Marriott Payrolled Flex Staff (NE) - Information Security Incident Coordinator in Bethesda, Maryland

Job Number 18001E8I

Job Category Administrative

Location Marriott International HQ, Bethesda, Maryland VIEW ON MAP

Brand Corporate

Schedule Full-time

Relocation? No

Position Type Management

Start Your Journey With Us

Marriott International is the world’s largest hotel company, with more brands, more hotels and more opportunities for associates to grow and succeed. We believe a great career is a journey of discovery and exploration. So, we ask, where will your journey take you?

JOB SUMMARY

Proactively manages security events and activities to reduce the impact of security incidents and system compromises. The successful candidate will provide security monitoring, threat analysis, trend analysis, troubleshooting of security device monitoring and incident investigation using infrastructure and applications logs from across the enterprise.

CANDIDATE PROFILE

Required Experience:

  • 2+ years of demonstrated experience in system, network and/or application security

  • Expert knowledge with Microsoft Windows Servers/Desktops

  • Working knowledge of Cisco Routers

  • Solid internetworking troubleshooting skills

  • Firm understanding of TCP IP, Firewalls, Enterprise- wide Antivirus management, HIDS/NIDS

  • Web development and management skills

  • High School Diploma

  • Excellent problem management skills

  • Excellent time management skills

  • Excellent communication skills both written and oral

  • Excellent teamwork skills

  • Strong sense of ownership and drive

Preferred Experience:

  • Undergraduate degree or equivalent experience/certifications.

  • Industry Security Certification (ie CISSP, CISA, Ethical Hacker, CompTIA Security +)

CORE WORK

Supporting Operations

  • Accurate and rapid response to security events

  • Analyze, correlate and respond to Security Reports and Feeds

  • Analyze, correlate and respond to Security Alerts and Alarms

  • Deployment and troubleshooting of host-based intrusion detection system (HIDS) and network intrusion detection system (NIDS)

  • Manage security events using ITIL incident management

  • Assist with rapid malware responses and phishing responses

  • Advise and consult with internal customers on risk assessment, threat modeling, and vulnerability management

  • Interpret and apply security policies and procedures

  • Participate in incident response

  • Identify security issues and risks and then develop mitigation plans

Managing Work, Projects, and Policies

  • Create and deliver the weekly CIRT Executive Summary

  • Develop proactive security awareness campaigns

  • Design, develop and lead the CIRT Security Awareness Web Site Project and manage the final product.

  • Provide analysis and trending of security log data from various security devices

  • Maintain up-to-date knowledge of the IT security industry, including awareness of new or revised security solutions, improved security processes, and the development of new attacks and threat vectors

  • Provide information security reporting, including security metrics as required

  • Recommend solutions to mitigate risk in any activity that potentially impacts security of existing IT and information management

Leadership competency differentiates Sr. Analyst position. Brian has demonstrated this competency over the last year. He stepped up to take on and see through initiatives, and was able to demonstrate independent decision making and problem solving.

Below are some additional Sr. Analyst competency areas that Brian has excelled at.

Leadership

  • Adaptability - Maintains performance level under pressure or when experiencing changes or challenges in the workplace.

  • Communication - Conveys information and ideas to others in a convincing and engaging manner through a variety of methods.

  • Problem Solving and Decision Making - Identifies and understands issues, problems, and opportunities; obtains and compares information from different sources to draw conclusions, develops and evaluates alternatives and solutions, solves problems, and chooses a course of action.

  • Professional Demeanor - Exhibits behavioral styles that convey confidence and command respect from others; makes a good first impression and represents the company in alignment with its values.

Managing Execution

  • Building and Contributing to Teams - Participates as a member of a team to move toward the completion of common goals while fostering cohesion and collaboration among team members.

  • Driving for Results - Sets high standards of performance for self and/or others; assumes responsibility for work objectives; initiates, focuses, and monitors the efforts of self and/or others toward the accomplishment goals; proactively takes action and goes beyond what is required.

  • Planning and Organizing - Gathers information and resources required to set a plan of action for self and/or others; prioritizes and arranges work requirements to accomplish goals and ensure work is completed.

Generating Talent and Organizational Capability

  • Talent Management - Provides support and feedback to help individuals develop and strengthen skills and abilities needed to accomplish work objectives.

Learning and Applying Professional Expertise

  • Applied Learning - Seeks and makes the most of learning opportunities to improve performance of self and/or others.

  • Business Acumen - Understands and utilizes business information to manage everyday operations and generate innovative solutions to approach business and administrative challenges.

  • Technical Acumen - Understands and utilizes professional skills and knowledge in a specific functional area to conduct and manage everyday business operations and generate innovative solutions to approach function-specific work challenges.

Job Knowledge – Problem solving ability through managing efforts and vision. Coaching provided to others. Process improvement recommendations. Analytical skills, innovation.

Incident Handling requirements:

  • Ability to lead technical bridge lines to develop quick containment solutions to cyber-security incidents. (Leadership)

  • Ability to handle multiple competing priorities in a fast-paced environment. (Managing Execution)

  • Ability to communicate effectively across all levels of Marriott (Business Acumen)

  • Ability to manage projects, milestones, and deliverables for business-related objectives. (Managing Execution)

  • Ability to review, edit, and manage business critical documentation, requiring strong written and verbal communication skills.

  • Determine the root cause of incidents and work with stakeholders and responsible parties to remediate any identified control gaps or failures (Teamwork, driving for results)

  • Escalate issues to management in a timely manner with appropriate information regarding risk, action times, and root cause analysis

  • Maintain & utilize an incident response & recovery plans and, Exercise independent judgment in methods, techniques and evaluation criteria for obtaining results. (Technical Acumen)

  • Encouraging improvement and innovation within Incident Response

  • Nurturing and developing less-experienced staff through coaching and written/verbal feedback

  • Building and maintaining relationships across the other departments to effectively deliver and coordinate incident response activities.

  • Working with multiple stakeholders across functional and technical skillsets

  • Monitoring security estate for actionable alerts across the Marriott network

  • Responding to detected incidents from initial detection, through containment and remediation

  • Communicating findings to stakeholders along with recommendations on posture improvements

  • Performing threat hunting to discover otherwise undetected threats while creating new detection logic to improve base operations

  • Identifying external threats through tool alerts and logs made available to teams

  • Providing recommendations for preventative controls to Cyber Defense and Vulnerability teams based upon incident response findings and trends in realized threat activity

  • Consuming and exploiting intelligence produced by the Cyber Threat intelligence team; and,

  • Requesting custom development for analytics and SIEM enhancement from the Cyber Systems teams.

Marriott International is an equal opportunity employer committed to hiring a diverse workforce and sustaining an inclusive culture. Marriott International does not discriminate on the basis of disability, veteran status or any other basis protected under federal, state or local laws.