(USA-TN-Memphis) Lead Cyber Security Analyst

\*\*\*This position can be located in Memphis, TN; Dallas, TX or McLean, VA but remote is an option\*\*\* From smartphone capabilities like Digital Key to connected rooms that allow for integrated entertainment, temperature, and lighting controls, Hilton’s Global Technology team is responsible for creating the hospitality experience of the future – for our guests, owners, and Team Members\. Through innovative technology development and deployment, this team ensures Hilton has the technology needed to support our continued global growth while remaining at the forefront of hospitality technology innovation\. **What will I be doing?** As the Lead Application Security Analyst, you will work closely with the product \(application\) team to help implement security solutions that are tailored to the specific risks facing the organization, including threat modeling and applications security consulting services\. You will be a critical component to help manage the compliance of policies and standards as a function of an end\-to\-end SDLC project lifecycle\. You will play a meaningful role in maintaining the controls that enable our organization to operate efficiently, cost effectively, and within compliance standards\. You will also assist others in interpreting, understanding, and applying security policies and standards to mitigate information security risks\. This position works closely with other members of the Information Security and Legal Compliance organizations, in a coordinated and focused manner\. More specifically, you will: + Conduct application security assessments, review penetration tests results, and implement tools for dynamic/automated code reviews\. + Ensure compliance with regulatory and industry standards for application security\. + Continuously evaluate the organization’s existing application security practices, help define and measure security\-related activities, and demonstrate concrete improvements to the application assurance program within the organization\. + Provide just\-in\-time secure application development training to developers and provide mentorship and guidance on the development training for ongoing awareness\. + Conduct static code reviews and penetration testing\. **What are we looking for?** We believe the success in this role will demonstrate itself through the following attributes and skills: + Social communicators, who will positively influence Hilton’s partners and who will communicate effectively at all levels + Dedicated, ambitious individual with good time management and attention to detail + Knowledge of hotel\-based IT systems and applications + Working knowledge of one or more following technologies: Gitlab, Atlassian Stack, Node\.js, React, Graphql and NOSQL databases such as Couchbase + Experience reviewing application design, software framework, and infrastructure to identify issues\. Capable of assessing underlying components \(e\.g\., databases, servers\), configuration, and security access controls + Experience with static code scan tools \(e\.g\., Fortify, Checkmarx\) and dynamic scanning tools \(e\.g\., Rapid7, AppScan, Burp, Qualys\) + Experience working with development methodologies \(e\.g\., Waterfall, Agile, RUP\) + Familiarity with industry standards, guidelines, and regulatory compliance requirements related to information security and cloud computing \(e\.g\., GDPR, ISO 27001, Cloud Security Alliance, NIST 800\-53, PCI DSS, SOC2\) + Problem solving skills to tackle problems effectively and creatively while maintaining a high level of flexibility, professionalism, and integrity + Self\-starters, who take initiative in implementing goals, utilizing analytical skills, and possessing adaptability to change To fulfill this role successfully, you must possess the following minimum qualifications and experience: + Three \(3\) years of experience in web development on J2EE platforms from a security perspective + Strong analytical and problem\-solving skills + Travel up to 20% of the time It would be advantageous in this position for you to demonstrate the following capabilities and distinctions: + Bachelor’s Degree OR Associate’s Degree plus six \(6\) years of Technology related experience OR High School Diploma/GED plus twelve \(12\) years of Technology related experience + One \(1\) year of experience working with AWS/Azure Cloud design and architecture such as SaaS, IaaS and/or PaaS + Certifications in CISSP, CISM, CEH, CWSP and/or GCWN **What will it be like to work for Hilton?** Hilton is the leading global hospitality company, spanning the lodging sector from luxurious full\-service hotels and resorts to extended\-stay suites and mid\-priced hotels\. For nearly a century, Hilton has offered business and leisure travelers the finest in accommodations, service, amenities and value\. Hilton is dedicated to continuing its tradition of providing exceptional guest experiences across its global brands \. Our vision “to fill the earth with the light and warmth of hospitality” unites us as a team to create remarkable hospitality experiences around the world every day\. And, our amazing Team Members are at the heart of it all\! **Job:** _Technology_ **Title:** _Lead Cyber Security Analyst_ **Location:** _null_ **Requisition ID:** _TEC0107D_ **EOE/AA/Disabled/Veterans**

Site Tags: 
Greater Memphis, TN Area
Sep 23, 2019
Share it now!