As the Global Head of Brand Information Security overseeing nine global brands, this role is critical in ensuring the protection of sensitive information, reputation, and assets across our multi-brand, heterogeneous, and technologically complex, shipboard and shoreside environments. The Global Head of Brand Information Security will be responsible for developing and executing a comprehensive global information security strategy tailored to the unique needs and risk profiles of each brand. She/He will provide strategic direction and guidance to ensure alignment between security initiatives and business objectives for all nine brands. She/He will collaborate with brand and corporate leadership teams to integrate security into brand-specific operations and initiatives.

Responsibilities

Brand-Specific Cybersecurity Oversight:

Devote time to understanding the cybersecurity needs and objectives of each brand/business unit.

• Develop and implement brand-specific cybersecurity roadmaps, ensuring alignment with organizational standards.

• Monitor risks and improve the security posture of the brands.

• Develop strategies to improve the security maturity of the brand.

Collaboration with Security Domains:

Work closely with leaders of Security Domains to align brand-specific cybersecurity initiatives with overarching domain strategies.

• Foster collaboration and information-sharing between brand-specific cybersecurity efforts and domain-level security initiatives.

• Ensure seamless execution of the Security Program within the respective brands.

Incident Response Oversight:

Provide oversight and support for incident management and response.

• Support the cybersecurity response exercises (Crisis Sim and TTX)

Liaison with Security Strategy and Planning:

Collaborate with the "Security Strategy and Planning" team to contribute brand-specific insights and requirements to the overall cybersecurity strategy.

• Participate in strategic planning sessions to ensure brand-specific considerations are integrated into the broader cybersecurity roadmap.

• Build and manage budgets for the brand security teams.

• Brand Alignment:

Liaise with brand leadership (IT and Business) to understand unique cybersecurity challenges and help prioritize security initiatives in the overall plans of the brands based on objective and risk-based reasoning.

• Ensure that cybersecurity measurements are established and provide for escalations as needed.

• Cross-Functional Collaboration:

Collaborate with cross-functional teams, including Security Domains, IT, Legal, and compliance, to integrate cybersecurity measures seamlessly into business operations.

• Participate in cross-functional meetings to address brand-specific cybersecurity concerns and requirements.

Brand Security Education and Awareness:

Promote cybersecurity awareness and best practices within each brand/business unit.

• Conduct training sessions or awareness programs to enhance the cybersecurity resilience of brand-specific teams.

• Team Management:

Manage and mentor a team of Brand/Business Information Security Officers.

• Develop a comprehensive training plan for the domain's team to ensure a high level of expertise, in fulfilling their responsibilities.

• Vendor management:

Responsible for cultivating and maintaining strong relationships with external suppliers.

• This includes release of requirements for the domain, support in negotiations, ensuring vendor compliance with agreed-upon and maximizing the benefits of the contract.

Requirements

• Bachelor’s degree or higher in the field of Engineering, Computer Science, Business Informatics, Information Technology, Information Security, or equivalent advanced technology field of study. Management degrees are a plus.

• Desired to have one or more of the following certificates: CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager).

• A minimum of 10 years of managerial and leadership experience in global-scale cybersecurity organizations.

• Possess a well-rounded set of high-level skills across various GISCS domains. Additionally, the candidate should have a comprehensive understanding of security operations, emerging technologies, and project management, as well as strong team management.

• Team management and stakeholder management; strong communication and collaboration skills, allowing the candidate to effectively convey complex technical concepts to diverse stakeholders and foster cooperation across security domains. Skilled at mentoring and motivating staff, communicating goals and other corporate initiatives, and driving to results.

• This position is classified as “in-office.” As an in-office role, it requires employees to work from a designated Carnival office in South Florida, Monday through Thursday each week. Employees may work from home on Friday. Candidates must be located in (or willing to relocate to) the Miami/Ft. Lauderdale area.

At Carnival, your total rewards package is much more than your base salary. All non-sales roles participate in an annual cash bonus program, while sales roles have an incentive plan. Director and above roles may also be eligible to participate in Carnival’s discretionary equity incentive plan. Plus, Carnival provides comprehensive and innovative benefits to meet your needs, including:

Health Benefits:

Cost-effective medical, dental and vision plans

• Employee Assistance Program and other mental health resources

• Additional programs include company paid term life insurance and disability coverage

Financial Benefits:

401(k) plan that includes a company match

• Employee Stock Purchase plan

Paid Time Off:

Holidays – All full-time and part-time with benefits employees receive days off for 8 company-wide holidays, plus 2 additional floating holidays to be taken at the employee’s discretion.

• Vacation Time – All full-time employees at the manager and below level start with 14 days/year; director and above level start with 19 days/year. Part-time with benefits employees receive time off based on the number of hours they work, with a minimum of 84 hours/year. All employees gain additional vacation time with further tenure.

• Sick Time – All full-time employees receive 80 hours of sick time each year. Part-time with benefits employees receive time off based on the number of hours they work, with a minimum of 60 hours each year.

Other Benefits:

Complementary stand-by cruises, employee discounts on confirmed cruises, plus special rates for family and friends

• Personal and professional learning and development resources including tuition reimbursement