Managing Director, Information Security and Enterprise Architecture (CISO)

Responsibilities

• Cybersecurity Governance & Risk Leadership
• Define and own the enterprise cybersecurity and information risk strategy and data governance.
• Set and enforce cybersecurity policies, standards, and risk tolerances aligned to business objectives.
• Establish and lead cybersecurity governance forums, executive risk reviews, and steering committees.
• Provide executive‑ready reporting on cybersecurity posture, emerging risks, and material incidents.
• Hold authority to require risk mitigation actions, and to escalate or halt technology implementations or production changes that exceed the approved cybersecurity risk appetite.
• Architecture Leadership
• Lead the Architecture & Platform Engineering function, including Enterprise Architecture, Platform Engineering, DevSecOps, IAM, and Cloud Enablement.
• Establish and mature an Enterprise Architecture Center of Excellence (CoE) to define enterprise‑wide technology standards, reference architectures, and architectural guardrails.
• Ensure enterprise architecture provides clear direction while enabling domain‑owned solution architecture across customer‑facing, foundational, and product technology domains.
• Drive alignment across platforms, cloud services, integration patterns, and shared services to reduce complexity and improve scalability, resilience, and security.
• Partner across technology leaders to ensure architectural consistency and sound engineering and security practices across the technology landscape.
• Cybersecurity, IAM and Data Strategy
• Define and execute a multi‑year cybersecurity, IAM, data protection, and enterprise architecture roadmap aligned with business priorities.
• Own enterprise Identity and Access Management (IAM) strategy and governance across workforce, customer, and partner populations, including lifecycle controls, authentication standards, and oversight of IAM platforms.
• Own the enterprise data protection and data governance framework, including data classification standards and protection requirements, in partnership with Legal leadership.
• Enable secure and well‑architected adoption of cloud platforms, digital solutions, and third‑party services.
• Organization and People Leadership
• Build, lead, and retain a high‑performing cybersecurity, architecture, platform, and identity organization.
• Develop leadership depth, succession planning, and ongoing professional development across security and engineering disciplines.
• Own cybersecurity, IAM, architecture, and platform investment strategy, including prioritization and roadmap alignment.
• Manage vendor relationships and guide security, platform, and architecture technology strategy.
• Control Frameworks and Metrics
• Adopt and operationalize appropriate cybersecurity and architecture frameworks based on organizational needs and regulatory requirements.
• Maintain clear standards for information ownership,

Benefits

Additional Information

Join BWH Hotels - Where Passion Meets Purpose At BWH® Hotels, we don't just offer employment opportunities, we create opportunities to be part of something extraordinary. As a global leader in hospitality for nearly 80 years, our vision is to inspire travel through unique experiences. Joining our corporate team means becoming part of a dynamic and inclusive community that values innovation, collaboration, and making a meaningful impact in the travel industry. Headquartered in Phoenix, Arizona, BWH Hotels boasts a powerful portfolio of 18 brands, including WorldHotels™, Best Western® Hotels & Resorts, and SureStay Hotels®, with approximately 4,300 hotels in over 100 countries. We take pride in our top-ranking employee engagement scores and foster a workplace culture where your contributions truly matter. Join us and be part of a team that's shaping the future of hospitality! Job Purpose BWH® Hotels is seeking a strategic and decisive Managing Director, Information Security and Enterprise Architecture to lead the enterprise cybersecurity, data protection, identity and access management (IAM), and enterprise architecture functions. This role acts as the Chief Information Security Officer (CISO) and is accountable for protecting Company and guest data, managing cyber risk, and establishing a coherent, scalable technology architecture that enables the business to operate securely and efficiently at scale. The Managing Director defines and executes the cybersecurity, data governance and enterprise architecture strategy, leads response to security incidents, and oversees platform engineering, DevSecOps, IAM, cloud enablement, and the Enterprise Architecture Center of Excellence (CoE). The role partners closely with executive leadership to balance risk, speed, innovation, and architectural integrity. Cybersecurity and information risk reporting to the Board of Directors, Chief Executive Officer, and senior leadership is provided in partnership with the Chief Technology Officer, supporting executive decision‑making related to cyber posture, architectural direction, incidents, and investment priorities.

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at Best Western? Share your experience