Information Security Analyst
14 hours ago
The Application Security Analyst will assist in monitoring and assessing the security of web applications under the guidance of the Senior Application Security Manager.
This role involves supporting the enforcement of security standards, participating in application security risk assessments, and aiding in the documentation and remediation tracking processes.
The role is designed to provide hands-on experience in application security within a corporate environment, with a strong focus on learning and development.
Candidate ProfileRequired Education and Experience:
Bachelor's degree in Cybersecurity, Computer Science or related field or equivalent experience/certification
2+ years of information technology experience
Desired Capabilities and Experiences:
Strong understanding of basic programming concepts and principals (interpretation, compilation, loops, control structures, data types)
Basic understanding of security testing methodologies, tools, and approaches
Basic understanding of OWASP Top 10 and its implications to software security
Basic understanding of common software development practices and procedures (version control, testing, patching, CI/CD)
Basic understanding of the Software Development Lifecycle (SDLC)
Proficiency in Microsoft Word, PowerPoint, and Excel
Excellent communication skills
Strong interest in cybersecurity and a willingness to learn on the job
Current information security certification, including:
GSEC, GSIF, CySA+, Security+, CEH, GRISC, CISA
Experience in software development (front end or backend developer)
Experience with software security testing
Experience working in a regulated environment (e.g., finance, healthcare, government)
Experience with conducting risk assessments and developing risk mitigation strategies
Solid understanding ofGitHub operations (e.g., cloning, branching, merging, pull requests, issues)
Core Work ActivitiesApplication Security Risk Management & Tracking
Assist in monitoring compliance with security standards and regulatory requirements related to web application security.
Assist in tracking and documenting risk mitigation efforts, ensuring timely resolution of identified issues.
Support the Senior Manager in tracking and documenting application security risks and remediation efforts.
Learn and assist in the use of security tools such as GitHub Advanced Security for basic operations (e.g. Tracking & Reporting Issues).
Work closely with development teams to integrate risk management practices into the software development lifecycle.
Gain exposure to security frameworks and standards such as OWASP, under the mentorship of the Senior Manager.
Contribute to the development and maintenance of compliance documentation, including policies, procedures, and control frameworks.
Aid in the use of project management tools like JIRA to track tasks and projects.
Work closely with the Application Security Testing team to understand findings, their relevance and potential impact.
Conduct basic vulnerability research under the guidance of the Senior Manager.
File tickets with development and security teams, monitor ticket flow, volume, and remediation activities.
Participate in audits and assessments to evaluate compliance with internal policies and external regulations.
Review Security Researcher findings through the company Bug Bounty program and pursue remediation when issues are validated.
Managing Work, Projects, and Policies
Coordinates and implements work and projects as assigned.
Complies with Federal and State laws applying to procedures.
Generates and provides accurate and timely results in the form of reports, presentations, etc.
Analyzes information and evaluates results to choose the best solution and solve problems.
Manages the flow of questions and directs questions.
Supporting Operations
Works with team to put sustainable work processes and systems in place that support the execution of the strategy.
Establishes and maintains complete and up-to-date information to ensure accurate reporting.
Represents team in resolving situations.
Maintains and manages inventory and service operations.
Additional Responsibilities
Informs, updates, and provides information to supervisors, co-workers, and subordinates by telephone, in written form, e-mail, or in person in a timely manner.
Attends and participates in all relevant meetings.
Presents ideas, expectations and information in a concise, organized manner.
Uses problem solving methodology for decision making and follow up.
Maintains positive working relations with internal customers and department managers.
Manages time effectively and conducts activities in an organized manner.
Performs other reasonable duties as assigned by manager.
Benefits
Employees will accrue PTO balance for every hour worked and eligible to receive minimum of 7 holidays annually.
All locations offer coverage for medical, dental, vision, health care flexible spending account, dependent care flexible spending account, life insurance, disability insurance, accident insurance, adoption expense reimbursements, paid parental leave, educational assistance, 401(k) plan, stock purchase plan, discounts at Marriott properties, commuter benefits, employee assistance plan, and childcare discounts.
Benefits are subject to terms and conditions, which may include rules regarding eligibility, enrollment, waiting period, contribution, benefit limits, election changes, benefit exclusions, and others.
Marriott HQ is committed to a hybrid work environment that enables associates to Be connected.
