Marriott

We are seeking a Vice President of Cybersecurity Operations leading a global security effort. This VP will build strong partnerships and will be an expert in leading a Security Operations Center along with expertise in cyber analytics and automation, CIRT, Infrastructure Security Service Provider (ISSP), Log Management Operations Service Provider (LMO) and Managed Security Service Provider (MSSP) including oversight of dedicated 24x7 offshore Security Operations Center (SOC). 

The ideal candidate is a seasoned, hands-on leader with the energy and experience to lead through a dynamic and fast-paced environment. This leader is passionate about collaboration, communication clarity, purposeful process, and execution excellence and is an advocate for continuous improvement. Must have the polish and executive presence to present to C-level executives.

CANDIDATE PROFILE 

Education and Experience 

Required:

• Bachelor’s degree in computer sciences or related field or equivalent experience/certification
• 12+ years of progressive information technology leadership experience including:
• 5+ years directing/managing a global 24x7 Security Operations Center (SOC) and/or Cyber Incident Response Team
• Knowledge of/experience with managing cyber threats, cyber data analytics, attack tools, techniques and procedures, and containment and remediation strategies
• Administration and management of security controls and incident response in a multi-platform environment including on-prem and cloud
• Experience in security technologies (i.e., Incident Case Management, SIEM, UEBA, SOAR, EDR, Intrusion Prevention, Digital Forensics)
• Experience in defining, measuring and reporting on cyber analytics and incident response KPIs 

Preferred:

• Graduate degree in Cyber Security or related field
• Current information security certifications (e.g., CISSP, GCIH, GCIA, GCFE, GCFA)
• Experience with Analytics (SIEM) and Automation (SOAR) tools and processes
• Experience with Threat Management and Case Management tools and processes
• Knowledge of privacy regulations and requirements associated with data loss incidents
• Strong negotiating, influencing and problem resolution skills
• Proven ability to effectively prioritize and execute tasks in a high-pressure environment
• Knowledge of business environment, service requirements and hospitality culture
• Understanding of IT financial structures and ability to manage to corporate financial practices and goals, including drivers of process cost
• Strong verbal and written communication skills with the ability to articulate complex technical ideas in easy to understand business terms
• Excellent analytical skills and ability to apply investigative techniques.

CORE WORK ACTIVITIES 

• Defines, leads and delivers cyber analytics and drives cyber automation for the enterprise
• Defines, implements, and refines the strategy and execution for the company’s cyber incident response program including the policy and procedures for IR
• Leads the executive updates relative to Cyber Incident Response activities.
• Ensures that there is adequate and current technical documentation that includes both standard operating procedures and incident response processes/procedures.
• Identifies opportunities for and creates a strategy around implementing automation to support cyber operations processes. 
• Identifies opportunities for and creates a strategy around optimizing infrastructure security controls.
• Identifies opportunities for and creates a strategy to improve the detection of anomalous activity.
• Identifies opportunities for and creates a strategy to evolve the company’s cyber incident response plan.
• Establishes a platform to use defensive measures and information collected from a variety of sources to identify, analyze, and report events that occur or might occur within the network in order to protect information, information systems, and networks from threats. 
• Leads the organization’s development of remediation strategies and execution plans
• Collaborates within the hospitality and across other industries to identify opportunities to improve security controls or identity threats.
• Maintains relationships with law enforcement and legal counsel to advise, engage and support cyber incident response efforts.
• Ensure that adequate processes and procedures are established and functional to ensure availability of security systems and services.
• Maintains positive relationship with senior leaders from internal stakeholder groups such as IT, Internal Audit, Privacy, Legal, etc.
• Identify, report on, and manage operational KPIs.
• Participates in, contributes to and leads industry-wide information sharing opportunities, including ISAC based relationships.
• Stay up to date on operational trends and developments in information security.
• Provide sound advice and recommendations to leadership and staff on a variety of relevant topics within the cyber security discipline.
• Apply knowledge of priorities to define company direction, determine how to allocate resources and identify programs or infrastructure that are required to achieve desired goals. 

Managing Projects and Priorities

• Develops specific goals and plans to prioritize, organize, and accomplish work for self and direct reports.
• Provides direction and assistance to other teams regarding projects. Determines priorities, schedules, plans and necessary resources to ensure completion of any projects on schedule.
• Analyzes information and evaluates results to choose the best solution and solve problems.
• Thinks creatively and practically to develop, execute and implement new plans or programs. Generates and provides accurate and timely results in the form of reports, presentations, etc.
• Plans, develops, implements, and evaluates the quality of the teams’ operations.
• Provides recommendations to improve the effectiveness of processes or programs.
• Understands and meets the needs of key stakeholders.
• Supports achievement of performance goals, budget goals, team goals, etc.

Leading Discipline Team

• Champions leaders’ vision for product and service delivery.
• Works with direct reports and peers to develop and implement strategies and goals. Communicates a clear and consistent message regarding goals to produce desired results.
• Makes and executes the necessary decisions to keep team moving forward toward achievement of goals.
• Provides targeted and timely communication of results, achievements and challenges to direct reports, peers, and leaders.

Managing and Conducting Human Resources Activities

• Interviews and hires employees.
• Promotes the fair and equitable treatment of employees.
• Facilitates regular, ongoing communication in department (e.g., staff meetings).
• Fosters employee commitment to providing excellent service, participates in daily stand-up meetings and models desired service behaviors in all interactions with customer and employees.
• Incorporates customer satisfaction as a component of staff/operations meetings with an emphasis on generating innovative ways to continually improve results.
• Sets goals and expectations for direct reports using the performance review process and holds staff accountable for performance goals.
• Solicits employee feedback.
• Utilizes an “open door policy” and reviews employee satisfaction results to identify and address employee problems or concerns
• Promotes adherence to policies consistently, follows disciplinary procedures and documents items according to Standard and Local Operating

Procedures (SOPs and LSOPs) and supports the Peer Review Process.

• Conducts annual performance appraisal with direct reports according to Standard Operating Procedures.
• Champions change ensures brand and regional business initiatives are implemented and communicates follow-up actions to team as necessary.
• Identifies talents of direct reports and their teams and assists with their growth and development plans. 

Marriott International is an equal opportunity employer. We believe in hiring a diverse workforce and sustaining an inclusive, people-first culture. We are committed to non-discrimination on any protected basis, such as disability and veteran status, or any other basis covered under applicable law.

Marriott International is the world’s largest hotel company, with more brands, more hotels and more opportunities for associates to grow and succeed. Be where you can do your best work, begin your purpose, belong to an amazing global team, and become the best version of you.