Dr. Robert Failla currently leads the governance, risk, and compliance programs at Royal Caribbean, overseeing a 40-person team responsible for securing the enterprise while enabling business growth. His scope includes enterprise risk management, third-party risk, the Business Information Security Office (BiSO), security awareness, and human risk factors. He sets the mission, vision, and strategy for the organization, ensuring that security initiatives are aligned with business objectives and regulatory requirements.

Under his leadership, the team executes major strategic projects, including eliminating shadow IT and implementing a streamlined, selective governance model based on the principles of Decide, Document, Communicate, Execute, Evaluate, and Adjust. Dr. Failla is also leading the integration of AI into third-party risk management intake and triage processes, as well as enhancing Sarbanes-Oxley 404 compliance efforts, driving efficiency and accuracy across the organization.

In parallel, he is building a cutting-edge human risk factors program that combines security tooling, behavioral analytics, and incentive-driven learning. By scoring behaviors and delivering targeted interventions—awards for high performers and focused training for those who need it—Dr. Failla ensures that the organization’s people are a key strength in its overall security posture. Through this work, he continues to marry technical rigor, strategic insight, and cultural influence to protect critical assets while fostering a resilient, risk-aware organizational culture.