Senior Security Engineer - Cloud Security

$96,038 - $209,169/Yr

Marriott International - Annapolis, MD

posted 4 months ago

Full-time - Manager
Hybrid - Annapolis, MD
Accommodation

About the position

This position will be part of the Cloud Security Engineering Team within the Global Information Security organization. The security engineer will be responsible for designing and building security capabilities in a multi-cloud environment and building automation for cloud security controls to enhance the cloud security posture. This role will perform as a key engineering and supporting resource for the cloud security engineering program. The engineer will provide Cloud Security Governance and Optimization services to technical teams, advising on security best practices and guiding the development and infrastructure teams in adopting and enforcing security and access policies appropriate to the security needs of the business. The role involves conducting vulnerability assessments of cloud assets, delivering remediation recommendations, and providing knowledgeable assistance in resolving identified vulnerabilities. The engineer will also provide subject matter expertise to the Security Engineering and Operations teams, ensuring the safeguarding of design, build, deploy, and maintain products and services in the cloud environment. The position requires improving the accessibility of security through automation, continuous integration pipelines, and other means, including detecting and fixing vulnerabilities and identifying attacks. Additionally, the engineer will participate in researching, designing, and implementing security components that are standards-based, high-performing, highly available, and secure in delivering the required business functionality. The role includes educating internal and external users of security technologies to continually improve the knowledge and skill-base of the organization on how best to operate and support the technology and security services. The engineer will also support governance based on best practices and facilitate proper alignment to projects and major initiatives, while analyzing the current environment to detect critical deficiencies and recommending solutions for improvement.

Responsibilities

  • Provides Cloud Security Governance and Optimization services to technical teams.
  • Provides advice on security best practices and guides development and infrastructure teams in adopting and enforcing security and access policies.
  • Conducts vulnerability assessments of cloud assets and delivers remediation recommendations.
  • Provides subject matter expertise to the Security Engineering and Operations teams.
  • Improves the accessibility of security through automation and continuous integration pipelines.
  • Participates in researching, designing, and implementing security components that are standards-based and secure.
  • Educates internal and external users of security technologies.
  • Participates in the evaluation and selection of security service products.
  • Supports governance based on best practices and facilitates alignment to projects and initiatives.
  • Analyzes the current environment to detect deficiencies and recommends solutions for improvement.

Requirements

  • Bachelor's degree in Information Security or related field or equivalent experience/certification.
  • 7+ years progressive Information Technology engineering experience.
  • 5+ years of Information Security experience in security engineering.
  • 3+ years in public cloud security (e.g., AWS, Azure).
  • 1+ years' experience with scripting languages (e.g., Python, JavaScript).
  • 1+ years' experience with CI/CD pipelines or security tooling for cloud-native deployments.

Nice-to-haves

  • Current information security certification, including CISM or CISSP, AWS Professional Architect, AWS Security Specialty.
  • Experience working with Agile and Scrum methodologies.
  • Experience and knowledge working in DevSecOps, CI/CD, Infrastructure as Code concepts and technologies.
  • Knowledge of Cloud Security Posture Management (CSPM) tools.
  • Knowledge of securing technologies such as Cloud-Native Services, Container Platforms, APIs, Identity and Access Management, Serverless.

Benefits

  • Medical insurance
  • Dental insurance
  • Vision insurance
  • Health care flexible spending account
  • Dependent care flexible spending account
  • Life insurance
  • Disability insurance
  • Accident insurance
  • Adoption expense reimbursements
  • Paid parental leave
  • Educational assistance
  • 401(k) plan
  • Stock purchase plan
  • Discounts at Marriott properties
  • Commuter benefits
  • Employee assistance plan
  • Childcare discounts

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service