Sorry, this job is no longer accepting applications. See below for more jobs that match what you’re looking for!

Vice President, Information Security Technology Strategy

Expired Job

Corporate Bethesda , MD 20810

Posted 2 months ago

Senior Executive leader responsible for all aspects of the strategy and execution of the organizations security technology strategy and architecture. Provides security technology thought leadership and drives security technology strategy for the global enterprise across all security domains (i.e., cloud, mobile, identity & access management, authorization, endpoint, audit/controls, network/perimeter, application, and data). Defines and maintains security requirements, policies and standards and ensures alignment with the security technology strategy.

Drives compliance of policies and standards as a function of end-to-end SDLC project lifecycle. Leads security technology exerts that serve as the primary Security Points of Contact (POC) for business projects or other security topics, including risk assessments. Responsible for the engagement of appropriate Security Subject Matter Experts (SME) throughout the project lifecycle.

Serves as point of escalation for Security issues and risks that may arise during a project. Provides, reviews and approves Privacy and Security related project deliverables as outlined in the SDLC and validates that value is achieved as anticipated through security business partnerships.

CANDIDATE PROFILE
Required:

12+ years of information technology leadership experience

5+ years of experience designing, implementing, managing and governing security technologies (e.g., cloud, mobile, identity & access management, authorization, endpoint, audit/controls, network/perimeter, application, and data)

5+ years of experience developing and implementing security domain architectures, and Information Security policies, procedures and standards

Experience in assessing security risks

Direct management of cross functional, sourced, or matrixed teams, including offshore project teams

Bachelors degree in Computer Sciences or related field or equivalent experience/certification

Preferred:

Current information security certification, including Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or Certified Information Systems Security Professional (CISSP)

Ability to translate information security objectives into mutually beneficial business strategies for the client organizations

Deep understanding of IT financial structures and ability to manage to corporate financial practices and goals, including drivers of process cost

Demonstrated ability to assess customer/client needs, creatively approach solutions, decide and influence appropriate courses of action

Demonstrated success leading large-scale infrastructure initiatives/transformations

A thorough understanding of the interdependence of systems and their impact to the business

Understanding of the quality assurance, risk management, and security considerations and their impact on the overall technology environment

Strong understanding of the software development life cycle (SDLC); good understanding of ITIL v3 Framework

Strong process management and problem resolution skills

Proven ability to effectively prioritize and execute tasks in a high-pressure environment

Strong negotiating, influencing and problem resolution skills

Experience in business systems and process planning

Knowledge of the business environment, service requirements and hospitality culture

Demonstrated ability to assess customer/client needs, creatively approach solutions, decide and influence appropriate courses of action.

Ability to understand and communicate the lifecycle of technologies and applications and to translate into business strategies for the client organizations

Strong verbal and written communication skills with the ability to articulate complex technical ideas in easy to understand business terms.

Ability to accomplish results through others, particularly by establishing relationships, effective controls and leading in a managed service environment

Demonstrates strong executive presence and strategic thinking skills

Masters degree in Computer Science, Information Technology Management or an MBA

CORE WORK ACTIVITIES

Information Security Planning & Standards Development

Provide thought security technology leadership and develop enterprise security technology strategy

Analyze organizational information security policy

Assess policy needs and collaborate with stakeholders to develop policies to govern information security activities

Develop policy, programs and guidelines for implementations

Draft and publish security policy, requirements and standards

Establish and maintain communication channels with stakeholders

Monitor the application of information security policies, principles and practices

Obtain alignment on proposed policy changes

Provide policy guidance, requirements and standards to IT partners

Define and implement policies and procedures to ensure protection of critical infrastructure, as appropriate

Serve as liaison to and partner with Enterprise Architecture

Information Security Business Partnership

Assist IT partners in developing overall information security structure and blue prints based on environment and overall business, technology and security objectives

Advise business partners in understanding the future state challenges in information security and work collaboratively with them to enhance capabilities

Guide project teams to execute on defined security requirements

Contribute to thought leadership across the IT organization and in business partner organizations

Operate as a technical subject matter expert across multiple security technologies to develop holistic security capabilities

Analyze design constraints, trade-offs and detailed security designs to identify necessary lifecycle support.

Apply security policies to applications that interface with one another

Assess the effectiveness of information protection measures utilized by systems

Assess threats to and vulnerabilities of computer systems to develop a security profile

Design, develop, integrate and update system security measures, including policies and requirements

Design to minimum security requirements to ensure requirements are met for all systems and/or applications

Develop risk mitigation strategies to resolve vulnerabilities and recommend security changes to system or system components as needed

Perform risk analysis and identify security gaps in security architecture

Provide input to implementation plans and standard operating procedures

Cultivate a High-Performing Team

Create a compelling vision, clear direction and strategy for the team

Generate enthusiasm and understanding of the information security vision and how each role contributes to the achievement of that vision

Ensure capabilities are developed and resources are aligned to support the strategy

Attract, motivate, develop and retain highly skilled leaders; champion and model leadership development

Create and sustain a work environment that drives associate engagement and enables business success

Ensure appropriate processes are in place and executed to drive collaboration and alignment within the team and with the broader IT organization

Serve as a role model and ensure all information security leaders are visible and effective partners with IT counterparts, broader Marriott stakeholders, and service providers Marriott International is an equal opportunity employer committed to hiring a diverse workforce and sustaining an inclusive culture. Marriott International does not discriminate on the basis of disability, veteran status or any other basis protected under federal, state or local laws.



See if you are a match!

See how well your resume matches up to this job - upload your resume now.

