Unfortunately, this job posting is expired.
Don't worry, we can still help! Below, please find related information to help you with your job search.

Cloud Security Engineer Jobs

Company

Marriott International, Inc

Address , Bethesda, Md
Employment type FULL_TIME
Salary
Expires 2023-07-03
Posted at 10 months ago
Job Description
Job Number 23076783
Job Category Information Technology
Location Marriott International HQ, 7750 Wisconsin Avenue, Bethesda, Maryland, United States
Schedule Full-Time
Located Remotely? Y
Relocation? N
Position Type Management

JOB SUMMARY


This position will be part of the Cloud Security Engineering Team within the Global Information Security organization. The security engineer will be responsible for designing and building security capabilities in a multi-cloud environment and build automation for cloud security controls and enhance the cloud security posture. This role will perform as a key engineering and supporting resource for the cloud security engineering program.


CANDIDATE PROFILE


Education and Experience


Required:

  • Use of CI/CD pipelines or security tooling for cloud-native deployments.
  • 1+ years’ experience in the following:
    • scripting languages (e.g., Python, JavaScript)
    • use of CI/CD pipelines or security tooling for cloud-native deployments.

  • 5+ years’ progressive Information Technology engineering experience
    • 3+ years of Information Security experience in security engineering that includes 2+ years in public cloud security (e.g., AWS, Azure)
  • Bachelor’s degree in Information Security or related field or equivalent experience/certification
  • Scripting languages (e.g., Python, JavaScript)
  • 3+ years of Information Security experience in security engineering that includes 2+ years in public cloud security (e.g., AWS, Azure)

Preferred Skills and Experience:

  • Experience working with Agile and Scrum methodologies
  • Knowledge of securing technologies such as, but not limited to; Cloud-Native Services (e.g., VPCs, S3 buckets), Container Platforms (e.g., Docker, Kubernetes), APIs, Identity and Access Management, Serverless (e.g., Lambda, Azure Functions)
  • Experience and knowledge working in DevSecOps, CI/CD, Infrastructure as Code concepts and technologies
  • Current information security certification, including Certified Information Security Manager (CISM), or Certified Information Systems Security Professional (CISSP), AWS Professional Architect, AWS Security Specialty.
  • Knowledge of Cloud Security Posture Management (CSPM) tools

Attributes

  • Demonstrated ability to work independently and with others.
  • Ability to articulate complex technical ideas in easy-to-understand business terms
  • Technical infrastructure operations, administration, or engineering background
  • Ability to manage the details and compliance with standards and expectations.
  • Excellent communication skills and problem-solving ability.

CORE WORK ACTIVITIES


  • Improves the accessibility of security through automation, continuous integration pipelines, and other means. This includes detecting and fixing vulnerabilities and identifying attacks.
  • Provides vulnerability assessment of cloud assets, deliver remediation recommendations, and provides knowledgeable assistance in resolving identified vulnerabilities.
  • Provides subject matter expertise to the Security Engineering and Operations teams, and be hands-on to ensure the safeguarding of design, build, deploy and maintain of products and services in the cloud environment.
  • Provides Cloud Security Governance and Optimization services to technical teams. Provides advice on security best practices, and guide the development and infrastructure teams in developing, adopting, and enforcing security and access policies appropriate to the security needs of the business.
  • Provides input to the overall architecture, governance model
  • Participates in efforts on researching, designing, and implementing security as components that are standards based, high performing, highly available and secure in delivering the required business functionality.
  • Provide technical oversight, standardization and validation of the effectiveness of security systems.
  • Supports analysis of the current environment to detect critical deficiencies and recommends solutions for improvement.
  • Consults with architecture teams to identify when it is necessary to modify the technical architecture to accommodate infrastructure and security needs.
  • Supports, implements and promotes standard configuration and change management, processes and practices.
  • Supports governance based on best practices and facilitates proper alignment to projects and major initiatives
  • Supports analysis of technology industry and market trends to determine their potential impact on security services architecture.
  • Participates in the documentation of all architecture design and analysis work.
  • Participates in the evaluation and selection of security service products.

Maintaining Goals

  • Submits reports in a timely manner, ensuring delivery deadlines are met.
  • Promotes the documenting of project progress accurately.
  • Provides input and assistance to other teams regarding projects.

Managing Work, Projects, and Policies

  • Generates and provides accurate and timely results in the form of reports, presentations, etc.
  • Provides timely, accurate, and detailed status reports as requested.
  • Analyzes information and evaluates results to choose the best solution and solve problems.
  • Manages and implements work and projects as assigned.

Demonstrating and Applying Discipline Knowledge

  • Provides technical expertise and support to persons inside and outside of the department.
  • Uses computers and computer systems (including hardware and software) to enter data and/ or process information.
  • Keeps up-to-date technically and applies new knowledge to job.
  • Demonstrates knowledge of job-relevant issues, products, systems, and processes.
  • Demonstrates knowledge of function-specific procedures.

Delivering on the Needs of Key Stakeholders

  • Collaborates with internal partners and stakeholders to support business/initiative strategies
  • Understands and meets the needs of key stakeholders.
  • Generates and provides accurate and timely results in the form of reports, presentations, etc.
  • Determines priorities, schedules, plans and necessary resources to ensure completion of any projects on schedule.
  • Develops specific goals and plans to prioritize, organize, and accomplish work.
  • Communicates concepts in a clear and persuasive manner that is easy to understand.
  • Demonstrates an understanding of business priorities
Marriott International is an equal opportunity employer. We believe in hiring a diverse workforce and sustaining an inclusive, people-first culture. We are committed to non-discrimination on any protected basis, such as disability and veteran status, or any other basis covered under applicable law. Marriott International considers for employment qualified applicants with criminal histories consistent with applicable federal, state and local law.
Marriott International is the world’s largest hotel company, with more brands, more hotels and more opportunities for associates to grow and succeed. We believe a great career is a journey of discovery and exploration. So, we ask, where will your journey take you?