Marriott International - Boise, ID
posted 7 months ago
The position is responsible for managing security compliance across various domains, including network compliance, endpoint compliance, and exceptions processing. The individual will review endpoints to ensure they comply with Marriott's endpoint security technology policies, tracking areas of non-compliance and collaborating with stakeholders to rectify these issues. Additionally, the role involves reviewing, approving, and tracking policy exceptions while working closely with the Risk Management team to ensure alignment with Enterprise Risk. The position also entails managing and improving the IT Security Compliance inventory and lifecycle, which includes monitoring all asset assessments, data analysis, reporting, and remediation of findings. In this role, the candidate will consistently monitor compliance with applicable security policies and standards, reporting any related risk issues. They will execute technical risk assessments and advise business and IT leaders on the risks associated with various initiatives and tools. The individual will oversee and evaluate documentation and validation processes to ensure that the organization meets security assurance and privacy requirements. They will also manage processes and tools that identify, document, and retain intellectual capital and information content, conducting assessments on threats and vulnerabilities to determine deviations and levels of risk. The candidate will be expected to deliver recommendations to leadership and vendors regarding present risks and whether additional remediation or action is required. They will create and drive the development of process and policy documentation, ensuring that reports are submitted in a timely manner and that project progress is documented accurately. The role requires managing and implementing assigned work and projects, generating accurate and timely results in the form of reports and presentations, and collaborating with internal partners to support business strategies. The position is designed for a candidate who can demonstrate technical expertise, effective communication skills, and a strong understanding of job-relevant issues, products, systems, and processes.