Find your dream job anywhere
with the LiveCareer app.
Download the
LiveCareer app and find
your dream job anywhere
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Vice President Information Security Technology Strategy & Architecture

Marriott International

Posted 2 months ago

VIEW JOBS 9/24/2018 12:00:00 AM 2018-12-23T00:00 Marriott International is the world's largest hotel company, with more brands, more hotels and more opportunities for associates to grow and succeed. We believe a great career is a journey of discovery and exploration. So, we ask, where will your journey take you? Senior Executive leader responsible for all aspects of the strategy and execution of the organization's security technology strategy and architecture. Provides security technology thought leadership and drives security technology strategy for the global enterprise across all security domains (i.e., cloud, mobile, identity & access management, authorization, endpoint, audit/controls, network/perimeter, application, and data). Defines and maintains security requirements, policies and standards and ensures alignment with the security technology strategy. Drives compliance of policies and standards as a function of end-to-end SDLC project lifecycle. Leads security technology exerts that serve as the primary Security Points of Contact (POC) for business projects or other security topics, including risk assessments. Responsible for the engagement of appropriate Security Subject Matter Experts (SME) throughout the project lifecycle. Serves as point of escalation for Security issues and risks that may arise during a project. Provides, reviews and approves Privacy and Security related project deliverables as outlined in the SDLC and validates that value is achieved as anticipated through security business partnerships. CANDIDATE PROFILE Required: * 12 years of information technology leadership experience * 5 years of experience designing, implementing, managing and governing security technologies (e.g., cloud, mobile, identity & access management, authorization, endpoint, audit/controls, network/perimeter, application, and data) * 5 years of experience developing and implementing security domain architectures, and Information Security policies, procedures and standards * Experience in assessing security risks * Direct management of cross functional, sourced, or matrixed teams, including offshore project teams * Bachelor's degree in Computer Sciences or related field or equivalent experience/certification Preferred: * Current information security certification, including Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or Certified Information Systems Security Professional (CISSP) * Ability to translate information security objectives into mutually beneficial business strategies for the client organizations * Deep understanding of IT financial structures and ability to manage to corporate financial practices and goals, including drivers of process cost * Demonstrated ability to assess customer/client needs, creatively approach solutions, decide and influence appropriate courses of action * Demonstrated success leading large-scale infrastructure initiatives/transformations * A thorough understanding of the interdependence of systems and their impact to the business * Understanding of the quality assurance, risk management, and security considerations and their impact on the overall technology environment * Strong understanding of the software development life cycle (SDLC); good understanding of ITIL v3 Framework * Strong process management and problem resolution skills * Proven ability to effectively prioritize and execute tasks in a high-pressure environment * Strong negotiating, influencing and problem resolution skills * Experience in business systems and process planning * Knowledge of the business environment, service requirements and hospitality culture * Demonstrated ability to assess customer/client needs, creatively approach solutions, decide and influence appropriate courses of action. * Ability to understand and communicate the lifecycle of technologies and applications and to translate into business strategies for the client organizations * Strong verbal and written communication skills with the ability to articulate complex technical ideas in easy to understand business terms. * Ability to accomplish results through others, particularly by establishing relationships, effective controls and leading in a managed service environment * Demonstrates strong executive presence and strategic thinking skills * Master's degree in Computer Science, Information Technology Management or an MBA CORE WORK ACTIVITIES Information Security Planning & Standards Development * Provide thought security technology leadership and develop enterprise security technology strategy * Analyze organizational information security policy * Assess policy needs and collaborate with stakeholders to develop policies to govern information security activities * Develop policy, programs and guidelines for implementations * Draft and publish security policy, requirements and standards * Establish and maintain communication channels with stakeholders * Monitor the application of information security policies, principles and practices * Obtain alignment on proposed policy changes * Provide policy guidance, requirements and standards to IT partners * Define and implement policies and procedures to ensure protection of critical infrastructure, as appropriate * Serve as liaison to and partner with Enterprise Architecture Information Security Business Partnership * Assist IT partners in developing overall information security structure and blue prints based on environment and overall business, technology and security objectives * Advise business partners in understanding the future state challenges in information security and work collaboratively with them to enhance capabilities * Guide project teams to execute on defined security requirements * Contribute to thought leadership across the IT organization and in business partner organizations * Operate as a technical subject matter expert across multiple security technologies to develop holistic security capabilities * Analyze design constraints, trade-offs and detailed security designs to identify necessary lifecycle support. * Apply security policies to applications that interface with one another * Assess the effectiveness of information protection measures utilized by systems * Assess threats to and vulnerabilities of computer systems to develop a security profile * Design, develop, integrate and update system security measures, including policies and requirements * Design to minimum security requirements to ensure requirements are met for all systems and/or applications * Develop risk mitigation strategies to resolve vulnerabilities and recommend security changes to system or system components as needed * Perform risk analysis and identify security gaps in security architecture * Provide input to implementation plans and standard operating procedures Cultivate a High-Performing Team * Create a compelling vision, clear direction and strategy for the team * Generate enthusiasm and understanding of the information security vision and how each role contributes to the achievement of that vision * Ensure capabilities are developed and resources are aligned to support the strategy * Attract, motivate, develop and retain highly skilled leaders; champion and model leadership development * Create and sustain a work environment that drives associate engagement and enables business success * Ensure appropriate processes are in place and executed to drive collaboration and alignment within the team and with the broader IT organization * Serve as a role model and ensure all information security leaders are visible and effective partners with IT counterparts, broader Marriott stakeholders, and service providers Marriott International is an equal opportunity employer committed to hiring a diverse workforce and sustaining an inclusive culture. Marriott International does not discriminate on the basis of disability, veteran status or any other basis protected under federal, state or local laws. Marriott International Bethesda MD

Vice President, Information Security Technology Strategy

Expired Job

Corporate