Headquarters-based positions are considered hybrid, for candidates within a commuting distance to Bethesda, MD; candidates outside of commuting distance to Bethesda, MD will be considered for Remote positions.
The application deadline for this position is 56 days after the date of this posting, August 28, 2024.
Marriott International is an equal opportunity employer.
We believe in hiring a diverse workforce and sustaining an inclusive, people-first culture.
We are committed to non-discrimination on any protected basis, such as disability and veteran status, or any other basis covered under applicable law.
Marriott International is the world's largest hotel company, with more brands, more hotels and more opportunities for associates to grow and succeed.
Be where you can do your best work, begin your purpose, belong to an amazing global team, and become the best version of you.
-
Staff Information Security Analyst
2 weeks ago
East Montpelier, Vermont, United States Sunrun Full timeJob Title: Staff Information Security AnalystSunrun is seeking a highly skilled Staff Information Security Analyst to join our Technology Operations team. As a key member of our team, you will play a vital role in ensuring the security and integrity of our systems and data.Key Responsibilities:Manage and monitor the SIEM platform to detect and respond to...
-
Information Security Analyst
3 weeks ago
East Montpelier, Vermont, United States Marriott Full timeJob SummaryThe Application Security Analyst will assist in monitoring and assessing the security of web applications under the guidance of the Senior Application Security Manager. This role involves supporting the enforcement of security standards, participating in application security risk assessments, and aiding in the documentation and remediation...
-
Information Security Risk Manager
13 hours ago
Montpelier, Vermont, United States The Nature Conservancy Full timeAbout the RoleThe Information Security Analyst will play a critical role in supporting the Information Security Risk Management Team in ensuring the security and integrity of The Nature Conservancy's external party information and application security.This position requires a strong understanding of information security principles, risk management, and...
-
Senior Security Compliance Analyst
3 weeks ago
Montpelier, Vermont, United States Lumen Inc Full timeAbout LumenLumen is a leading provider of digital infrastructure solutions, connecting people, data, and applications with speed, security, and reliability. Our mission is to ignite business growth by empowering organizations to thrive in a rapidly changing world.The RoleWe are seeking a highly skilled Senior Security Compliance Analyst to join our team. As...
-
Senior Manager of Information Security
4 weeks ago
Montpelier, Vermont, United States Marriott Full timeJob SummaryThe Senior Manager of Information Security will be responsible for leading the organization's information security program, ensuring the confidentiality, integrity, and availability of Marriott's information assets. This includes overseeing the development and implementation of security policies, procedures, and standards, as well as conducting...
-
Senior Manager of Information Security
3 weeks ago
Montpelier, Vermont, United States Marriott Full timeJob SummaryThe Senior Manager of Information Security will be responsible for leading the development and implementation of information security policies, procedures, and standards to protect Marriott's IT systems and data. This role will oversee the security risk management program, including risk assessments, vulnerability scanning, and penetration...
-
Cyber Security and Policy Analyst
4 weeks ago
Montpelier, Vermont, United States RADIANT Full timeCyber Security and Policy Analyst PositionBeacon Systems, Inc., a subsidiary of Radiant Digital Solutions, is seeking a highly skilled Cyber Security and Policy Analyst to join our team in Hybrid – Montpelier, VT.Key ResponsibilitiesConduct comprehensive reviews of agency's existing cybersecurity policies, procedures, and standards to identify gaps and...
-
Senior Security Compliance Analyst
2 weeks ago
East Montpelier, Vermont, United States Lumen Inc Full timeThe RoleWe are seeking a highly skilled Senior Security Compliance Analyst to join our team at Lumen Inc. As a key member of our security team, you will be responsible for providing expert-level information security consulting services to our customers.The ideal candidate will possess an operational security mindset, superior customer interaction skills, and...
-
Senior Cybersecurity Analyst
1 week ago
Montpelier, Vermont, United States Oracle Full timeJob DescriptionOracle is seeking an experienced Senior Cybersecurity Analyst to join our Health Security Operations Center (SOC). As a key member of our team, you will be responsible for leading and managing complex security investigations, providing guidance and mentorship to junior analysts, and operating security tools to enhance detection...
