Holland America Line - Miami, FL
posted 24 days ago
Part-time,Full-time - Senior
Remote - Miami, FL
Administrative and Support Services
About the position
The PCL Information Security Director plays a crucial role in safeguarding PCL's information assets, ensuring compliance with security policies, and mitigating potential risks. This position involves overseeing and implementing security initiatives at the brand level, aligning Brand IT activities with corporate security objectives, and addressing brand-specific risks. The director is responsible for reporting compliance with security requirements to the Global CISO and Brand Executives, managing security projects, and ensuring adherence to industry standards and regulations.
Responsibilities
- Prioritize, oversee, and manage security and compliance related projects and business-as-usual activities in the brand.
- Propose and allocate funds for security tools, software, and hardware to protect the company's information assets.
- Budget for risk assessments, penetration testing, and other security assessments to identify vulnerabilities and mitigate risks.
- Ensure compliance with relevant industry standards, regulations, and legal requirements related to information security.
- Plan and provide essential training to the core security team at the brand.
- Track standard key security performance indicators to measure and improve brand security posture.
- Collaborate with security domains, peer BISOs, brand IT leaders, and other stakeholders to share best practices and manage expectations.
- Negotiate and maintain strong relationships with external security vendors.
Requirements
- Bachelor's degree in Business Informatics, Business Administration, Information Technology, Computer Science, or Information Security.
- 8-12 years of experience in roles relevant to information security.
- 2-3 years of team management or leadership experience.
- Deep understanding of network security, security architecture, security operations, and vulnerability management.
- Experience with security technologies and tools, including SIEM, IDS/IPS, endpoint protection, and firewalls.
- Strong knowledge of cybersecurity and privacy principles, frameworks, and best practices.
Nice-to-haves
- Master's degree in Information Technology or Information Security.
- Certifications such as CISM or CISSP.
- Training in Project Management, Product Management, or Agile approach.
- Previously acted as a security manager or senior security consultant in mid to large organizations.
Benefits
- Cost-effective medical, dental, and vision plans.
- Employee Assistance Program and mental health resources.
- 401(k) plan with company match.
- Employee Stock Purchase plan.
- Paid Time Off including vacation and sick time.
- Complementary stand-by cruises and employee discounts on confirmed cruises.
- Tuition reimbursement and personal development resources.
