The job below is no longer available.

You might also like

in Bethesda, MD

Use left and right arrow keys to navigate
Hours Full-time, Part-time
Location Bethesda, MD
Bethesda, Maryland

About this job

Posting Date Feb 6, 2018
Job Number 18000BGT
Job Category Information Technology
Location Marriott International HQ, Bethesda, Maryland
Brand Corporate
Schedule Full-time
Relocation? No
Position Type Management

Start Your Journey With Us
Marriott International is the world’s largest hotel company, with more brands, more hotels and more opportunities for associates to grow and succeed.  We believe a great career is a journey of discovery and exploration.  So, we ask, where will your journey take you?

 

Leads a team that drives network, systems, and Cloud security engineering and operations. Validates that the portfolio of infrastructure systems meets current and future security requirements. Manages team accountable for infrastructure security services and technologies and working with service providers to modify and maintain existing infrastructure. Manages the continuous improvement and cost reduction opportunities.

 

CANDIDATE PROFILE 

 

Education and Experience

Required:
  • Bachelor’s degree in Computer Sciences or related field or equivalent experience/certification
  • 8+ years of information technology experience
  • Experience engineering, implementing, and managing security technologies, including system security, network security, intrusion detection and Cloud security.
  • Experience working and delivering on initiatives in cross functional, sourced, or matrixed teams
  • 3+ years of experience leading an information security organization
 
Preferred:
  • Current information security certification, including Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified SCADA Security Architect (CSSA) or Certified Secure Software Lifecycle Professional (CSSLP)
  • 2+ years experience in leading or developing change initiatives in a business or IT organization
  • Knowledge working with DevOps, Agile and waterfall development principles models
  • Experience in establishing or managing engineering and operational processes, structures or tools
  • Experience with cloud-computing infrastructure solutions such as Microsoft Azure, IBM Softlayer or Amazon Web Services (AWS).
  • Working knowledge of industry security frameworks (e.g., ISO2700X, NIST, Cloud Security Alliance)
  • ITIL v3 Enterprise experience
  • Strong negotiating, influencing and problem resolution skills
  • Proven ability to effectively prioritize and execute tasks in a high-pressure environment
  • Knowledge of business environment, service requirements and hospitality culture
  • Experience with development and management of process standards in a sourced environment.
  • Adept at conducting research into process and governance best practices, models, and methodologies
  • Demonstrated ability to work independently and with others
  • Strong verbal and written communication skills with the ability to articulate complex technical ideas in easy to understand business terms
  • Excellent interpersonal and influencing skills with the ability to accomplish results through others, particularly by establishing relationships, effective controls and leading in a managed service environment
  • Excellent analytical skills
  • Graduate/post graduate degree
 

CORE WORK ACTIVITIES                                                                          

 
  • Leads security engineering team focused on designing and implementing the best strategies to protect the internal network from unauthorized access
  • Oversees, evaluates, and supports the documentation, and validation processes necessary to assure that associates, information technology systems and business processes meet the organization’s information assurance, security, and privacy requirements.  Ensures appropriate treatment of risk, compliance, and assurance of internal policies and external regulations.
  • Manages and administers processes and tools that enable the organization to identify, document, and access intellectual capital and information content (e.g., policies, standards, processes and procedures).
  • Conducts assessments of threats and vulnerabilities, determines deviations from acceptable configurations or enterprise or local policy, assesses the level of risk, and develops and/or recommends and operationalizes appropriate mitigation countermeasures.
  • Provides sound advice and recommendations to leadership and staff on a variety of relevant topics within the pertinent subject domain. Advocates policy changes and makes a case on behalf of the company via a wide range of written and oral work products.
  • Applies knowledge of priorities to define an entity’s direction, determine how to allocate resources, and identify programs or infrastructure that are required to achieve desired goals within domain of interest. Develops policy or advocates for changes in policy that will support new initiatives or required changes/enhancements.
  • Conducts training of personnel within pertinent subject domain. Develops, plans, coordinates, delivers, and/or evaluates training courses, methods, and techniques as appropriate.
  • Oversees the information assurance (IA) program of an information system in or outside the network environment; may include procurement duties.
  • Manages and measures information security implications within the organization, specific program, or other area of responsibility, to include strategic, personnel, infrastructure, policy enforcement, emergency planning, risk management, security awareness, and other resources.
 

Network, System, and Cloud Security

  • Define, lead and deliver infrastructure security governance, engineering and operational support (including Cloud)
  • Ensure the integrity and protection of networks and systems
  • Audit network and system security system to identify and protect areas of vulnerability
  • Perform operational maintenance and troubleshooting of supported systems
  • Develop technical documentation, including standards and standard operating procedures
  • Report on key compliance and operational metrics for the network security infrastructure
  • Work with vendors and IT partners to resolve problems
  • Conduct routine hardware audits of all supported systems to ensure compliance with established standards, policies, procedures and requirements
  • Assess and optimize firewall, router, switches, VPN and other network component security configurations
  • Develop and implement network backup and recovery procedures
  • Implement new system design procedures, test procedures
  • Provide consultation on security designs
 
Managing Standard End-To-End Processes
  • Promotes the organization’s awareness, understanding, and usage of enterprise standard end-to-end processes.
  • Supports the development of behavioral change management, communications and training as needed to drive process and tool adoption, implementation and compliance.
  • Tracks status of key milestones in the adoption of new processes and tools.
  • Maintains and facilitates compliance with defined Information Security Governance decision rights, standards and practices.
  • Collaborates with key stakeholder groups to validate the effectiveness of standard processes and continuously improves process quality.
  • Works with Marriott teams to ensure that process-related activities address company needs.
  • Defines corrective action for audit findings with stakeholders.
  • Works to resolve escalated issues.
 

