Analyst, IS Compliance in Miramar, FL at Royal Caribbean Group

Date Posted: 3/24/2021

Job Snapshot

  • Employee Type:
  • Location:
    Miramar, FL
  • Job Type:
  • Experience:
    Not Specified
  • Date Posted:

Job Description

Journey with us! Combine your career goals and sense of adventure by joining our exciting team of employees. Royal Caribbean Cruises Ltd. is pleased to offer a competitive compensation & benefits package, and excellent career development opportunities, each offering unique ways to explore the world.

Position Summary:

Royal Caribbean Group (RCG) is seeking an Analyst in IS GRC Compliance to bolster the IT compliance program developing and communicating IT compliance to a NIST CSF based governance structure.  The successful candidate for this position will assist in the execution of compliance tasks in accordance with stated compliance requirements.  This position will require strong analytical and problem-solving skills, great communication, networking, and IT compliance experience.   RCG is regulated globally so the Analyst should have good working knowledge of privacy laws, IT regulations (specifically SOX, GDPR, & PCI) or the ability to learn them.

The Analyst reports to the IT Compliance Manager and works in a team environment responsible for documenting schedules, procedures and associated program collateral. The Analyst and team, collaborating with other IT staff, will review proposed cloud-based, traditional batch, and other system connectivity through the use of structured interview processes, questionnaires and project participation in order to understand and assess IS compliance requirements and risk.

Essential Duties and Responsibilities:

  • Assists the compliance thought leader and the information security risk program globally. Helps compliance risk leaders facilitate business and IT leaders to risk/reward NIST based methodology
  • Carries out assessments to audit and compliance standards/procedures
  • Tests controls, compares results to established benchmarks
  • Interprets and analyzes data to determine compliance with company controls
  • Records deficiencies and corrective plans; follows up on their resolution
  • Provide status reporting, activity scheduling, artifact collection and management, and other supporting tasks
  • Participates in meetings regarding relevant regulatory considerations and agencies
  • Completes goals assigned from the manager of IT Compliance from the program working alongside leaders to control IT compliance risk for the organization
  • Maintains and reports metrics related to IT compliance program.
  • Collaborates closely with the governance and risk teams as well as business and IT stakeholders to ensure that corporate goals are met
  • Contributes to the IT compliance program and contributes to policy and standards related to IT compliance
  • Builds on IT compliance best practices with fitment to RCG business and operational model
  • Participate in activities pertaining to new or updated compliance rules, laws, regulations and/or standards


Job Requirements

Qualifications, Knowledge, and Skills:

  • Bachelor’s in information technology/Security, Computer Science is preferred, non-technical degrees with Computer Science fundamentals will be considered combined with technology experience
  • At least one Information Security certification such as CISA, CISSP, PMP, CRISC, etc. is preferred
  • 1-3 years of internal/external IT Compliance or Audit experience
  • 2+ years of Information Technology experience
  • 1-3 years of managing projects
  • Good written and verbal communication required
  • Expert with Microsoft Office suite of applications, especially Excel
  • Knowledge of Smartsheet, JIRA/Confluence, and PowerBI a plus
  • IT audit or security technical background preferred
  • Attention to details and produce quality deliverables with the ability to manage multiple priorities and deadlines
  • Employs validation techniques such as edit, check digits and hash totals
  • Ability to thrive in an agile environment, with high sense of urgency and proactive team player
  • Operational knowledge of the deployment of Information Security frameworks such as NIST, ISO, FISMA, etc. is preferred
  • Knowledge of global privacy laws, regulations, and guidelines is required.
  • Ability to learn to articulate IT compliance to employees and third parties at all levels within and outside the organization

It is the policy of the Company to ensure equal employment and promotion opportunity to qualified candidates without discrimination or harassment on the basis of race, color, religion, sex, age, national origin, disability, sexual orientation, sexuality, gender identity or expression, marital status, or any other characteristic protected by law. RCL and each of its subsidiaries prohibit and will not tolerate discrimination or harassment.

Stay Connected!

If you’re interested in career opportunities, but not ready to apply, join our Talent Network to stay connected to us and receive updates on the latest job opportunities and company news.