Marriott International - Little Rock, AR

posted 6 months ago

Full-time - Manager
Little Rock, AR
Accommodation

About the position

The Senior Manager, Vulnerability Management Solutions Support at Marriott plays a critical role in overseeing the vulnerability management solutions across various environments, including corporate, cloud, data center, and property locations. This position is part of the Marriott Enterprise Vulnerability Management group, which is dedicated to reducing the attack surface and protecting the organization’s data, systems, and service delivery functions from a wide range of adversaries. The successful candidate will function as a technical expert, responsible for implementing, managing, and optimizing vulnerability management tools within the Marriott environment. In this role, the Senior Manager will ensure comprehensive discovery of vulnerabilities across a multi-vendor public cloud environment. This requires an in-depth understanding of public cloud architecture and security, as well as knowledge of cloud automation pipelines, DevOps practices, containerization, public cloud networking technologies, and serverless architectures. The position also necessitates a solid grasp of the lifecycle of cyberspace threats, attack vectors, and methods of exploitation, particularly in relation to a multi-vendor public cloud environment. The Senior Manager will participate in designing, building, and maintaining integrations between various internal and SaaS applications, while also maintaining operational and technical documentation related to the operational lifecycle of supported solutions. Identifying improvements to ensure quality delivery and compliance with security policies and regulations is also a key responsibility. The ideal candidate will have a strong background in information security, with at least seven years of experience, including extensive knowledge of vulnerability management concepts and methodologies. The role requires a proactive approach to managing vulnerabilities and collaborating with various stakeholders to enhance the organization’s security posture. The Senior Manager will also guide and develop team members in technical skills related to cloud vulnerability management, ensuring that the organization’s core values and culture are embedded in all aspects of the work.

Responsibilities

  • Ensure comprehensive discovery of vulnerabilities across a multi-vendor public cloud environment.
  • Utilize advanced vulnerability assessment tools and techniques to discover and assess potential threats across various cloud platforms.
  • Identify vulnerability-related information in enterprise tools and integrate that data with vulnerability reporting solutions.
  • Analyze the risk of identified vulnerabilities and assist in prioritizing remediation efforts based on risk.
  • Assist in the successful integration and operation of vulnerability management reporting solutions, including Cisco Vulnerability Management (Kenna Security).
  • Develop and maintain integrations between vulnerability assessment solutions, vulnerability reporting solutions, and related solutions as needed.
  • Assist with developing reporting and providing analysis around enterprise cloud vulnerability assessment data.
  • Work with key stakeholders throughout the organization to build relationships based on an understanding of stakeholder needs and actions consistent with the company's service standards.
  • Provide reporting and analysis to demonstrate program effectiveness, drive improvements in maturity and stakeholder awareness, and develop strategic improvements.
  • Guide and develop team members in technical skills related to cloud vulnerability management.
  • Manage and implement work and projects as assigned, generating accurate and timely results in the form of reports and presentations.

Requirements

  • Bachelor's degree in a field relevant to information security or equivalent combination of experience and certifications.
  • At least 7 years of information security experience, including knowledge of general security concepts such as defense in-depth and risk-based security management.
  • 7+ years of in-depth experience with vulnerability management concepts and methodologies.
  • 3+ years of experience in cloud solutions architecture or cloud security engineering.
  • 3+ years of experience with vulnerability assessment and reporting, including comprehensive understanding of vulnerability management methodologies and procedures, threat assessment, and remediation management.
  • 3+ years of experience implementing, managing, and maintaining enterprise vulnerability assessment or cloud security assessment technologies.

Nice-to-haves

  • Working knowledge of multiple vendor public cloud environments and deep understanding of services provided therein.
  • Experience with solutions deployment in on-premises and SaaS models.
  • Experience with enterprise vulnerability reporting tools, such as Cisco Vulnerability Management (Kenna Security).
  • Experience with workflow solutions, including ServiceNow and Jira.
  • Working knowledge of interacting with API data sources.
  • Working knowledge of Python with experience in automation, API access, and data management.
  • Knowledge of SEIM and SOAR solutions and their role in enterprise security solutions infrastructure.
  • Understanding of DevOps processes, workflows, and technologies.
  • Experience in agile workflow methodologies.
  • Experience managing medium to large projects involving multiple teams in a technical lead role.

Benefits

  • Health insurance coverage
  • Dental insurance coverage
  • 401k benefit for retirement savings plan
  • Flexible scheduling options
  • Paid holidays
  • Professional development opportunities
  • Employee discount programs
Job Description Matching

Match and compare your resume to any job description

Start Matching
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service