Sr. Security Engineer - Networks

Job Number 22150400
Job Category Information Technology
Location Marriott International HQ, 7750 Wisconsin Avenue, Bethesda, Maryland, United States VIEW ON MAP
Schedule Full-Time
Located Remotely? N
Relocation? N
Position Type Management
JOB SUMMARY

 

This position is a part of Marriott International Global Information Security team and has responsibility for researching, designing, engineering, implementing, and supporting network security solutions in a highly distributed global enterprise environment – on-prem and in public cloud. This role will be responsible for system design, standards based implementation, capacity planning, systems integration, process / procedure development and refinement, and technical support.

 

CANDIDATE PROFILE

Education and Experience

Required:

• Bachelor’s degree in Computer Sciences or related field or equivalent experience/certification
• 7 years of information technology experience, with 4 years of experience in network security in some or all of the following:
  • Intrusion Prevention Systems, vulnerability and compliance management, identity and access management, or risk and security logging and monitoring
  • networking design and concepts to include TCP/IP, switching, routing, firewalls, F5 Load balancer, virtual route forwarding and VLANs.
  • performing technical planning, system integration, verification and validation, risk analysis, supportability and effectiveness analyses for various tools and solutions, performance and capacity management.

 

Preferred:

• Current information security certification, including Certified Information Security Manager (CISM), or Certified Information Systems Security Professional (CISSP); CCNA
• Familiarity with security frameworks CSA, NIST, CIS, PCI DSS, etc.
• Thorough understanding of the following security technologies: Log Management, TLS inspection, URL filtering, DNS
• Experience with IEEE standards 802.3, 802.11 and 802.15
• Experience in public cloud – AWS, Azure.
• Experience using log analysis tools to troubleshoot issues and to plan for future requirements.
• Knowledge in Software Defined Networking and network micro segmentation.
• Policy creation and rule design and updates for the administration security control systems
• Technical writing/creation of formal documentation such as architecture diagrams, technical designs, and SOPs
• Excellent communication skills and problem solving ability
• Demonstrated ability to work independently and with others
• Ability to manage the details and compliance with standards and expectations

 

CORE WORK ACTIVITIES

Network Security Engineering and Governance

• Lead the development of network security requirements and success criteria through collaboration with internal and external customers. Leverage these criteria and integrate business and technical knowledge when designing and developing to deliver solutions that meet functional and non-functional requirements while delivering the best value and user experience.

• Develop IPS policies in alignment with business and security requirements
• Perform daily support operations within 24/7 schedules
• Responsible for the operation, performance, availability and capacity of the Intrusion Prevention Systems (IPS)
• TLS inspection policy design and implementation.
• Splunk and Data lake log analysis in conjunction with security information and event management (SIEM) tools.
• Collaborate with global teams across Marriott International enterprise.
• Drive overall IPS process improvements and documentation, and represent and contribute to the overall IPS solutions and methodologies
• Full life-cycle support for critical network security technology from ideation and strategic planning through retirement and decommissioning for all engineering and operational needs.
• Represent the Security Engineering team with various stakeholders to drive remediation of identified risks, endorse preventative solutions gather requirements, and influence stakeholders to reduce risk and maintain security alignment to corporate and or industry requirements.
• Create and implement an operational security program to ensure the security of IPS solution.
• Identify, select, deploy, and maintain appropriate monitoring and configuration management tools to provide proactive monitoring and management of the security posture of production environments.
• Identify, select, deploy, and maintain authentication, authorization, and auditing solutions for production operations.
• Stay current on cloud security policies, standards, regulations making recommendations for the company
• Work closely and collaboratively with Information Security, Technology teams and Business units to support their needs
• Act as an advocate of information security policies, standards, controls and as an enabler to the business while managing risk appropriately
• Drive mitigation of reported risks from continuous monitoring solutions
• Track and report on the status of cloud security risks to corporate/industry requirements.
• Gain deep security-level knowledge of on-prem and cloud environments, continuous monitoring solutions to understand and provide direct guidance for security remediation activities.

