Marriott International - Sacramento, CA
posted 4 months ago
This position will be part of the Cloud Security Engineering Team within the Global Information Security organization at Marriott International. The security engineer will be responsible for designing and building security capabilities in a multi-cloud environment, as well as building automation for cloud security controls to enhance the cloud security posture. This role will serve as a key engineering and supporting resource for the cloud security engineering program, ensuring that security measures are integrated into the cloud infrastructure effectively. The security engineer will provide Cloud Security Governance and Optimization services to technical teams, advising on security best practices and guiding development and infrastructure teams in adopting and enforcing security and access policies that align with the business's security needs. This includes conducting vulnerability assessments of cloud assets, delivering remediation recommendations, and providing knowledgeable assistance in resolving identified vulnerabilities. The engineer will also be responsible for improving the accessibility of security through automation and continuous integration pipelines, which involves detecting and fixing vulnerabilities and identifying potential attacks. In addition to these responsibilities, the security engineer will participate in the evaluation and selection of security service products, support governance based on best practices, and facilitate proper alignment to projects and major initiatives. The role requires a proactive approach to analyzing the current environment to detect critical deficiencies and recommend solutions for improvement, as well as consulting with project and architecture teams to modify infrastructure and security services as necessary. The engineer will also document all architecture design and analysis work, ensuring that all processes are standardized and compliant with established security protocols.