Senior IT Compliance Manager

Posted 26 July by

An exciting opportunity has arisen for a highly capable Senior IT Compliance Manager to join the Information Security, Risk and Compliance department at Carnival UK.

The role is based at the impressive Carnival UK Headquarters in Southampton and is paying a competitive salary plus benefits (including car allowance, discretionary bonus, pension, huge discounts on our cruises and more).

Carnival UK is the operating company for P&O Cruises & Cunard. We provide unforgettable holiday experiences and operate a winning culture to achieve standout success.

We have big plans for the future and our industry is ripe for innovation. With 3 new ships on the horizon, our business is growing rapidly.  As we embrace new technology we have the need to protect our organisation and customers from threats and risk. Be part of the journey and help shape and embed processes & procedures!

This newly created role reporting into the VP, will involve working across all areas of the business to oversee and monitor the proper execution of compliance and regulatory requirements across the Carnival UK business. This includes implementing and maintaining the CUK Technology functions compliance monitoring framework to ensure that our regulatory, contractual and technical requirements are properly identified, implemented and monitored in the most cost effective way.

Key Responsibilities:

  • Ensure a complete understanding of the current and forthcoming compliance requirements and communicate them effectively to accountable owners across the business.

  • Continually improve and streamline compliance processes and procedures to minimise operational impact while ensuring business obligations are met.

  • Provide line management, development and coaching to compliance analysts in the team.

  • Support and educate other departments to ensure accountabilities are understood and technical procedures are properly performed.

  • Identify costs effective proposals to incorporate into the information security strategy to ensure ongoing adherence to requirements.

  • Continually seek opportunities to simplify, consolidate or automate controls in order to reduce operational overheads.

  • Maintain a strong industry understanding of relevant compliance requirements by liaising with external groups and other compliance departments in the organisation.

  • Ensure emerging requirements are identified and incorporated into frameworks and plans as required.

Experience Required:

  • Proven experience in an Information Security or IT Audit related field, including:

    • Experience in Information governance, risk and compliance

    • Implementing risk management processes, procedures and reporting

    • Experience implementing industry complianceframeworks, including GDPR, SOX, PCI DSS

    • Experience with key security frameworks such as NIST, ISO27k, COBIT

  • Strong understanding of IT Process and procedures.

  • Information Security best practise across key subject matter domains, including:

    • Information security policy and governance framework

    • Risk assessment and risk management

    • Security Incident Management and Response

    • Access and Identity Management

    • Business Continuity

    • Secure Development Best Practise

    • Network and application security controls

    • Maritime cyber security regulations and requirements

  • IT Process and procedures:

    • Incident Management

    • Change management

    • Development methodologies

  • Experience working in a large enterprise or international organisation.

  • Line management and people management, including off-shore teams.

Education, Qualifications and Training:


  • Degree level in Information Security / Computer Science.

  • Industry qualifications: CISSP, CISA, CISM, GIAC MSc Information Security or equivalent.

People who will enjoy and excel in this role will naturally:

  • Be highly collaborative and able to explore solution options and form consensus between different teams.

  • Express themselves easily and explain things clearly.

  • Be energised by working with others.

  • Be assertive in communicating new ideas and championing them through to successful implementation.

  • Be motivated by making the difference and like having a positive effect on things.

  • Enjoy working with high levels of autonomy and be self-sufficient.

  • Love finding out about other parts of the business and seeing how their role contributes to the wider company’s goals, while building strong reciprocal relationships across various organisational units.

About Us

A world of opportunities with Britain’s most successful cruise company.

Carnival UK is the UK operating company for Cunard and P&O cruises, with a total of 10 ships, and 3 new ones within the next 4 years. Cunard is a brand of defined sophistication and unparalleled style with a rich heritage of providing exquisite service to our guests for over 175 years. P&O has a long tradition of cruising the world for 180 years and combines genuine service, a sense of occasion and attention to detail.
However this just doesn’t happen – it takes great passion and real dedication to maintain our position at the top. That’s why extraordinary, passionate people are at the heart of our journey delivering the highest standards to our guests, both on ship and shore.
Our Technology function enables us to take our guests all over the world on our ships, as well as support all of the people at Carnival House and other remote locations. Enabling and supporting everything from guests booking their holidays, our brand websites and contact centre, through to ensuring that on-board applications and infrastructure supports these operations across the globe.

Our Perks & Benefits
Fantastic working environment our impressive Southampton HQ
Flexible working arrangements
Professional training and development
Huge discounts on our fantastic cruises
Childcare vouchers
Cycle to work
Discount website
Employee Assistance Programme
Regular employee health screening
Eye tests
Give as you earn
Holiday trading

Reference: 35726726

Bank or payment details should not be provided when applying for a job. is not responsible for any external website content. All applications should be made via the 'Apply now' button.

Report this job