 

MANAGEMENT COMPETENCIES

Leadership

• Communication - Conveys information and ideas to others in a convincing and engaging manner through a variety of methods.
• Leading Through Vision and Values - Keeps the organization's vision and values at the forefront of employee decision making and action.
• Managing Change - Initiates and/or manages the change process and energizes it on an ongoing basis, taking steps to remove barriers or accelerate its pace; serves as role model for how to handle change by maintaining composure and performance level under pressure or when experiencing challenges.
• Problem Solving and Decision Making - Identifies and understands issues, problems, and opportunities; obtains and compares information from different sources to draw conclusions, develops and evaluates alternatives and solutions, solves problems, and chooses a course of action.
• Professional Demeanor - Exhibits behavioral styles that convey confidence and command respect from others; makes a good first impression and represents the company in alignment with its values.
• Strategy Development - Develops business plans by exploring and systematically evaluating opportunities with the greatest potential for producing positive results; ensures successful preparation and execution of business plans through effective planning, organizing, and on-going evaluation processes.

Managing Execution

• Building a Successful Team - Uses an effective interpersonal style to build a cohesive team; inspires and sustains team cohesion and engagement by focusing the team on its mission and importance to the organization.
• Strategy Execution – Ensures successful execution across of business plans designed to maximize customer satisfaction, profitability, and market share through effective planning, organizing, and on-going evaluation processes.
• Driving for Results - Sets high standards of performance for self and/or others; assumes responsibility for work objectives; initiates, focuses, and monitors the efforts of self and/or others toward the accomplishment goals; proactively takes action and goes beyond what is required.

Building Relationships

• Customer Relationships - Develops and sustains relationships based on an understanding of customer/stakeholder needs and actions consistent with the company’s service standards.
• Global Mindset - Supports employees and business partners with diverse styles, abilities, motivations, and/or cultural perspectives; utilizes differences to drive innovation, engagement and enhance business results; and ensures employees are given the opportunity to contribute to their full potential.
• Strategic Partnerships - Develops collaborative relationships with fellow employees and business partners by making them feel valued, appreciated, and included; explores partnership opportunities with other people in and outside the organization; influences and leverages corporate and continental shared services and/or discipline leaders (e.g., HR, Sales & Marketing, Finance, Revenue Management) to achieve objectives; maintains effective external relations with government, business and industry in respective countries; performs effectively as a liaison between locations, disciplines, and corporate to ensure needed resources are received and corporate strategies are understood and executed.

Generating Talent and Organizational Capability

• Developing Others - Supports the development of other’s skills and capabilities so that they can fulfill current or future job/role responsibilities more effectively.
• Organizational Capability - Evaluates and adapts the structure of assignments and work processes to best fit the needs and/or support the goals of an organizational unit.

Learning and Applying Professional Expertise

• Continuous Learning - Actively identifies new areas for learning; regularly creates and takes advantage of learning opportunities; uses newly gained knowledge and skill on the job and learns through their application.
• Technical Acumen - Understanding and utilizing professional skills and knowledge in a specific functional area to conduct and manage everyday business operations and generate innovative solutions to approach function-specific work challenges
• Business Acumen - Understands and utilizes business information to manage everyday operations and generate innovative solutions to approach business and administrative challenges.
• Basic Competencies - Fundamental competencies required for accomplishing basic work activities.
  • Basic Computer Skills - Using basic computer hardware and software (e.g., personal computers, word processing software, Internet browsers, etc.).
  • Mathematical Reasoning  - The ability to add, subtract, multiply, or divide quickly, correctly, and in a way that allows one to solve work-related issues.
  • Oral Comprehension - The ability to listen to and understand information and ideas presented through spoken words and sentences.
  • Reading Comprehension - Understanding written sentences and paragraphs in work related documents.
  • Writing - Communicating effectively in writing as appropriate for the needs of the audience.

 

This position requires proof of full vaccination against COVID-19 prior to the first date of employment, subject to applicable law. If you are offered employment, this requirement must be met by your date of hire, unless a reasonable accommodation request is received and approved.

Marriott International is an equal opportunity employer. We believe in hiring a diverse workforce and sustaining an inclusive, people-first culture. We are committed to non-discrimination on any protected basis, such as disability and veteran status, or any other basis covered under applicable law.