SENIOR NETWORK SECURITY ENGINEER - FIREMON
Company: Marriott International
Location: Bethesda
Posted on: November 19, 2024
Job Description:
Senior Network Security Engineer - FiremonThe Senior Network
Security Engineer, Network Site Reliability Engineering (SRE) is
the subject matter expert in designing and implementing the Network
security strategy and platforms for the next-gen operations for all
Marriott International (MI) networks including the Property
Networks, Datacenter/Cloud Networks, and Corporate Networks. This
role will work closely and collaboratively with a matrix team of
expert network architects and engineers to drive adoption of SRE
practices and operating models across all network product towers,
and around the globe. As the Senior Network Security Engineer, the
candidate focuses on defining and executing the zero-trust strategy
with a focus on firewall management systems meeting strict security
compliance requirements. Reporting to the Director of SRE, the
engineer will be responsible to articulate and effectively execute
a vision to address increasing complexity, scale of modern IT
systems, and ensure real-time asset visibility, assessment,
remediation, and access control to Marriott services. The
successful candidate will be expected to bridge the gap by
implementing security strategies and next-gen zero trust solutions
to make sure all system components are meeting Marriott security
compliance requirements at a granular level. This role is
accountable for establishing technical level relationships and
partnering with all business disciplines, other MI teams, solution
providers/vendors, and operational partners to define and implement
the Network SRE zero trust security roadmap, building and enforcing
the standards defined in it.
If you want to know about the requirements for this role, read on
for all the relevant information.
CANDIDATE PROFILERequired Education and Experience
- Undergraduate degree in an engineering or computer science
discipline and/or equivalent experience/certification
- 7+ years' experience in information technology including:
- 6+ years' experience with network security tools related
products
- Experience in installing, configuring, and troubleshooting of
zero trust security tools (Cisco ISE or other network admission
tools)
- Experience in installing, configuring and troubleshooting of
Security tools (Firewall management solutions like Firemon, Cisco
ISE, Tufin, AlgoSec or similar products)
- Strong preference to have product certifications (CCIE, CCNP,
CCNA)
- Must possess expertise in designing and implementing policies
in the tool(s) mentioned above
- Knowledge and experience in firewalls, network management,
wired and wireless network peripherals in supporting security
products like Firemon, Cisco IS, Tufin, AlgoSec or similar
products
- Experience with one or more Cloud Computing platforms (e.g.
Amazon AWS, Microsoft Azure, Google Compute Engine)
- Knowledge and experience in wireshark/tcpdump/nmap and related
analysis techniques
- Experience in developing, documenting, and managing the
requirements gathering process and provide detailed design and
implementation plan to support the requirements throughout the
project life cycle
- Field experience and knowledge of foundational data networking
and IP technologies including (ARP, TCP/IP, UDP, RADIUS, TACACS+
and others)
- Experience in Agile methodologies, daily stand-up meetings,
sprint planning sessions and user story preparations
- Hands-on experience with common routing and switching platforms
(Cisco, Juniper, HP/Aruba etc.)Preferred:
- Advanced Degree (e.g., MS, PhD) in Computer Science or other
technical discipline or MBA, preferably with a focus on
technology
- Experience with managing network security tools in a
hospitality industry a plus
- Experience in leveraging public APIs for developing automation
scripts
- Team player with the ability to collaborate and work with
cross-functional teams in multiple time zones
- Experience in researching emerging technologies and trends,
standards, and products and synthesizing into clear technology
roadmaps and strategies
- Strong knowledge of emerging tools, applications, and systems
for attaining best-in-class network security posture across the
enterprise
- Excellent problem-solving skills working independently and
through leading outcomes for cross-functional teams
- Excellent understanding of change management, testing
requirements and techniques, to ensure high availability and
business readiness of platforms
- Strong attention to detail with an ability to operate
effectively across multiple priorities
- Ability to perform independently as a member of a team and
through cross-functional initiatives
- Proven track record of driving transformation in network
technologies, tools, and processes through a data driven continuous
improvement methodology
- Demonstrated experience in improving reliability, performance,
and agility of complex enterprise networks
- Strong understanding of network infrastructure automation,
instrumentation, and monitoring platforms and the emerging
technologies in this area
- Strong influencing skills and an ability to overcome barriers
while driving change
- Excellent verbal and written communication skills for a wide
range of audiences including executives, business stakeholders, and
IT teamsCORE WORK ACTIVITIES
- Develop complex global distributed infrastructure security,
management, and automation solutions to manage our global
network.
