • Certifications appreciated - Security+, CISM, or CISSP.

Responsibilities

  • Define, implement, and enforce IT security policies, standards, and procedures across all enterprise systems (cloud, on-prem, and shipboard).
  • Own and operate the Information Security Management System (ISMS) aligned with ISO 27001 / NIST frameworks.
  • Establish governance processes to ensure security is embedded in all IT initiatives and system lifecycle activities.
  • Maintain asset inventory and data classification in partnership with application and infrastructure owners.
  • Lead IT-centric risk assessments across: Enterprise applications, Cloud platforms (AWS, Azure) and Infrastructure and networks (including shipboard systems)
  • Oversee compliance programs including: PCI DSS (primary focus), SOC 2, ISO 27001, NIST, HIPAA (as applicable), and Privacy requirements (GDPR, data protection regulations)
  • Maintain a centralized IT risk register and track remediation plans.
  • Coordinate IT audits, control testing, and evidence management.
  • Establish and govern security architecture standards for IT systems, including Cloud-native environments (AWS, Azure) and Enterprise platforms (e.g., Salesforce, Snowflake, SaaS ecosystem).
  • Partner with IT and DevOps teams to embed security into: CI/CD pipelines (DevSecOps), Application development lifecycle and Infrastructure provisioning and configuration.
  • Define and enforce standards for Secure configurations, Logging and monitoring and Encryption and key management.
  • Lead IT initiatives for modern identity architecture, including: Single Sign-On (SSO), Multi-Factor Authentication (MFA), Zero Trust principles and Privileged Access Management (PAM)
  • Standardize and centralize identity governance across enterprise systems and shipboard environments.
  • Oversee IT security operations in partnership with SOC/MSSP providers, including: Monitoring and alerting, Vulnerability management programs, Endpoint, network, and cloud security tooling
  • Own and lead the IT Incident Response Program: Develop and maintain response plans and runbooks, Coordinate investigations for all IT security incidents, Conduct root cause analysis and remediation tracking, Execute tabletop exercises and response testing.
  • Ensure IT security controls extend to shipboard infrastructure and systems, including: Ship-to-shore connectivity, Guest-facing platforms and crew systems, and Operational IT systems aligned with Safety Management System (SMS)
  • Collaborate with shipboard IT and operations teams to address unique constraints (bandwidth, remote environments, system distribution).
  • Lead IT vendor security program, including: Security due diligence and onboarding, Risk assessments of SaaS, cloud, and technology vendors, Ongoing monitoring and contract enforcement
  • Ensure third-party integrations meet IT security and compliance standards.
  • Develop and deliver a security awareness program with strong alignment to IT usage, tools, and risks.
  • Provide guidance and mentoring to: Infrastructure teams, Cloud engineers and Application developers
  • Promote secure practices across IT operations and development teams.
  • Deliver IT-focused security reporting to senior leadership, including: Risk posture, Vulnerability trends, Compliance status (e.g., PCI readiness) and Incident metrics
  • Facilitate IT security governance forums (e.g., Security Steering Committee).
  • Contribute to IT security budgeting and tool/vendor strategy.

Benefits

  • Competitive compensation and opportunities for advancement

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Senior

Job Search Resources

Similar Sr. Manager Information Security & Compliance job opportunities

Information Security Compliance Analyst
Bonterra
Bonterra • Remote-US-Texas, TX2d • $76,000 - $100,000
Information Security Compliance Analyst
CooperCompanies
CooperCompanies • Victor, NY10d • $94,220 - $125,626
🔥 New JobInformation Security Manager
Sinclair Broadcast Group
Sinclair Broadcast Group • Hunt Valley, MD10h • $99,000 - $132,500 • Hybrid
🔥 New JobInformation Security Manager
Sinclair Broadcast Group
Sinclair Broadcast Group • Hunt Valley, MD5h • Hybrid
Sr Project Manager - Information Security
AEG Worldwide
AEG Worldwide • Los Angeles, CA13d
Sr. Manager Information Security Governance
CIBC
CIBC • Chicago, IL2d • $160,000 - $190,000 • Hybrid

Tools

Templates & Examples

Resources

Comparisons

Company

Over 4 Million Users
Free AI tools and resources to help you land your next job, faster
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service