Search 25,902 current hospitality jobs

Vice President - Information Security-Governance, Risk & Compliance

Posted November 24, 2021

Marriott International
Bethesda, MD
Save this job

About This Job

Job Summary

Lead and oversee teams responsible for information security governance, risk management, third party risk, security assurance, and compliance. Define and drive the strategy for governance, risk management, and compliance programs. Oversee performance of day-to-day operations, facilitate escalation of key issues to senior Global Technology and corporate management levels, and manage continuous improvement and cost reduction opportunities.

Candidate Profile

Education And Experience


  • Bachelor’s degree in Computer Sciences or related field or equivalent experience/certification
  • 12+ years of information technology leadership experience including 5+ years of leading an information security organization
  • 5+ years’ experience implementing and operating programs covering the information security risk, compliance, and governance space with a strong working knowledge of PCI-DSS, NIST CSF, ISO 27001, GDPR and other standards and regulations that impact information security.
  • Direct management of cross functional, sourced, or matrixed teams.


  • Current information security certification, including Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or Certified Information Systems Security Professional (CISSP)
  • Demonstrated success leading large-scale initiatives/transformations
  • Knowledge of information security within an infrastructure environment
  • ITIL v3 Enterprise experience
  • Strong negotiating, influencing and problem resolution skills
  • Proven ability to effectively prioritize and execute tasks in a high-pressure environment
  • Knowledge of business environment, service requirements and hospitality culture
  • Ability to translate information security objectives into mutually beneficial business strategies for the client organizations
  • Demonstrated ability to assess customer/client needs, creatively approach solutions, decide, and influence appropriate courses of action
  • Deep understanding of IT financial structures and ability to manage to corporate financial practices and goals, including drivers of process cost
  • Graduate/post graduate degree

Core Work Activities

Information Security
  • Provides advice on trade-offs required to manage the different levels of risk tolerance and risk exposure across the organization, balanced with risk investment
  • Provides leadership, oversight, governance, and strategic direction related to the information security services that are required to enable the successful delivery of IT services.  
  • Sponsors the efforts on researching, designing, and implementing security policies and controls that are standards based, high performance, highly available and secure in delivering the required business functionality
  • Partners with the Legal Privacy team and other organizations to support compliance to privacy regulations globally.
  • Formally communicates information security risk and topics through the governance structure including presentations to the executive leadership team and board of directors.
  • Leads the evaluation and selection of information security service products impacting the governance, risk, and compliance team.
  • Implements governance based on best practices and validates alignment to projects and major initiatives
  • Reviews analyses of the current environment to detect critical deficiencies and recommend solutions for improvement.
  • Reviews analyses of regulatory landscape, technology industry, and market trends to determine their potential impact on information security
  • Validates that information security strategy and planning is aligned with business strategy and goals
  • Promotes the benefits of information security services to the organization and educates the organization on security concepts
  • Develop and maintain information security strategy documentation and plans.

Managing processes and tools                                                                        

  • Leads the resolution of critical, cross-organizational security issues
  • Establishes current and future security requirements and validates compliance
  • Defines and drives implementation of security standards in conjunction with IT partners
  • Works with direct reports to facilitate consistency of information security programs
  • Validates and implements process/changes
  • Monitors projects for adherence to defined security processes
  • Communicates to opportunities to enhance IT related and corporate standards and policies where necessary
  • Communicates important security program changes that affect service provider and/or Marriott operations

Supports The It Organization

  • Participates in the creation and maintenance of IT’s business strategy and planning
  • Supports and follows defined IT Governance decision rights, standards and practices
  • Emphasizes accuracy and effectiveness of estimating and planning management with team
  • Assists all IT teams with the preparation and monitoring of business/discipline and continent IT budgets

Cultivate A High Performing Team

  • Create a compelling vision, clear direction, and strategy for the team
  • Generate enthusiasm and understanding of the information security vision and how each role contributes to the achievement of that vision
  • Ensure capabilities are developed and resources are aligned to support the strategy
  • Attract, motivate, develop and retain highly skilled leaders, champion and model leadership development
  • Create and sustain a work environment that drives associate engagement and enables business success
  • Ensure appropriate processes are in place and executed to drive collaboration and alignment within the team and with the broader IT organization
  • Serve as a role model and ensure all information security leaders are visible and effective partners with IT counterparts, broader Marriott stakeholders, and service providers

At Marriott, we are committed to putting our associates first and their health and safety are our highest priorities.  This position requires associates to be fully vaccinated for COVID-19 per current CDC standards or approved for a medical or religious accommodation.

Marriott International is an equal opportunity employer. We believe in hiring a diverse workforce and sustaining an inclusive, people-first culture. We are committed to non-discrimination on any protected basis, such as disability and veteran status, or any other basis covered under applicable law.
Save this job

About this Employer

Marriott International

10400 Fernwood Rd.
Bethesda, MD 20817

(301) 380-3000

Corporate Office

Follow us:

What Does it Mean to Be a Marriott International Associate?

It means feeling the power of belonging. We feel it each and every day. It comes from being recognized. It comes from knowing Marriott International sees talent in each of us. And, it comes from working together, as a family, to make our guests feel as much at home as we do. It's why so many of our associates come for a job, but stay for a career.


  • Marriott's managers and leaders take a personal interest in each associate
  • Marriott offers resources and support so associates have what they need to develop to their full potential
  • Marriott is committed to hiring a diverse workforce and sustaining an inclusive culture


  • A work environment that is a "home away from home" for many associates, where co-workers are also friends
  • Service is what sets Marriott apart with our guests, so Marriott associates are empowered to go the extra mile, do the job right, and deliver exceptional guest experiences
  • Working for Marriott gives associates a sense of pride and dignity, where they are empowered to deliver their personal best, every day, for every guest and each other

What Sets Us Apart?

We believe our strength is rooted in our five core values:

  • Putting people first
  • Pursuing excellence
  • Embracing change
  • Acting with integrity, and
  • Serving our world

These values are our legacy and our future. As we pursue our vision of making Marriott the #1 travel company in the world, we never lose sight of our founding principles and our proud heritage. We are constantly innovating and evolving, but we'll always stay true to who we are, because we believe the way we do business is as important as the business we do.