- Lead design, write, and build tools to improve the security
posture, availability, and scalability of Datacenter/Cloud
Networks, Property Networks, and Corporate Networks
- Serve as technical lead for the development of complex global
distributed infrastructure security, management, and automation
solutions to manage our global network.
- Serve as technical lead for the design of new cybersecurity
tools to help implement zero trust strategy.
- Collaborate with other Network teams to develop network SRE
solutions with a focus on zero trust
- Conduct network analysis, configuration management and develop
improvements for security compliance, availability, and
reliability
- Provide program management assistance and contribute input to
help manage project schedules, risks, and costs.
- Manage Network SRE products and solutions, including the
design, low level engineering, and delivery of new security tools
across the network.
- Define and implement an operational Recovery Time Objective
(RTO) and Recovery Point Objective (RPO) strategy for all Network
Infrastructure areas.
- Establish management level relationships and partnering with
all Business disciplines and other MI teams to define Network SRE
Security roadmap, meet service level requirements, and serve as an
escalation point to resolve service delivery and operational
issues.
- Develop, document, and manage the requirements gathering
process and provide detailed design and business processes to
support the requirements throughout the project life cycle
- Drive accountability with strategic sourcing partners, vendors,
telco/ISPs, etc., launching and managing Security Improvement
initiatives where appropriate.
- Create functional strategies and specific objectives for the
sub-function and contribute to the development of
budgets/policies/procedures to support the functional Network SRE
security tools, systems, and infrastructure.
- Perform network troubleshooting and upgrades. Coordinate with
local teams and vendors, solve problems and restore services as
needed
- Foster an environment of continuous improvement and structured
processes and procedures that support a zero-fault
culture.Maintaining Goals
- Submits reports in a timely manner, ensuring delivery deadlines
are met.
- Promotes the documenting of project progress accurately.
- Provides input and assistance to other teams regarding
projects.Demonstrating and Applying Discipline Knowledge
- Provides technical expertise and support to persons inside and
outside of the department.
- Demonstrates knowledge of job-relevant issues, products,
systems, and processes.
- Demonstrates knowledge of function-specific procedures.
- Keeps up-to-date technically and applies new knowledge to
job.
- Uses computers and computer systems (including hardware and
software) to enter data and/or process information.Delivering on
the Needs of Key Stakeholders
- Understands and meets the needs of key stakeholders.
- Develops specific goals and plans to prioritize, organize, and
accomplish work.
- Determines priorities, schedules, plans and necessary resources
to ensure completion of any projects on schedule.
- Collaborates with internal partners and stakeholders to support
business/initiative strategies
- Communicates concepts in a clear and persuasive manner that is
easy to understand.
- Generates and provides accurate and timely results in the form
of reports, presentations, etc.
- Demonstrates an understanding of business prioritiesThe salary
range for this position is $96,038 to $179,270 annually. In
addition to the annual salary, the position will be eligible to
receive an annual bonus.Washington Applicants Only: Employees will
accrue 0.04616 PTO balance for every hour worked and are eligible
to receive a minimum of 7 holidays annually.All locations offer
coverage for medical, dental, vision, health care flexible spending
account, dependent care flexible spending account, life insurance,
disability insurance, accident insurance, adoption expense
reimbursements, paid parental leave, educational assistance, 401(k)
plan, stock purchase plan, discounts at Marriott properties,
commuter benefits, employee assistance plan, and childcare
discounts. Benefits are subject to terms and conditions, which may
include rules regarding eligibility, enrollment, waiting period,
contribution, benefit limits, election changes, benefit exclusions,
and others.Marriott HQ is committed to a hybrid work environment
that enables associates to be connected. Headquarters-based
positions are considered hybrid, for candidates within a commuting
distance to Bethesda, MD; candidates outside of commuting distance
to Bethesda, MD will be considered for Remote positions.The
application deadline for this position is 28 days after the date of
this posting, August 30, 2024.Marriott International is an equal
opportunity employer. We believe in hiring a diverse workforce and
sustaining an inclusive, people-first culture. We are committed to
non-discrimination on any protected basis, such as disability and
veteran status, or any other basis covered under applicable
law.
#J-18808-Ljbffr
Keywords: Marriott International, Frederick , SENIOR NETWORK SECURITY ENGINEER - FIREMON, IT / Software / Systems , Bethesda, Maryland
Didn't find what you're looking for? Search again!
Loading more jobs...