Lead Information Security Analyst in Lakeland Corporate Headquarters at Marriott Vacations Worldwide

Date Posted: 9/26/2019

Job Snapshot

Job Description

Are you ready to grow your dream career while making others' vacation dreams come true? Marriott Vacations Worldwide is a world premier organization for Vacation Ownership with resorts at destinations around the globe. Join our team and help deliver unforgettable experiences that make vacation dreams come true.


CLS Generic Position Summary

As a member of the professional staff, contributes general knowledge and skill in a discipline area (e.g. Accounting, Finance, Human Resources, Information Resources, Operations Planning & Support, Sales & Marketing) to support team and/or department objectives. Generally works under close supervision or within well-established guidelines to complete routine tasks.

Specific Job Summary

The position is primarily responsible for the leadership and day-to-day tactical operations/activities of supporting the Information and Infrastructure Protection functions. This person will provide technical leadership for Network and System Security operations activities as well as manage relationships with various internal and external 3rd party hosting providers responsible for network and system security. In addition, this person serves as a 24/7 escalation point for technical problem analysis and resolution related to network and system security. It requires hands-on technical work and a strong understanding of information security challenges, domains, concepts, and principles.

Scope:

  • Network knowledge - firewalls/DMZs, routing protocols, networking capabilities,
  • Supports existing technologies/systems as advisor to a project or with a team
  • May plan and manage a technical team of 5-10 associates within a security operations/infrastructure-based project
  • Provides financial input to IT Management as requested
  • May manage a subset of a project budget
  • Knowledge of multiple system environments with extensive experience in one (Windows, Linux, IIS, SQL, Apache)


CLS Generic Expected Contributions

  • Performs the following types of basic tasks: analysis, auditing, budgeting, forecasting, programming, research, report generation, and software integration.
  • Responds to, solves and makes decisions on standard/routine business requests with limited risk.
  • Responsible for own work and contributing to team, department and/or business results. May direct work of non-management staff.
  • Assists more senior associates in achieving business results by:
  • utilizing technical knowledge and skills to enhance business processes.
  • establishing priorities for self and, where appropriate, others.
  • allocating own time effectively to meet goals in a manner that does not disadvantage other associates or groups.
  • contributing to department/unit budget as appropriate (i.e., input, following guidelines, etc).
  • Demonstrates an awareness of personal strengths and areas for improvement and acts independently to improve and increase skills and knowledge.
  • Performs other duties as appropriate.

Specific Expected Contributions

Key Accountabilities:

  • Successful management and support of technologies that support network and system security, including but not limited to:
  • Endpoint Security - Antivirus, anti-malware, device encryption, and device secure management
  • Web Security - Protect all networks/devices from Internet (web) based threats
  • E-mail Security - Protect e-mail accounts from viruses, phishing, and social engineering attacks
  • Account and Authentication Security - Account, password, and access security for 100k+ accounts across 200+ unique applications. Includes single sign-on and multi-factor authentication
  • Supports the Technical Architects in performing research, analysis, and design of enterprise security solutions to meet current and future governance and compliance requirements
  • Supports the ability to limit or contain the impact of a potential cybersecurity event
  • Leads efforts to implement security solutions from the design specifications, product installation, maintenance and performance tuning
  • Maintains knowledge of external security principles and assures that existing environment retains compliance with up to date security standards and principles
  • Proactive communications with internal security/customers/partners on security related issues


CLS Generic Candidate Profile

Successful candidates should possess knowledge and experience and demonstrate strong leadership and relationship skills as follows:

Usually a professional position with general knowledge in a discipline (i.e., Accounting, Human Resources, Information Resources). College degree and/or related experience typically required.

Specific Candidate Profile

Core Competencies:

  • Successful supervision and support of technologies for both in-house and 3rd party security systems
  • Develop and maintain security process activities which includes operational readiness, deployment, and the continued protection of Servers, PCs, Middleware, Database, Unix and other IT systems
  • Will be a member of the MVWC Risk advisory group providing guidance and recommendations
  • Participates in MVW's Security Response Committee on issues and efforts related to network and systems security
  • Process and administer internal Online Systems Catalog and incident ticket requests relating to Information and Infrastructure Protection
  • Assists the Director of Incident Response, MVW Legal and other Company departments in processing and fulfilling investigation requests
  • 3+ years' experience designing, delivering, and managing security platforms including (but not limited to) Trend Micro AV, Carbon Black, Proofpoint, Ping, and Web proxy technologies,
  • Ability to analyze, absorb, advocate, and apply rapidly changing technologies and apply them as part of security solutions to business requirements
  • Ability to establish and maintain a high level of peer trust and confidence
  • Certifications or strong working knowledge in the following areas: ITIL v3

Qualifications:

Education

  • BS/BA or technical certification or equivalent work experience
  • CISSP preferred. If no certification, candidate must commit to achieving certification within one (1) year of employment start date

Experience

  • 7 -- 9 years' work experience in Information Security-related topics, including application and infrastructure security
  • Network experience (routers, firewalls, etc) a plus
  • Applications development, technical infrastructure, system implementation experience (some technical specialization may be required for certain management positions)
  • Knowledge of fundamental project management principles
Marriott Vacations Worldwide is an equal opportunity employer committed to hiring a diverse workforce and sustaining an inclusive culture.