Information Security Analyst - Continent Security Partnerships

Bethesda, MD, United States

Applications have closed

Marriott International

Book Directly & Save at any of our 8000+ Marriott Bonvoy Hotels. Choose from Luxury Hotels, Resorts, Extended Stay Hotels, Pet-Friendly Hotels & More.

View company page

JOB SUMMARY Contributes to the execution and support of security compliance efforts for above property and on-property teams. The objective of this role is to drive and achieve maximum security compliance status and ensure that all implementations follow the Marriott security standards.The role will perform tracking and reporting on the established security metrics and will have a direct reporting line to the Senior Director, Continent Information Security Partnerships. 

This position maintains strong stakeholder relationships and assists area IT leaders and continent IT operations in liaising with the broader Global Information Security team..  

CANDIDATE PROFILE 

Education and Experience Required:

Education and Experience 

  • 3+ years of work experience in general business and/or administrative support
    • 1+ years experience with Microsoft office products; especially Excel and Word
  • Bachelor’s degree in Computer Science or related field or equivalent experience/certification.
  • OR – Recent undergraduate (4-year) with internship and/or liminted work experience in Information Security or Technnology
  • Fluent in English both spoken and written. 

Preferred:

  • Experience working in a Technology or Information Security role
  • Hotel management experience
  • Good understanding of PCI DSS.
  • Working knowledge of key network and technical security controls.
  • Experience participating in or coordinating activities for security incident responses.
  • Basic understanding of vulnerabilities and remediation actions
  • Basic understanding of different attack vectors 
  • Good understanding of different protocols such as TCP/DNS/HTTP/VPN/, etc.
  • Risk identification and remediation along with respective teams
  • Knowledge of global regulatory standards including GDPR, CCPA and understanding of PCI DSS
  • Ability to demonstrate security experience via certifications (Security+, CISM, PCI ISA, etc.) or significant career accomplishments.
  • Demonstrated ability to apply organizational information security policies at a discipline unit level.
  • Knowledge of IT security within an infrastructure environment.
  • Strong negotiating, influencing, and problem-resolution skills.
  • Proven ability to effectively prioritize and execute tasks in a high-pressure environment.
  • Experience in business systems and process planning.
  • Graduate/post-graduate degree.

CORE WORK ACTIVITIES 

  • Provides support and guidance to stakeholders for Security project implementations.
  • Initiates and completes security audits as assigned, including tracking of progress, results, and gaps remediation. Shares with GIS and continent partners and initiates follow ups, such as IPPA, Property Secuity Review, and PCI. 
  • Represents Security in signing off on new property openings including tracking that property systems and security readiness is registered; including application inventory
  • Coordinates project implementations and escalates any issues to project team leadership.
  • Provides tactical communications and issues remediation planning and implementation support with the continent IT Operations team.
  • Participates in/facilitates educational calls and meetings representing security to field ITassociates
  • Participates in new systems and services security reviews and certifications. Performs first line review of security requests from the partners prior to approval
  • Tracks the compliance performance of the continent and works with on-property IT associates and Area IT Managers towards issues remediations, providing necessary escalations and follow-ups to the respective teams.
  • Contributes to security and compliance related metrics reporting 
  • Provides answers to general questions and queries around IT security.
  • Participates in security reviews/certifications for new systems and services for properties across an assigned continent. 
  • Participates with Cyber Incident Response Team during incident response and remediation with their respective continent 
  • Point of contact for general questions and queries around global IT security programs, policies, procedures, and/or strategy.
  • Provide necessary training and guidance to field IT teams, non-technical staff, and other stakeholders
  • Preparation of monthly reports and other related documentation to presenting to the leadership team

 MANAGING WORK, PROJECTS, AND POLICIES

  • Coordinates and implements work and projects as assigned.
  • Complies with Federal and State laws applying to procedures.
  • Generates and provides accurate and timely results in the form of reports, presentations, etc.
  • Analyzes information and evaluates results to choose the best solution and solve problems.
  • Manages the flow of questions and directs questions.

SUPPORTING OPERATIONS

·Works with team to put sustainable work processes and systems in place that support the execution of the strategy.

  • Establishes and maintains complete and up-to-date information to ensure accurate reporting.
  • Represents team in resolving situations.
  • Maintains and manages inventory and service operations.

ADDITIONAL RESPONSIBILITIES

  • Informs, updates, and provides information to supervisors, co-workers, and subordinates by telephone, in written form, e-mail, or in person in a timely manner.
  • Attends and participates in all relevant meetings.
  • Presents ideas, expectations, and information in a concise, organized manner.
  • Uses problem solving methodology for decision making and follow up.
  • Maintains positive working relations with internal customers and department managers.
  • Manages time effectively and conducts activities in an organized manner.
  • Performs other reasonable duties as assigned by manager.

Marriott International is an equal opportunity employer. We believe in hiring a diverse workforce and sustaining an inclusive, people-first culture. We are committed to non-discrimination on any protected basis, such as disability and veteran status, or any other basis covered under applicable law.

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  19  9  0
Category: Analyst Jobs

Tags: Audits CCPA CISM Compliance Computer Science DNS GDPR Incident response PCI DSS Strategy VPN Vulnerabilities

Region: North America
Country: United States

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.