Sr. Infrastructure Security Engineer

Job description

Job Number 24062158
Job Category Information Technology
Location Marriott International HQ, 7750 Wisconsin Avenue, Bethesda, Maryland, United States VIEW ON MAP
Schedule Full-Time
Located Remotely? Y
Relocation? N
Position Type Management

JOB SUMMARY

 

The Sr. Infrastructure Security Engineer ensures the stability, integrity and efficient operation of information systems and technologies across the global enterprise. This role serves as a key technical resource designing, engineering, and delivering system hardening and image creation automation for Windows and Linux environments within the public cloud and private VMWare environments. This role will also assist the team in vulnerability management, patch and compliance activities, and public cloud remediation efforts. They will work with systems, application, and enterprise/solution architects to develop requirements and test cases, implement, monitor, report, and tune applications, infrastructure, and services for Marriott’s enterprise platforms.

 

CANDIDATE PROFILE

Education and Experience

Required:

·  Undergraduate degree in an engineering or computer science discipline and/or equivalent experience/certification 
·  7+ years' progressive experience in Information Technology including: 
·  Proven track record of engineering enterprise solutions for a large global company
·  5+ years’ experience in information technology application development or systems engineering
·  5+ years Linux/windows experience
·  5+ years Cloud technologies including IaaS/PaaS/SaaS deployments in Public Cloud
·  5+ years in OS scripting and automation
·  3+ years’ experience with design and implementation of CIS/NIST hardening standards applied at an enterprise level
·  3+ years’ experience with design and implementation of a patch management solution
·  3+ years professional experience in Infrastructure as a Service (IaaS) modeling including infrastructure as code development (Terraform or similar) or infrastructure engineering at enterprise scale
·  3+ years experience implementing AWS Well-Architected security framework
·  3+ years professional experience with cloud computing technology and its concepts (e.g. AWS, Azure, GCP) and virtualized (e.g. VMWare, OpenStack)
·  3+ years’ experience with server patch management systems (e.g. RedHat Satellite, BigFix)
·  3+ years’ experience in script development using automation and scripting languages such as python, ansible, packer, PowerShell, and/or bash
·  2+ years professional experience in container operations (Docker, OpenShift Enterprise, GKE, ECS) and orchestration (Docker Swarm, Kubernetes)
·  Knowledge of security controls frameworks, such as NIST 800-53, NIST CSF, COBIT, or CIS
·  Knowledge of vulnerability management, patching, and related management tools (e.g. BigFix, RedHat Satellite Server, Nessus)