Cultivate a High-Performing Team

  • Create a compelling vision, clear direction and strategy for the team
  • Generate enthusiasm and understanding of the information security vision and how each role contributes to the achievement of that vision
  • Ensure capabilities are developed and resources are aligned to support the strategy
  • Attract, motivate, develop and retain highly skilled leaders; champion and model leadership development
  • Create and sustain a work environment that drives associate engagement and enables business success
  • Ensure appropriate processes are in place and executed to drive collaboration and alignment within the team and with the broader IT organization
  • Serve as a role model and ensure all information security leaders are visible and effective partners with IT counterparts, broader Marriott stakeholders, and service providers
 

MANAGEMENT COMPETENCIES

Leadership
  • Communication - Conveys information and ideas to others in a convincing and engaging manner through a variety of methods.
  • Leading Through Vision and Values - Keeps the organization's vision and values at the forefront of employee decision making and action.
  • Managing Change - Initiates and/or manages the change process and energizes it on an ongoing basis, taking steps to remove barriers or accelerate its pace; serves as role model for how to handle change by maintaining composure and performance level under pressure or when experiencing challenges.
  • Problem Solving and Decision Making - Identifies and understands issues, problems, and opportunities; obtains and compares information from different sources to draw conclusions, develops and evaluates alternatives and solutions, solves problems, and chooses a course of action.
  • Professional Demeanor - Exhibits behavioral styles that convey confidence and command respect from others; makes a good first impression and represents the company in alignment with its values.
  • Strategy Development - Develops business plans by exploring and systematically evaluating opportunities with the greatest potential for producing positive results; ensures successful preparation and execution of business plans through effective planning, organizing, and on-going evaluation processes.
Managing Execution
  • Building a Successful Team - Uses an effective interpersonal style to build a cohesive team; inspires and sustains team cohesion and engagement by focusing the team on its mission and importance to the organization.
  • Strategy Execution– Ensures successful execution across of business plans designed to maximize customer satisfaction, profitability, and market share through effective planning, organizing, and on-going evaluation processes.
  • Driving for Results - Sets high standards of performance for self and/or others; assumes responsibility for work objectives; initiates, focuses, and monitors the efforts of self and/or others toward the accomplishment goals; proactively takes action and goes beyond what is required.
Building Relationships
  • Customer Relationships - Develops and sustains relationships based on an understanding of customer/stakeholder needs and actions consistent with the company’s service standards.
  • Global Mindset - Supports employees and business partners with diverse styles, abilities, motivations, and/or cultural perspectives; utilizes differences to drive innovation, engagement and enhance business results; and ensures employees are given the opportunity to contribute to their full potential.
  • Strategic Partnerships - Develops collaborative relationships with fellow employees and business partners by making them feel valued, appreciated, and included; explores partnership opportunities with other people in and outside the organization; influences and leverages corporate and continental shared services and/or discipline leaders (e.g., HR, Sales & Marketing, Finance, Revenue Management) to achieve objectives; maintains effective external relations with government, business and industry in respective countries; performs effectively as a liaison between locations, disciplines, and corporate to ensure needed resources are received and corporate strategies are understood and executed.
Generating Talent and Organizational Capability
  • Developing Others - Supports the development of other’s skills and capabilities so that they can fulfill current or future job/role responsibilities more effectively.
  • Organizational Capability - Evaluates and adapts the structure of assignments and work processes to best fit the needs and/or support the goals of an organizational unit.
Learning and Applying Professional Expertise
  • Continuous Learning - Actively identifies new areas for learning; regularly creates and takes advantage of learning opportunities; uses newly gained knowledge and skill on the job and learns through their application.
  • Technical Acumen - Understanding and utilizing professional skills and knowledge in a specific functional area to conduct and manage everyday business operations and generate innovative solutions to approach function-specific work challenges
    • Business Process and Analysis– Knowledge of multiple processes within sponsor department; ability to document key process flows, recognize processes for redesign, identify opportunities and translate business processes into information system’s needs.  Ability to define quality measures and evaluate performance against standards and to identify issues, risks and possible paths of resolution or mitigation strategies. 
    • IT Business Management – Ability to monitor and evaluate trends in technology, technology delivery mechanisms and IT organizational processes and tools.  This includes the ability to redefine processes, make recommendations, and perfect process governance frameworks. 
  • Basic Competencies - Fundamental competencies required for accomplishing basic work activities.
    • Basic Computer Skills - Using basic computer hardware and software (e.g., personal computers, word processing software, Internet browsers, etc.).
    • Mathematical Reasoning  - The ability to add, subtract, multiply, or divide quickly, correctly, and in a way that allows one to solve work-related issues.
    • Oral Comprehension - The ability to listen to and understand information and ideas presented through spoken words and sentences.
    • Reading Comprehension - Understanding written sentences and paragraphs in work related documents.
    • Writing - Communicating effectively in writing as appropriate for the needs of the audience. 

Marriott International is an equal opportunity employer committed to hiring a diverse workforce and sustaining an inclusive culture. Marriott International does not discriminate on the basis of disability, veteran status or any other basis protected under federal, state or local laws.