FLEX Endpoint Security Engineer

POSITION TITLE: Engineer - Endpoint Security Engineer 

FUNCTIONAL JOB FAMILY: Information Systems and Technology Reports to Director, Endpoint Security Engineering Department: IT Information Security 

JOB SUMMARY: Marriott International is seeking a skilled and experienced Endpoint Security Engineer to join our team. 

This position supports the planning, deployment, and operation of endpoint security solutions. This role will contribute to the development and execution of an information security operations framework to ensure controls, availability, capacity, and performance while maintaining an optimal levels of security. The candidate should have a range of technical experience in one or more of the following areas: Windows, Linux, MacOS, and/or Cloud Technologies. The ideal candidate will need to have a working knowledge of endpoint security, the technologies used, with expertise in Endpoint Detection and Response (EDR), Intrusion Prevention Systems (IPS), Host-based Firewalls, and endpoint hardening across a hybrid on-premise and cloud environments. As a member of our security team, you will play a role in ensuring the security and protection of our organization's endpoints against emerging threats.

REQUIRED:

·       Bachelor’s degree in Computer Science, Information Systems, Information Assurance, or other related field; or equivalent experience / certification / training.

·       Minimum 5 years’ progressive experience in IT implementation and administration experience with a broad exposure to operating systems, and networks

·       3 years’ experience deploying, administering, and managing endpoint security controls (e.g. EDR, XDR, IDS/IPS, firewalls)

·       1+ years’ experience with server and client operating systems (Windows, Linux, OSx)

PREFERRED:

·       Knowledge of common information security management frameworks such as NIST, FIPS-140, CSA, and an understanding of relevant legal and regulatory requirements for PCI-DSS.

·       Current information security certification, CompTIA Security+ or other similar related.

·       Networking concepts, protocols, and security methodologies · Knowledge of cybersecurity and privacy principles and organizational requirements (relevant to confidentiality, integrity, availability, authentication)

·       Skills in root cause analysis, troubleshooting, and problem solving

·       Endpoint, network, and OS hardening techniques · Ability to effectively communicate technical concepts to a non-technical audience

·       Written and verbal communication skills and documentation (runbooks, SOPs)

·       Experience in formatting and organization of datapoints (Excel, pivot tables, and comparing data points)

·       Knowledge of risk management processes (e.g., methods for assessing and mitigating risk)

·       Knowledge of cyber threats and vulnerabilities; measures or indicators of compromise

DUTIES & RESPONSIBILITIES:  

·       Design, deploy, and manage enterprise-wide information security endpoint controls in a large environment

·       Properly document details and processes surrounding implementation, operations, and maintenance activities and updates as needed

·       Develop and use subject matter expertise in the following areas – Endpoint Detection & Response, Anti-Malware, Component Hardening, Host Based Firewalls, File Integrity Management, and Identity Protection

·       Supports engagement management and service development/improvement initiatives

·       Effectively communicates and collaborates with co-workers, management, and customers.

·       Work independently to help solve problems, troubleshoot and remediate endpoint security issues.

·       Manages and implements work and projects assigned.

·       Generates and provides accurate and timely results in the form of reports, presentations, etc.

·       Analyzes information and evaluates results to choose the best solution and solve problems.

·       Demonstrates self-confidence, energy, and enthusiasm.