Associate Engineer, SOAR Information Security at Marriott Hotels Resorts

DescriptionJOB SUMMARYMarriott wishes to add an Associate Engineer to Cyber Analytics and Automation team for our Security Orchestration and Automated Response (SOAR) this role you will be responsible for gathering requirements developing and maintaining security automations leveraging a SOAR platform and agentic AI solutions. You will also use process automation to develop advanced automation playbooks for our Cybersecurity Incident Response Team (CIRT) Vulnerability Management (VM) Insider Threat Threat Intel and Detection Engineering teams.CANDIDATE PROFILEEducation and ExperienceRequired:Bachelors degree in Computer Sciences or related field or equivalent experience/certificationPrior experience in technology engineering experience including:Proven experience with Python scriptingProven experience working with Splunk ESProven experience in working with the Unix/Linux command lineFamiliarity with common enterprise infrastructure systems services and concepts pertaining to: general networking next-gen firewalls endpoint protection IDS IPS vulnerability management Linux and Windows OS databases logging platforms and SDLC conceptsExperience with Microsoft Visio or other visual diagramming softwareAbility to identify reconcilable process or workflow inefficiencies and propose more efficient solutions that employ the use of automationStrong written and verbal communication skillsPreferred:Demonstrated experience collaborating with cross-functional cybersecurity teams to understand business and technical processes and collection of actionable requirements that inform the design and development of SOAR automation solutionsHands on experience with a SOAR or other automation platformHands on experience using and deploying agentic AI solutions in a professional settingFamiliarity with AWS cloud servicesFamiliarity (or greater) skill level in SQLBackground in IT security/systems administration or IT security/systems engineeringWorking knowledge of MITRE ATT&CK or similar incident response frameworksAn understanding of core Agile principlesDetail oriented work styleCORE WORK ACTIVITIESTechnical Execution:Support development and maintenance of automation playbooks dashboards reports and metrics for Cybersecurity Operations and partners.Assist with monitoring and optimizing SOAR platform performance.Collaborate as needed to ensure SOAR implementation complies with security policies.Support evaluation and selection of security products for departmental needs as directed.Use capability modeling to help align automation implementation with business strategyProvide tier-3 and after-hours support in on-call rotation for SOAR-related escalations.Collaboration and Communication:Works closely with Security Architecture Security Engineering Threat Intelligence and the Cyber Incident Response Team to help develop solutions to address emerging threats support requested service enhancements and to support the development of new threat detection use cases.Coordinates with service providers on infrastructure management and maintenance operations.Collaborate with Security Engineers and Architects to keep pace with the evolution of corporate infrastructure and applications and share that knowledge with peers as appropriate.Attend SCRUM and prioritization meetings to review and update deliverables.Maintain documentation for SOAR service management and SOPs pursuant to security and privacy policy.Continuous Improvement:Support ongoing evaluation of the effectiveness of the SOAR and related platform and requisite services to identify operational improvements reduce costs increase performance and automate where possible.Help evaluate automations and other activities to identify opportunities to optimize and reduce costs. Contribute to the development and refinement of detection engineering standards workflows and best practices.Following best practices pertaining to lifecycle management.At Marriott International we are dedicated to being an equal opportunity employer welcoming all and providing access to opportunity. We actively foster an environment where the unique backgrounds of our associates are valued and greatest strength lies in the rich blend of culture talent and experiences of our are committed to non-discrimination on any protected basis including disability veteran status or other basis protected by applicable law.Required Experience:IC Key Skills International Development,Access Control System,Finance Control,Informatica,Information Technology Sales,Asp.Net MVC Employment Type : Full-Time Experience: years Vacancy: 1