Marriott International - Lincoln, NE
posted 7 months ago
The position is responsible for managing security compliance across various domains, including network compliance, endpoint compliance, and exceptions processing. The individual will review endpoints to ensure they comply with Marriott's endpoint security technology policies, tracking areas of non-compliance and collaborating with stakeholders to rectify these issues. This role also involves reviewing, approving, and tracking policy exceptions while working closely with the Risk Management team to ensure alignment with Enterprise Risk. The position is tasked with managing and improving the IT Security Compliance inventory and lifecycle within the organization, which includes inventory and monitoring of all asset assessments, data analysis, reporting, and remediation of findings. In addition to compliance management, the role requires consistent monitoring of adherence to applicable security policies and standards, executing technical risk assessments, and advising business and IT leaders on the risks associated with various initiatives and tools. The individual will oversee and evaluate documentation and validation processes to ensure that the organization meets security assurance and privacy requirements. They will also manage processes and tools that identify, document, and retain intellectual capital and information content, conduct assessments on threats and vulnerabilities, and deliver recommendations to leadership and vendors regarding present risks and necessary remediation actions. The position demands excellent communication and reporting skills, as well as the ability to manage and implement work and projects effectively. The individual will be expected to generate accurate and timely results in the form of reports and presentations, analyze information to evaluate results, and collaborate with internal partners to support business strategies. Overall, this role is critical in ensuring that Marriott International maintains a robust security posture and compliance with relevant regulations and policies.