Senior Manager Information Security

Found in: Appcast Linkedin GBL C2 - 2 weeks ago

Bethesda, United States HMSHost Full time

Purpose: The Senior Manager Information Security is responsible for overseeing Information Security and compliance programs for infrastructure applications. This role is responsible for corporate policies and procedures, and for providing expert advice in risk assessment, business continuity planning, information security, change management and executing a comprehensive risk-based internal audit plan for the Company’s information technology controls.


Essential Functions:

  • Executes and delivers Information Security strategy through assessment, design and implementation of governance frameworks, controls, processes and infrastructure
  • Designs, implements and manages security solutions and remediation programs to address security risks
  • Evaluates identity and access management (IDAM) practices and develops solutions to improve IDAM processes, privileged access and recertification programs
  • Develops security policies, procedures, standards, and controls in line with regulation and current standards, ISO27001, NIST, SANS etc.
  • Implements data protection and privacy programs to ensure confidentiality and security of personal data
  • Develops and implements programs to improve IT Disaster Recovery and Business Continuity
  • Creates secure patterns for reuse and delivery of architectural reviews using TOGAF or SABA
  • Evaluates security of emerging technology platforms – mobile device platforms (iOS, Android), cloud services (IaaS, PaaS, SaaS), Big Data, social media
  • Performs security risk and controls assessments and penetration testing to evaluate and analyze threat, vulnerability, impact, risk and security issues
  • Assists client in evaluating, enhancing, developing, and managing various programs including Cybersecurity, Business Continuity and Disaster Recovery, Data Protection and Privacy, Threat and Vulnerability, Security Incident Detection and Response, Identity and Access Management, Security Operation Centre and SIEM, Data Loss Prevention, Security Awareness and Training, Phishing Campaigns
  • Ensures infrastructure and applications are compliant with regulatory and IT best practice standards and internally established IT policies and procedures
  • Assists with design, implementation and management of CCPA/CPRA, SOC2, ISO, and PCI audit process
  • Provides subject matter expert advisory services to IT and the business as it relates to regulatory and industry compliance issues
  • Manages, coordinates and executes internal compliance testing, documentation and follow-up
  • Performs operational audits to ensure compliance of infrastructure/applications with regulatory or internally established IT policies and procedures; provides written reports to senior management regarding recommendations and conclusions
  • Assists in the development of procedures and policies governing the management and operation of key regulated computer systems

Reporting Relationship: This position reports to the VP Infrastructure and Security


Major Interdependencies: All Corporate departments


Minimum Qualifications, Knowledge, Skills, and Work Environment:

Education and Experience: The combination of education and professional experience must exceed 6 years:

  • In a technical role: Requires 6 years of experience engaged in delivering IT security and compliance programs
  • A bachelor’s degree in Computer Science, Information Systems, Cybersecurity or a program related to the functional area can count for 2 of the 6-year requirement
  • In the industry: 3-5 years of Hospitality, F&B and/or Retail experience desirable

Specialized Training:

  • Extensive knowledge of compliance and privacy regulations such as PCI-DSS, Law 262, SOC-2, ISO, HIPAA and CCPA/CPRA
  • Information Technology Infrastructure Library (ITIL) experience
  • Strong Knowledge of common IT service management, cybersecurity and risk management frameworks, such as ITIL, ISO 27000 and NIST

Specialized Skillset/Competencies/Traits

  • Business acumen and also has the mindset required to understand the long-term implications of IT security and compliance planning and to advance the organizations goals
  • Demonstrated history of understanding the needs of the business, stakeholders, the employee population, and individual circumstances
  • Demonstrated history of creating and maintaining positive work environments through coaching, developing, and leading teams to achieve common goals

Travel/Location:

  • Location: Requires a regular presence in F&B and/or Retail Center of Excellence locations

  • Senior Manager, Business Information Security Partnership

    Found in: beBee jobs US - 2 weeks ago

    Bethesda, Maryland, United States Bethesda Marriott Full time

    Job Number Job Category Information TechnologyLocation Marriott International HQ, 7750 Wisconsin Avenue, Bethesda, Maryland, United States VIEW ON MAPSchedule Full-TimeLocated Remotely? NRelocation? NPosition Type ManagementJob SummaryThe BISP (Business Information Security Partner) Sr. Manager supports the Business Information Security Partnership (BISP)...

