Marriott Payrolled Flex Staff (NE) - Information Security Incident Coordinator in Bethesda, Maryland
Job Number 18001E8I
Job Category Administrative
Location Marriott International HQ, Bethesda, Maryland VIEW ON MAP
Position Type Management
Start Your Journey With Us
Marriott International is the world’s largest hotel company, with more brands, more hotels and more opportunities for associates to grow and succeed. We believe a great career is a journey of discovery and exploration. So, we ask, where will your journey take you?
Proactively manages security events and activities to reduce the impact of security incidents and system compromises. The successful candidate will provide security monitoring, threat analysis, trend analysis, troubleshooting of security device monitoring and incident investigation using infrastructure and applications logs from across the enterprise.
2+ years of demonstrated experience in system, network and/or application security
Expert knowledge with Microsoft Windows Servers/Desktops
Working knowledge of Cisco Routers
Solid internetworking troubleshooting skills
Firm understanding of TCP IP, Firewalls, Enterprise- wide Antivirus management, HIDS/NIDS
Web development and management skills
High School Diploma
Excellent problem management skills
Excellent time management skills
Excellent communication skills both written and oral
Excellent teamwork skills
Strong sense of ownership and drive
Undergraduate degree or equivalent experience/certifications.
Industry Security Certification (ie CISSP, CISA, Ethical Hacker, CompTIA Security +)
Accurate and rapid response to security events
Analyze, correlate and respond to Security Reports and Feeds
Analyze, correlate and respond to Security Alerts and Alarms
Deployment and troubleshooting of host-based intrusion detection system (HIDS) and network intrusion detection system (NIDS)
Manage security events using ITIL incident management
Assist with rapid malware responses and phishing responses
Advise and consult with internal customers on risk assessment, threat modeling, and vulnerability management
Interpret and apply security policies and procedures
Participate in incident response
Identify security issues and risks and then develop mitigation plans
Managing Work, Projects, and Policies
Create and deliver the weekly CIRT Executive Summary
Develop proactive security awareness campaigns
Design, develop and lead the CIRT Security Awareness Web Site Project and manage the final product.
Provide analysis and trending of security log data from various security devices
Maintain up-to-date knowledge of the IT security industry, including awareness of new or revised security solutions, improved security processes, and the development of new attacks and threat vectors
Provide information security reporting, including security metrics as required
Recommend solutions to mitigate risk in any activity that potentially impacts security of existing IT and information management
Leadership competency differentiates Sr. Analyst position. Brian has demonstrated this competency over the last year. He stepped up to take on and see through initiatives, and was able to demonstrate independent decision making and problem solving.
Below are some additional Sr. Analyst competency areas that Brian has excelled at.
Adaptability - Maintains performance level under pressure or when experiencing changes or challenges in the workplace.
Communication - Conveys information and ideas to others in a convincing and engaging manner through a variety of methods.
Problem Solving and Decision Making - Identifies and understands issues, problems, and opportunities; obtains and compares information from different sources to draw conclusions, develops and evaluates alternatives and solutions, solves problems, and chooses a course of action.
Professional Demeanor - Exhibits behavioral styles that convey confidence and command respect from others; makes a good first impression and represents the company in alignment with its values.
Building and Contributing to Teams - Participates as a member of a team to move toward the completion of common goals while fostering cohesion and collaboration among team members.
Driving for Results - Sets high standards of performance for self and/or others; assumes responsibility for work objectives; initiates, focuses, and monitors the efforts of self and/or others toward the accomplishment goals; proactively takes action and goes beyond what is required.
Planning and Organizing - Gathers information and resources required to set a plan of action for self and/or others; prioritizes and arranges work requirements to accomplish goals and ensure work is completed.
Generating Talent and Organizational Capability
- Talent Management - Provides support and feedback to help individuals develop and strengthen skills and abilities needed to accomplish work objectives.
Learning and Applying Professional Expertise
Applied Learning - Seeks and makes the most of learning opportunities to improve performance of self and/or others.
Business Acumen - Understands and utilizes business information to manage everyday operations and generate innovative solutions to approach business and administrative challenges.
Technical Acumen - Understands and utilizes professional skills and knowledge in a specific functional area to conduct and manage everyday business operations and generate innovative solutions to approach function-specific work challenges.
Job Knowledge – Problem solving ability through managing efforts and vision. Coaching provided to others. Process improvement recommendations. Analytical skills, innovation.
Incident Handling requirements:
Ability to lead technical bridge lines to develop quick containment solutions to cyber-security incidents. (Leadership)
Ability to handle multiple competing priorities in a fast-paced environment. (Managing Execution)
Ability to communicate effectively across all levels of Marriott (Business Acumen)
Ability to manage projects, milestones, and deliverables for business-related objectives. (Managing Execution)
Ability to review, edit, and manage business critical documentation, requiring strong written and verbal communication skills.
Determine the root cause of incidents and work with stakeholders and responsible parties to remediate any identified control gaps or failures (Teamwork, driving for results)
Escalate issues to management in a timely manner with appropriate information regarding risk, action times, and root cause analysis
Maintain & utilize an incident response & recovery plans and, Exercise independent judgment in methods, techniques and evaluation criteria for obtaining results. (Technical Acumen)
Encouraging improvement and innovation within Incident Response
Nurturing and developing less-experienced staff through coaching and written/verbal feedback
Building and maintaining relationships across the other departments to effectively deliver and coordinate incident response activities.
Working with multiple stakeholders across functional and technical skillsets
Monitoring security estate for actionable alerts across the Marriott network
Responding to detected incidents from initial detection, through containment and remediation
Communicating findings to stakeholders along with recommendations on posture improvements
Performing threat hunting to discover otherwise undetected threats while creating new detection logic to improve base operations
Identifying external threats through tool alerts and logs made available to teams
Providing recommendations for preventative controls to Cyber Defense and Vulnerability teams based upon incident response findings and trends in realized threat activity
Consuming and exploiting intelligence produced by the Cyber Threat intelligence team; and,
Requesting custom development for analytics and SIEM enhancement from the Cyber Systems teams.
Marriott International is an equal opportunity employer committed to hiring a diverse workforce and sustaining an inclusive culture. Marriott International does not discriminate on the basis of disability, veteran status or any other basis protected under federal, state or local laws.