Address
Form of workat Marriott in Boise, Idaho, United States
Job DescriptionJob Number 23053449
Job Category Information Technology
Location Marriott International HQ, 7750 Wisconsin Avenue, Bethesda, Maryland, United States
Schedule Full-Time
Located Remotely? Y
Relocation? N
Position Type Management
?
JOB SUMMARY
We are looking for a motivated and experienced Senior Database Security Analytics Developer to join our team. You will leverage your knowledge and experience with database security to analyze databases and their supporting architecture to ideate and implement cyber threat monitoring use cases utilizing SIEM, UEBA and related tools. You will work closely in collaboration with CIRT, Threat Intelligence, and other stakeholders on use case ideation, prioritization, use case development, and operationalization of database security alerts.
CANDIDATE PROFILE
Education and Experience
Required:
+ Bachelor's degree in Computer Sciences or related field or equivalent experience/certification
+ 7+ years' progressive Information Technology experience that includes:
+ 3+ years of experience in database administration, including security monitoring and analytics development
+ 5+ years of experience insome or allof the following:
+ Experience working in (or with) security functions such as SOC, CIRT, security engineering, risk management, vulnerability management.
+ Technical infrastructure operations, administration, or systems engineering
+ Scripting or programming languages, including Python
Preferred Skills/Experience:
+ Current information security certification such as Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or Certified Information Systems Security Professional (CISSP) or an equivalent .
+ Experience working with Splunk Enterprise Security or Imperva JSonar
+ Experience leveraging machine learning tools for database security analytics
+ Working knowledge of the NIST Cyber Security Framework and ISO/IEC 27002
+ NIST Interagency Report 7298
+ Working knowledge of the MITRE ATT&CK Framework
+ Familiarity with cloud service provider platforms (AWS, Azure, GCP), identity and access management systems, firewalls, next-gen anti-malware, intrusion detection and prevention systems
+ Experience with Linux, Unix and Microsoft operating systems
+ Knowledge of IP networking
+ Experience with a scripting language (*nix shell scripting, Python, PowerShell, etc.) and regular expressions
+ Solid written and verbal communication skills
+ Experience handling security incidents
Core Responsibilities
What You'll be Doing:
+ Lead collaboration sessions within the cyber security tower and other business units to devise database security monitoring use cases. This work entails the collection and collaborative analysis of security accreditation reports, threat models, documented security controls, architecture, and business usage patterns for database security monitoring consideration.
+ Document prospective database security monitoring use cases with MITRE ATT&ACK mappings using standard templates and methodologies. Identified use cases will be reviewed with stakeholders for acceptance sign-off and to move forward with development.
+ Work with SIEM engineers and other engineering and operations teams to identify and notify team members of required data onboarding and integrations for database monitoring use case development.
+ Develop database security analytics, correlation searches, dashboards, reports and alerts utilizing SIEM, UEBA, and other platforms.
+ Solicit feedback for pre-production database security monitoring content through peer review process and user acceptance testing for tuning.
+ Document developed database security monitoring content in documentation registry using standard templates and methodology.
+ Collaborate with the Cyber Incident Response Team and other business units to help develop incident response playbooks for database alerts using standard templates.
+ Manage relevant alert field mappings and transmission of security monitoring alerts to the security incident response platform for SOC analyst consumption as outlined in process documentation.
+ Service requests in queue such as alert efficacy tuning or filtering.
Additional Responsibilities:
+ Contribute to ongoing development and maintenance of documented standards, workflows, and best practices within the database security monitoring discipline.
+ Research emerging threats and adversary tactics, techniques, and procedures to understand the threat landscape and to ensure that database security monitoring content remains relevant and effective.
+ Participation in evaluations of new platforms, technologies and methodologies pertaining to database security monitoring.
+ Attend SCRUM and prioritization meetings to review and update deliverables.
Maintaining Goals
+ Submits reports in a timely manner, ensuring delivery deadlines are met.
+ Promotes the documenting of project progress accurately.
+ Provides input and assistance to other teams regarding projects.
Managing Work, Projects, and Policies
+ Manages and implements work and projects as assigned.
+ Generates and provides accurate and timely results in the form of reports, presentations, etc.
+ Analyzes information and evaluates results to choose the best solution and solve problems.
+ Provides timely, accurate, and detailed status reports as requested.
Demonstrating and Applying Discipline Knowledge
+ Provides technical expertise and support to persons inside and outside of the department.
+ Demonstrates knowledge of job-relevant issues, products, systems, and processes.
+ Demonstrates knowledge of function-specific procedures.
+ Keeps up-to-date technically and applies new knowledge to job.
+ Uses computers and computer systems (including hardware and software) to enter data and/ or process information.
Delivering on the Needs of Key Stakeholders
+ Understands and meets the needs of key stakeholders.
+ Develops specific goals and plans to prioritize, organize, and accomplish work.
+ Determines priorities, schedules, plans and necessary resources to ensure completion of any projects on schedule.
+ Collaborates with internal partners and stakeholders to support business/initiative strategies
+ Communicates concepts in a clear and persuasive manner that is easy to understand.
+ Generates and provides accurate and timely results in the form of reports, presentations, etc.
+ Demonstrates an understanding of business priorities
Marriott International is an equal opportunity employer. We believe in hiring a diverse workforce and sustaining an inclusive, people-first culture. We are committed to non-discrimination on any protected basis, such as disability and veteran status, or any other basis covered under applicable law. Marriott International considers for employment qualified applicants with criminal histories consistent with applicable federal, state and local law.
Marriott International is the world's largest hotel company, with more brands, more hotels and more opportunities for associates to grow and succeed. We believe a great career is a journey of discovery and exploration. So, we ask, where will your journey take you?
