Job Number 20030624
Job Category Information Technology
Location Singapore Regional Office| 2 Harbourfront Place #06-08|
Singapore| Singapore| Singapore
Position Type Management
Start Your Journey With Us
Marriott International is the world’s largest hotel company| with more brands|
more hotels and more opportunities for associates to grow and succeed. We
believe a great career is a journey of discovery and exploration. So| we ask|
where will your journey take you?
As part of our Cyber Fusion Center located in Singapore| plans| directs| and
coordinates incident and crisis management activities for information security
and privacy. Shares responsibility for planning| directing| and coordinating
incident and crisis management activities pertaining to global information
security projects. Responds to computer security incidents according to
established response processes| while leveraging other team members and
subject matter experts. Verifies that project goals are accomplished and in
line with business objectives. Monitors incident and crisis management
Education & Experience
Undergraduate degree in STEM Major (Science| Technology| Engineering and Math) or equivalent experience/certifications
7+ years of experience in information security| project management| and/or security incident response
3+ years of hands-on experience in at least two of the following areas: cybersecurity operations; security incident response; network/host intrusion detection; or threat response with a demonstrated experience collaborating effectively across multiple organizations such as Operational Risk Management| Enterprise Risk Management| Compliance| Business Risk Offices| Information Technology| Legal| etc. to achieve objectives.
1+ years’ experience managing the Incident Response Life Cycle
Industry Security Certification (e.g.| CISM| CISSP| CISA| CIPP)
5+ years of experience partnering and influencing the business and program stakeholders
Results-driven with proven ability to effectively define and communicate project status| risks| and solutions in a proactive manner. Able to manage and support issues to drive to root cause and resolution
Demonstrated experience in handling security events in mission critical environments; hands-on troubleshooting| analysis| and technical expertise to resolve incidents and service requests. International security event management experience with offices in multiple high-risk locations
Strong analytical and problem-solving skills| communicates in a clear and succinct manner and effectively evaluates information / data to make decisions; anticipates obstacles and develops plans to resolve
Ability to lead and influence change working across organizational boundaries.
Strong knowledge of current and evolving cyber threat landscape.
Strong problem solving| prioritizing| presentation and facilitation skills with the ability to make recommendations to all levels of the organization
Familiarity with threat intelligence and applications within incident response and forensic investigations.
Experience with malware analysis and understanding attack techniques.
Experience interpreting| searching| and manipulating data within enterprise logging solutions.
Experience working with network| host and user activity data| and identifying anomalies.
CORE WORK ACTIVITIES
Performs security incident and crisis management planning activities| including identifying and developing goals| strategy| staffing| scheduling| identifications of risks| contingency plans| allocation of available resources| and deliverables to meet business need.
Leads large-scale incident response and forensics engagements| including but not limited to incident response tabletop exercises.
Serves as liaison with business unit| iT Plan| Build and Delivery teams.
Develops high-level business requirements including cost estimate for security incident and crisis management activities.
Identifies and schedules project deliverables| milestones| and required tasks for security incident and crisis management activities.
Leads all Cyber| Privacy and Data loss incident remediation
Directs and coordinates activities of project personnel to monitor project(s) so that they progress on schedule and within budget.
Provides information security reporting| including security metrics as required.
Creates and delivers standards and procedures for security incident/crisis reporting and documentation.
Develops and reviews reports and presentations for both technical and executive audiences.
Reviews status reports prepared by project personnel and modifies schedules and plans as required.
Informs the appropriate team members of project status and related issues.
Manages project risks.
Improve MI business processes and incident response methodologies.
Executing communication(s) with all levels of the organization including Executive Leadership| Legal| Public Relations| HR| Outside Counsel and other stake holders
Owner of the Incident Response Plan and responsible for the execution of the response