Lead Architect, Security

Journey with us! Combine your career goals and sense of adventure by joining our incredible team of employees at Royal Caribbean Group. We are proud to offer a competitive compensation and benefits package, and excellent career development opportunities, each offering unique ways to explore the world.

We are proud to be the vacation-industry leader with global brands — including Royal Caribbean International, Celebrity Cruises and Silversea Cruises — the most innovative fleet and private destinations, and the best people. Together, we are dedicated to turning the vacation of a lifetime into a lifetime of vacations for our guests.

Royal Caribbean Group’s Information Technology Team has an exciting career opportunity for a full time Lead Architect, Security reporting to the Director, Enterprise Architecture & Engineering.

Position Summary

The Lead Architect, Security must possess extensive knowledge of security architecture principles and best practices, including cloud and network security, data security, and security governance & compliance. The incumbent will collaborate closely with cross-functional teams, including Enterprise Security, Engineering, Product Management, Dat. and Platform teams, to develop secure technology solutions, establish standards, and ensure the organization’s security posture meets industry best practices and regulatory requirements.

The ideal candidate should have a solid understanding of cybersecurity frameworks, risk management, cloud security, and compliance, particularly within the cruise line or hospitality industry. Responsibilities include preparing proposals, recommending solutions for approval, and writing technical designs to ensure adherence to security architecture practices and alignment with the company's technological vision. Moreover, this role promotes, governs, and documents security architecture decisions across relevant programs.

Essential Duties and Responsibilities

• Develop, review, and govern security architecture standards, policies, and best practices.
• Prepare technical proposals, detailed security designs, and solution diagrams for approval and implementation.
• Document security decisions, facilitate governance processes, and maintain comprehensive records for long-term traceability.
• Ensure compliance with regulatory requirements, industry standards, and cybersecurity frameworks relevant to the cruise line and hospitality sectors.
• Lead security architecture initiatives for cloud computing (AWS, Azure, GCP), network security, data protection, and identity & access management to guard against emerging threats.
• Lead the design and implementation of enterprise security architecture, ensuring alignment with business goals and technology strategies.
• Work with application and platform architects and development teams to establish and uphold secure coding practices, security design principles, and vulnerability mitigation strategies across the full stack of application layers, including web, mobile, API, backend, and AI components.
• Ensure adherence to global compliance frameworks such as GDPR, PCI-DSS, NIST, IMO, Maritime Cybersecurity Guidelines, and ISO 27001.
• Evaluate and mitigate security risks by conducting advanced threat modeling, vulnerability assessments, penetration testing, and continuous monitoring to protect systems against cyber threats.
• Work closely with IT, compliance, legal, operations, and business units to integrate security best practices into corporate and shipboard operations.
• Stay ahead of the cybersecurity landscape, evaluating new technologies such as AI-driven security analytics, zero-trust architectures, and blockchain-based identity management to enhance security capabilities.
• Accountable for estimation activities, and quality of estimates, in collaboration with the product teams and peer architects.
• Performs other duties as required.  This job description in no way states or implies that these are the only duties to be performed by the employee occupying this position.  Employees will be required to perform any other job-related duties assigned by their supervisor or management.

Qualifications, Knowledge and Skills

• Bachelor or Master of Science in Engineering, Computer Science, Information Technology, Math or equivalent.
• 7+ years of experience in information security, with at least 3 years in a security architecture leadership role.
• Experience of designing, and architecting IAM stacks including ForgeRock -IAM, Symantec MFA, Iriusrisk – Threat Modelling, and other similar products.
• Solid experience with Akamai WAF, Active Directory, Anti-virus products like Symantec, 0365, and MFA.
• Strong expertise in enterprise architecture frameworks.
• Strong knowledge of enterprise security frameworks such as NIST, ISO 27001, CIS. Hands-on experience with security solutions, including firewalls, SIEM, IDS/IPS, endpoint protection, and encryption technologies.
• Familiarity with security challenges in maritime IT environments, including shipboard networks, satellite communications, and regulatory maritime cybersecurity requirements.
• Cloud Platforms: Experience with at least one cloud provider (e.g., AWS, Azure, GCP) and cloud-native services.
• Data Privacy: Familiarity with regulations like GDPR, CCPA, or HIPAA.
• Preferred Cybersecurity Certifications such as Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP)

We know there's a lot to consider. As you go through the application process, our recruiters will be glad to provide guidance, and more relevant details to answer any additional questions. Thank you again for your interest in Royal Caribbean Group. We'll hope to see you onboard soon!

It is the policy of the Company to ensure equal employment and promotion opportunity to qualified candidates without discrimination or harassment on the basis of race, color, religion, sex, age, national origin, disability, sexual orientation, sexuality, gender identity or expression, marital status, or any other characteristic protected by law. Royal Caribbean Group and each of its subsidiaries prohibit and will not tolerate discrimination or harassment.