-
Cybersecurity Analyst
4 weeks ago
Montpelier, Vermont, United States National Life Group Full timeCybersecurity Analyst Job DescriptionWe are seeking a highly skilled Cybersecurity Analyst to join our team at National Life Group. As a Cybersecurity Analyst, you will play a critical role in protecting our network and systems from cyber threats.Key Responsibilities:Support and Handle DLP Incidents: Respond to and resolve Data Loss Prevention (DLP)...
-
Cybersecurity Threat Analyst
4 weeks ago
Montpelier, Vermont, United States National Life Group Full timeCybersecurity Analyst Job DescriptionWe are seeking a highly skilled Cybersecurity Analyst to join our team at National Life Group. As a Cybersecurity Analyst, you will play a critical role in protecting our network and systems from cyber threats.Key Responsibilities:Support and handle DLP incidents and alerts.Monitor, discover, and analyze potential threats...
-
Cybersecurity Analyst
4 weeks ago
East Montpelier, Vermont, United States Marriott Full timeJob SummaryThe Cyber Incident Response Analyst is responsible for responding to both existing and emerging threats, as well as identifying attacker tools, tactics, and procedures by analyzing data from a variety of sources and tools. Through a strong understanding of attacker behavior, participates in and manages security events and incidents, and helps...
-
Business Systems Analyst
4 weeks ago
Montpelier, Vermont, United States Tyler Technologies Full timeBusiness Analyst Job DescriptionAt Tyler Technologies, we're seeking a skilled Business Analyst to join our Vermont State Enterprise team. As a Business Analyst, you'll play a pivotal role in shaping the way Vermont citizens interact with our government.Key Responsibilities:Lead comprehensive requirements gathering through interviews, document analysis,...
-
Senior Performance Analyst
37 minutes ago
Montpelier, Vermont, United States State of Vermont Full timeJob Title: Senior Performance AnalystThe Vermont State Auditor's Office is seeking a highly skilled and detail-oriented Senior Performance Analyst to join our team. As a Senior Performance Analyst, you will play a critical role in improving and holding government accountable.Key Responsibilities:Conduct complex auditing concepts and analyze evidence to draw...
-
Senior Performance Analyst
4 weeks ago
Montpelier, Vermont, United States State of Vermont Full timeJob Title: Senior Performance AnalystWe are seeking a highly skilled Senior Performance Analyst to join our team at the Vermont State Auditor's Office. As a Senior Performance Analyst, you will play a critical role in improving and holding government accountable.About the Role:Conduct performance audits to identify areas for improvement and provide...
-
Business Systems Analyst
3 weeks ago
Montpelier, Vermont, United States JobRialto Full timeJob Title: Business AnalystJobRialto is seeking a skilled Business Analyst to contribute to and execute on overall IT strategy, ensuring alignment with the organization's goals and objectives.Key Responsibilities:Contribute to IT strategy development and executionGather data and create process flow diagramsCapture design interfaces and document process...
-
Business Solutions Analyst
1 month ago
Montpelier, Vermont, United States Tyler Technologies Full timeAbout the RoleWe are seeking a highly skilled Business Solutions Analyst to join our Vermont State Enterprise team at Tyler Technologies. As a key member of our team, you will play a pivotal role in shaping the way Vermont citizens interact with our government.Key ResponsibilitiesLead Comprehensive Requirements Gathering: Conduct interviews, document...
-
Senior Performance Analyst
3 weeks ago
Montpelier, Vermont, United States Sunrun Full timeSenior Program Performance AnalystSunrun is seeking a highly skilled Senior Program Performance Analyst to join our Affiliate Partner organization. This role is critical in monitoring, analyzing, and enhancing partner performance against key performance indicators (KPIs) and targets.Key Responsibilities:Monitor and analyze program performance against...
-
Cloud Security Engineer
4 weeks ago
Montpelier, Vermont, United States Marriott Full timeJob SummaryThis position will be part of the Cloud Security Engineering Team within the Global Information Security organization. The security engineer will be responsible for designing and building security capabilities in a multi-cloud environment and building automation for cloud security controls to enhance the cloud security posture.Key...
-
Senior Performance Analyst
4 weeks ago
Montpelier, Vermont, United States Sunrun Full timeSenior Program Performance AnalystSunrun is seeking a highly skilled Senior Program Performance Analyst to join our Affiliate Partner organization. This role is critical in monitoring, analyzing, and enhancing partner performance against key performance indicators (KPIs) and targets.Key Responsibilities:Monitor and analyze program performance against...