  • Manager - Information Security - Security Issues Management

    Found in: beBee S US - 2 weeks ago

    Bethesda, United States Bethesda Marriott Full time

    Additional Information REplacement req for 24008682Job Number 24041663Job Category Information TechnologyLocation Marriott International HQ, 7750 Wisconsin Avenue, Bethesda, Maryland, United States VIEW ON MAPSchedule Full-TimeLocated Remotely? YRelocation? NPosition Type ManagementJob SummaryManages security issues management as part of the Security...

  • Manager - Information Security - Security Issues Management

    2 days ago

    Bethesda, United States CareerBuilder Full time

    Additional Information REplacement req for 24008682Job Number 24041663Job Category Information TechnologyLocation Marriott International HQ, 7750 Wisconsin Avenue, Bethesda, Maryland, United States VIEW ON MAPSchedule Full-TimeLocated Remotely? YRelocation? NPosition Type ManagementJOB SUMMARYManages security issues management as part of the Security...

  • Information Security Specialist

    7 days ago

    Bethesda, United States US Secretary of the Navy Offices (SECNAV) Full time

    **Duties**: - You will serve as a technical authority for the automatic declassification efforts for the Department of Navy. - You will be responsible for quality assurance reviews of permanent historical classified records that are 25 years old or older. - You will oversee the contractor declassification operations and report any administrative concerns to...

  • Dir-Information Security

    Found in: beBee jobs US - 6 days ago

    Bethesda, Maryland, United States Bethesda Marriott Full time

    Job Number Job Category Information TechnologyLocation Marriott International HQ, 7750 Wisconsin Avenue, Bethesda, Maryland, United States VIEW ON MAPSchedule Full-TimeLocated Remotely? YRelocation? NPosition Type ManagementJob Summary The BISP (Business Information Security Partner) is the Information Security program owner for their assigned lines of...

  • Dir-Information Security

    Found in: beBee jobs US - 6 days ago

    Bethesda, Maryland, United States Bethesda Marriott Full time

    Job Number Job Category Information TechnologyLocation Marriott International HQ, 7750 Wisconsin Avenue, Bethesda, Maryland, United States VIEW ON MAPSchedule Full-TimeLocated Remotely? YRelocation? NPosition Type ManagementJob Summary The BISP (Business Information Security Partner) is the Information Security program owner for their assigned lines of...

  • MCD Mission Program Manager for Security-Focused IT Projects with Security Clearance

    Found in: Dice One Red US C2 - 6 days ago

    Bethesda, United States National Counterintelligence and Security Center (NCSC) Full time

    Summary The mission of the National Counterintelligence & Security Center is to lead and support the U.S. Government's counterintelligence (CI) and security activities critical to protecting our nation; provide CI outreach to U.S. private sector entities at risk of foreign intelligence penetration; and issue public warnings regarding intelligence threats to...

  • Senior Security Engineer

    1 week ago

    Bethesda, United States Diverse Systems Group LLC Full time

    Job DescriptionJob DescriptionDescription:As a Senior Security Engineer, you will be a key leader in maintaining the security posture of our systems and ensuring compliance with the Department of Defense (DOD) and Defense Health Agency (DHA) policies and requirements. Your extensive experience, critical thinking skills, and deep technical knowledge will...

  • Senior Security Engineer

    6 days ago

    Bethesda, United States Diverse Systems Group LLC Full time

    Job DescriptionJob DescriptionDescription:As a Senior Security Engineer, you will be a key leader in maintaining the security posture of our systems and ensuring compliance with the Department of Defense (DOD) and Defense Health Agency (DHA) policies and requirements. Your extensive experience, critical thinking skills, and deep technical knowledge will...

  • Srmgr-information Security- Vendor Risk Management

    6 days ago

    Bethesda, United States Marriott International, Inc Full time

    **Job Number** 24070949 **Job Category** Information Technology **Location** Marriott International HQ, 7750 Wisconsin Avenue, Bethesda, Maryland, United States VIEW ON MAP **Schedule** Full-Time **Located Remotely?** Y **Relocation?** N **Position Type** Management **JOB SUMMARY** Excellent communication skills are required to effectively communicate...

  • INFORMATION SECURITY SPECIALIST with Security Clearance

    Found in: Dice One Red US C2 - 7 days ago

    Bethesda, United States Department of the Navy Full time

    Summary You will serve as an Information Security Specialist in the Directive and Record Management Division of DON/AA DRMD DECLASS Duties * You will serve as a technical authority for the automatic declassification efforts for the Department of Navy. * You will be responsible for quality assurance reviews of permanent historical classified records that are...

