Senior Security Engineer - Cloud Security

$96,038 - $209,169/Yr

Marriott International - Lansing, MI

posted 4 months ago

Full-time - Senior
Lansing, MI
Accommodation

About the position

The Senior Security Engineer - Cloud Security position is a critical role within the Cloud Security Engineering Team at Marriott International. This position is designed for an experienced professional who will be responsible for designing and building security capabilities in a multi-cloud environment. The engineer will focus on enhancing the cloud security posture by developing automation for cloud security controls. As a key engineering and supporting resource for the cloud security engineering program, the individual will work closely with various teams to ensure that security best practices are integrated into the development and deployment processes. In this role, the engineer will provide Cloud Security Governance and Optimization services to technical teams, advising on security best practices and guiding the development and infrastructure teams in adopting and enforcing security and access policies. The engineer will also conduct vulnerability assessments of cloud assets, deliver remediation recommendations, and assist in resolving identified vulnerabilities. This position requires a hands-on approach to ensure the safeguarding of design, build, deploy, and maintenance of products and services in the cloud environment. The Senior Security Engineer will also be involved in improving the accessibility of security through automation and continuous integration pipelines, detecting and fixing vulnerabilities, and identifying potential attacks. The role includes providing input to the overall architecture and governance model, participating in the evaluation and selection of security service products, and supporting analysis of the current environment to detect critical deficiencies. The engineer will collaborate with project teams to modify infrastructure and security services as needed and document all architecture design and analysis work. This position is essential for maintaining the security integrity of Marriott's cloud services and ensuring compliance with industry standards and best practices.

Responsibilities

  • Design and build security capabilities in a multi-cloud environment.
  • Develop automation for cloud security controls to enhance the cloud security posture.
  • Provide Cloud Security Governance and Optimization services to technical teams.
  • Advise on security best practices and guide development and infrastructure teams in adopting and enforcing security policies.
  • Conduct vulnerability assessments of cloud assets and deliver remediation recommendations.
  • Provide subject matter expertise to Security Engineering and Operations teams.
  • Improve accessibility of security through automation and continuous integration pipelines.
  • Provide input to the overall architecture and governance model.
  • Participate in researching, designing, and implementing security components that are standards-based and secure.
  • Educate internal and external users on security technologies to improve knowledge and skills.
  • Participate in the evaluation and selection of security service products.
  • Support governance based on best practices and align projects with security needs.
  • Analyze the current environment to detect deficiencies and recommend improvements.
  • Consult with project and architecture teams to modify infrastructure and security services as necessary.
  • Document all architecture design and analysis work.

Requirements

  • Bachelor's degree in Information Security or related field or equivalent experience/certification.
  • 7+ years progressive Information Technology engineering experience.
  • 5+ years of Information Security experience in security engineering.
  • 3+ years in public cloud security (e.g., AWS, Azure).
  • 1+ years' experience with scripting languages (e.g., Python, JavaScript).
  • 1+ years' experience with CI/CD pipelines or security tooling for cloud-native deployments.

Nice-to-haves

  • Current information security certification (CISM, CISSP, AWS Professional Architect, AWS Security Specialty).
  • Experience working with Agile and Scrum methodologies.
  • Knowledge of Cloud Security Posture Management (CSPM) tools.
  • Experience in DevSecOps, CI/CD, Infrastructure as Code concepts and technologies.
  • Knowledge of securing technologies such as Cloud-Native Services, Container Platforms, APIs, Identity and Access Management, Serverless technologies.

Benefits

  • Medical insurance
  • Dental insurance
  • Vision insurance
  • Health care flexible spending account
  • Dependent care flexible spending account
  • Life insurance
  • Disability insurance
  • Accident insurance
  • Adoption expense reimbursements
  • Paid parental leave
  • Educational assistance
  • 401(k) plan
  • Stock purchase plan
  • Discounts at Marriott properties
  • Commuter benefits
  • Employee assistance plan
  • Childcare discounts

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service