Senior Manager, Information Security & Compliance

Senior Manager, Information Security & Compliance

WHAT YOU’LL DO:

The Senior Manager, Information Security & Compliance is responsible for leading AAA Washington’s enterprise information security, risk management, and compliance programs. This role provides strategic direction and operational leadership to protect organizational data, systems, and technology assets while ensuring compliance with applicable laws, regulations, and AAA standards. The position serves as a trusted advisor to executive leadership and acts as the organization’s primary authority during significant cybersecurity events.

WHO WE ARE: 

At AAA Washington, we equip our members with trusted service and expertise to confidently travel through life. We provide our members with best-in-class roadside assistance, discounts and rewards, travel services and insurance. For over 120 years, we’ve served our members, not shareholders, so our growth supports innovation for the Club today and for the future. Seeking to reflect the communities we serve and create an inclusive culture, we encourage employees to bring their full self to work and support applicants from all backgrounds, abilities and walks of life to apply.

WHY YOU’LL LOVE WORKING AT AAA WASHINGTON:

You’ll play an important role in bringing AAA Washington’s spirit of service and peace of mind to our membership. Consistently ranked as one of the Best Places to Work by Puget Sound Business Journal, we aim for work-life balance across the organization. We support hybrid and remote work options for many positions based in our corporate office (Bellevue, Washington) along with some of the best benefits in the region!

ESSENTIAL DUTIES/RESPONSIBILITIES:

Strategy, Governance & Leadership

• Provide strategic leadership for AAA Washington’s information security, risk management, compliance programs.

• Advise and collaborate with the executive leadership team to establish information security objectives, priorities, and risk tolerance.

• Lead information security governance processes, including chairing the IT Risk & Governance Committee and guiding enterprise security and risk decisions.

• Establish annual and long‑range security and compliance goals, metrics, maturity models, and a roadmap for continuous program improvement.

• Represent AAA Washington in AAA Federation cybersecurity events, incidents, committees, and taskforce as assigned.

Risk Management, Compliance & Assurance

• Monitor and assess regulatory, legal, and industry requirements impacting the organization, including federal and state laws, AAA standards, PCI DSS, and industry‑specific compliance obligations.

• Develop, implement, and maintain enterprise security policies, standards, and practices to safeguard sensitive and protected information.

• Oversee internal security control testing, risk assessments, and remediation efforts for information and technology systems.

• Partner with external auditors on security audits and assessments; track audit scope, timelines, findings, and responses.

• Lead security due diligence for new technologies, third‑party vendors, data‑sharing agreements, acquisitions, and strategic investments.

Security Operations & Incident Response

• Provide executive leadership for cybersecurity incident response.

• Act as the primary control point during significant information security incidents, ensuring effective coordination, communication, and recovery.

• Coordinate with the VP of IT to convene ad hoc security committees and lead breach response and notification activities as required.

• Evaluate emerging technologies and ensure secure implementation aligned with organizational standards.

Collaboration, Awareness & Enablement

• Work closely with IT leadership, technical teams, and business leaders to integrate security and compliance into daily operations and strategic initiatives.

• Develop and deliver security education and awareness programs across the organization.

• Promote a proactive, risk‑aware culture that balances security, innovation, and business needs.

SUPERVISORY RESPONSIBILITIES:

• Provide direct management to the information security and compliance team.

• Responsible for developing people, improving processes, reducing costs, monitoring quality, delivering results against established objectives, and ensuring a high level of service to internal and external customers.

• Manages assigned employees by recruiting, selecting, orienting, training, coaching, developing, counseling, and disciplining employees; planning monitoring, appraising, and reviewing employee job contributions; maintaining compensation, resolving problems and implementing changes.

MINIMUM QUALIFICATIONS:

• Bachelor’s Degree (BA) in business administration, information systems management, or related field or equivalent experience

• 8 years’ experience in technical engineering role

• 5 years’ experience in management role

CERTIFICATES, LICENSES, REGISTRATIONS:

• Security Certification (CISSP, CISM, CISA)

KNOWLEDGE, SKILLS, ABILITIES:

• Ability to communicate and engage effectively with a diverse audience, including front line technical staff, non-technical staff & management, executives, and vendors/providers.

• Demonstrated operational and technical skills relating to information security.

• Superb communication skills include all aspects of formal and informal communication to individuals, teams, stakeholders, and customers. Strong consensus builder who builds credibility through targeted, accurate, and effective communication.

• Knowledge of key considerations for a sound and effective information security program.

• Advanced knowledge of the Payment Card Industry Data Security Standard and well as the NIST Framework.

• Hands‑on experience evaluating, deploying, and managing security technologies and services.

• Ability to influence, guide, and motivate across organizational boundaries.

• Strong analytical, problem‑solving, and decision‑making skills.

• Ability to thrive in a fast‑paced environment with competing priorities and evolving risk conditions.

• Proven people‑leader with strong coaching and mentoring capabilities.

SALARY:

• Hiring Range: $137,598 - $165,036

BENEFITS WE OFFER:

• Health insurance (medical, vision, dental and prescription drug)   

• Up to 22 days of Paid Time Off (PTO) in the first year 

• Eleven paid holidays in addition to PTO 

• 401(k) with Employer Match   

• Life, Short-Term Disability and Long-Term Disability insurance   

• Flexible Spending Accounts   

• 4 Hours of Volunteer Time Off per year   

• On-Demand Pay / Earned Wage Access  

• Free Premier RV AAA Washington Membership   

• Travel, Insurance, and Membership Discounts and Perks   

• Paid, on-going training throughout your career   

• THRIVE wellness program   

• Tax-advantaged commuter benefit   

• Free parking   

• Financial Literacy Education 

WORK ENVIRONMENT & PHYSICAL DEMANDS:

• Hybrid work from home and office required.

• The physical environment is typical of a standard office space.  It requires the employee to work inside for the duration of work.  Must be able to remain in a stationary position, sitting for more than 50% of the time. This position will require occasionally moving about inside the office to access equipment, cabinets, etc. May work around office equipment which could be noisy, such as copiers and fax machines.

OTHER:

• Equipment used: Computer, Phone, various virtual technologies, other office equipment

• Travel: Rarely Travel

• To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed are representative of the knowledge, skill, and/or ability required.

DISCLAIMER:

Position/Job characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Salary : $137,598 - $165,036