  • Dir-Information Security

    Found in: beBee jobs US - 6 days ago

    Bethesda, Maryland, United States Bethesda Marriott Full time

    Job Number Job Category Information TechnologyLocation Marriott International HQ, 7750 Wisconsin Avenue, Bethesda, Maryland, United States VIEW ON MAPSchedule Full-TimeLocated Remotely? YRelocation? NPosition Type ManagementJob Summary We are seeking an experienced Cybersecurity Director to lead our organization's efforts in developing and maintaining robust...

  • INFORMATION SECURITY SPECIALIST with Security Clearance

    Found in: Dice One Red US C2 - 7 days ago

    Bethesda, United States Department of Defense Full time

    Duties * You will serve as a technical authority for the automatic declassification efforts for the Department of Navy. * You will be responsible for quality assurance reviews of permanent historical classified records that are 25 years old or older. * You will oversee the contractor declassification operations and report any administrative concerns to the...

  • SrMgr-Information Security- Vendor Risk Management

    Found in: beBee S US - 5 days ago

    Bethesda, United States Bethesda Marriott Full time

    Job Number 24070949Job Category Information TechnologyLocation Marriott International HQ, 7750 Wisconsin Avenue, Bethesda, Maryland, United States VIEW ON MAPSchedule Full-TimeLocated Remotely? YRelocation? NPosition Type ManagementJob SummaryThe candidate will be responsible for completing and maintaining 3rd Party Hosting Service Provider reviews,...

  • SrMgr-Information Security- Vendor Risk Management

    Found in: beBee jobs US - 5 days ago

    Bethesda, Maryland, United States Bethesda Marriott Full time

    Job Number Job Category Information TechnologyLocation Marriott International HQ, 7750 Wisconsin Avenue, Bethesda, Maryland, United States VIEW ON MAPSchedule Full-TimeLocated Remotely? YRelocation? NPosition Type ManagementJob SummaryThe candidate will be responsible for completing and maintaining 3rd Party Hosting Service Provider reviews, including...

  • Dir-Information Security

    Found in: beBee jobs US - 2 weeks ago

    Bethesda, Maryland, United States Marriott International Full time

    Job Number Job Category Information TechnologyLocation Marriott International HQ, 7750 Wisconsin Avenue, Bethesda, Maryland, United States VIEW ON MAP Schedule Full-TimeLocated Remotely? YRelocation? NPosition Type ManagementJOB SUMMARYMarriott is seeking a Cybersecurity Analytics Director to lead a function within Cybersecurity Operations focused on...

  • Director of Information Security

    Found in: beBee jobs US - 2 weeks ago

    Bethesda, Maryland, United States Bethesda Marriott Full time

    Job Number Job Category Information TechnologyLocation Marriott International HQ, 7750 Wisconsin Avenue, Bethesda, Maryland, United States VIEW ON MAPSchedule Full-TimeLocated Remotely? YRelocation? NPosition Type ManagementJob SummaryMarriott is seeking a Cybersecurity Analytics Director to lead a function within Cybersecurity Operations focused on...

  • Information Systems Security Officer with Security Clearance

    Found in: Dice One Red US C2 - 6 days ago

    Bethesda, United States Signature Federal Systems Full time

    Information System Security Officer (ISSO)- ExpertCore hours: 9AM-3PMLocation: BethesdaClearance: CI PolyPosition Description• Provide information assurance support to system(s) and program• Demonstrated experience with coordinating and implementing cyber security policies, standards and processes• Maintain operational security posture for system(s)...

  • Senior Cyber Security Engineer with Security Clearance

    Found in: Dice One Red US C2 - 6 days ago

    Bethesda, United States cyDaptiv Solutions Inc Full time

    Overview cyDaptiv Solutions is seeking a Senior Cyber Security Engineer (CSE) with experience supporting Federal and DoD cyber security and information assurance projects. The CSE must have knowledge of the Risk Management Framework (RMF), security principles, concepts, policies and regulations and be able to identify risks in information systems and work...

  • Director - Information Security - Security Discipline Partnership

    Found in: beBee S US - 2 weeks ago

    Bethesda, United States Bethesda Marriott Full time

    Additional Information Replacement of req 24052780--post for 3 daysJob Number 24059910Job Category Information TechnologyLocation Marriott International HQ, 7750 Wisconsin Avenue, Bethesda, Maryland, United States VIEW ON MAPSchedule Full-TimeLocated Remotely? YRelocation? NPosition Type ManagementJob Summary The BISP (Business Information Security Partner)...