SrManager - Information Security - Threat Management & Response

Job Number 24081559

Job Category Information Technology

Location Marriott International HQ, 7750 Wisconsin Avenue, Bethesda, Maryland, United States

Schedule Full-Time

Located Remotely? Y

Relocation? N

Position Type Management

JOB SUMMARY

Seeking a seasoned cybersecurity professional to lead and coordinate red team exercises, external engagements, and ongoing purple team initiatives aimed at uncovering vulnerabilities and enhancing the organization’s security posture. Collaborate closely with cross-functional teams to conduct continuous purple team exercises, sharing insights and knowledge to strengthen defenses. Analyze and prioritize findigs from red and purple team activities, providing data-driven recommendations for security enhancements. Produce comprehensive reports detailing exercise results and proposed mitigations. Offer guidance and support for implementing security controls and enhancements, while staying abreast of emerging threats and trends to ensure proactive proactive dfense measures.

This role is part Marriott Global Cybersecurity organization with our primary offices in Bethesda, MD, and Singapore and with teams elsewhere in the US, Europe and Asia.

CANDIDATE PROFILE

Education and Experience

Required:

• Bachelor’s degree in Computer Sciences or related field or equivalent experience/certification

• 7+ years of progressive information technology leadership experience

• 4+ years’ information security experience that includes:

• Red teaming, threat emulation experience

• Creation of threat reports for executive (non technical) and technical stakeholders

• Experience in threat data analysis and response planning.

Preferred:

• Current information security certification, including Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or Certified Information Systems Security Professional (CISSP)

• Technical leadership experience in a sourced environment

• Project management skills

• Excellent communication skills and problem solving ability

• Demonstrated ability to work independently and with others

• Ability to manage the details and compliance with standards and expectations

• Technical infrastructure operations, administration, or engineering background

CORE WORK ACTIVITIES

• Lead and organize red team exercises, external red team engagements, and ongoing purple team exercises to identify vulnerabilities, control gaps, and potential attack vectors in the organization’s information systems.

• Collaborate closely with various teams to conduct continuous purple team exercises, sharing insights and knowledge to enhance overall security posture.

• Analyze and prioritize findings from red and purple team exercises, offering data-driven recommendations to improve the organization’s security measures.

• Produce high-quality reports detailing exercise results, including vulnerabilities, risks, proposed mitigations, and thematic improvement opportunities.

• Provide guidance and support for implementing recommended security controls and enhancements.

• Utilize threat intelligence to identify detection opportunities and develop, test, and tune detection content for both host and network-based log sources.

• Demonstrate expertise in scripting capabilities, utilizing languages such as PowerShell, Pythin, VBScript, and shell scripts for automation and troubleshooting tasks.

• Conduct deep investigations and forensic analysis to identify security incidents, utilizing tools like CrowdStrike and Splunk for threat hunting and incident response.

• Stay up-to-date with emerging security threats and trends, including APT Tactics, Techniques, and Procedures (TTPs), to ensure the organization’s defenses remain effective.

• Collaborate with IT Teams on escalations, tracking, configuration issues, etc. related to security validation findings.

• Develop new detection rules to enhance detection capabilities and improve overall threat resilience.

• Foster a culture of continuous learning and improvement within the cybersecurity team, staying current with new technologies and best practices in the cybersecurity landscape.

• Generate detailed threat intelligence, red teaming reports on monthly, quarterly, and ad-hoc bases.

• Produce and review executive-level briefings on current events, red teaming activities and strategic cyber intelligence.

• Communicate complex threat events or security incident details to a wide audience, including executives, legal, and technical staff, in both verbal and written forms.

• Advise internal stakeholders on threat intelligence best practices and strategies.

• Engage in external threat intelligence sharing with partners and platforms.

Maintaining Goals

• Submits reports in a timely manner, ensuring delivery deadlines are met.

• Promotes the documenting of project progress accurately.

• Provides input and assistance to other teams regarding projects.

Managing Work, Projects, and Policies

• Manages and implements work and projects as assigned.

• Generates and provides accurate and timely results in the form of reports, presentations, etc.

• Analyzes information and evaluates results to choose the best solution and solve problems.

• Provides timely, accurate, and detailed status reports as requested.

Demonstrating and Applying Discipline Knowledge

• Provides technical expertise and support to persons inside and outside of the department.

• Demonstrates knowledge of job-relevant issues, products, systems, and processes.

• Demonstrates knowledge of function-specific procedures.

• Keeps up-to-date technically and applies new knowledge to job.

• Uses computers and computer systems (including hardware and software) to enter data and/ or process information.

Delivering on the Needs of Key Stakeholders

• Understands and meets the needs of key stakeholders.

• Develops specific goals and plans to prioritize, organize, and accomplish work.

• Determines priorities, schedules, plans and necessary resources to ensure completion of any projects on schedule.

• Collaborates with internal partners and stakeholders to support business/initiative strategies

• Communicates concepts in a clear and persuasive manner that is easy to understand.

• Generates and provides accurate and timely results in the form of reports, presentations, etc.

• Demonstrates an understanding of business priorities

Additional Responsibilities

• Provides information to supervisors and co-workers by telephone, in written form, e-mail, or in person in a timely manner.

• Demonstrates self-confidence, energy and enthusiasm.

• Informs and/or updates leaders on relevant information in a timely manner.

• Manages time effectively and conducts activities in an organized manner.

• Presents ideas, expectations and information in a concise, organized manner.

• Uses problem solving methodology for decision making and follow up.

• Performs other reasonable duties as assigned by manager.

California Applicants Only: The salary range for this position is $96,038.00 to $209,169.00 annually.

Colorado Applicants Only: The salary range for this position is $96,038.00 to $190,154.00 annually.

Hawaii Applicants Only: The salary range for this position is $116,205.00 to $209,169.00 annually.

New York Applicants Only: The salary range for this position is $96,038.00 to $209,169.00 annually.

Washington Applicants Only: The salary range for this position is $96,038.00 to $209,169.00 annually. In addition to the annual salary, the position will be eligible to receive an annual bonus. Employees will accrue 0.04616 PTO balance for every hour worked and eligible to receive minimum of 7 holidays annually.

All locations offer coverage for medical, dental, vision, health care flexible spending account, dependent care flexible spending account, life insurance, disability insurance, accident insurance, adoption expense reimbursements, paid parental leave, educational assistance, 401(k) plan, stock purchase plan, discounts at Marriott properties, commuter benefits, employee assistance plan, and childcare discounts. Benefits are subject to terms and conditions, which may include rules regarding eligibility, enrollment, waiting period, contribution, benefit limits, election changes, benefit exclusions, and others.

Marriott HQ is committed to a hybrid work environment that enables associates to Be connected. Headquarters-based positions are considered hybrid, for candidates within a commuting distance to Bethesda, MD; candidates outside of commuting distance to Bethesda, MD will be considered for Remote positions.

The application deadline for this position is 28 days after the date of this posting, 5/9/2024.

Marriott International is an equal opportunity employer. We believe in hiring a diverse workforce and sustaining an inclusive, people-first culture. We are committed to non-discrimination on any protected basis, such as disability and veteran status, or any other basis covered under applicable law.

Marriott International is the world’s largest hotel company, with more brands, more hotels and more opportunities for associates to grow and succeed. Be where you can do your best work,​ begin your purpose, belong to an amazing global​ team, and become the best version of you.