Lead Cyber Security Analyst – Hilton Corporate – McLean


From smartphone capabilities like Digital Key to connected rooms that allow
for integrated entertainment| temperature and lighting controls| Hilton|s
Global Technology team is building the hospitality experience of the future –
for our guests| owners and Team Members. Through innovative technology
development and deployment| this team ensures Hilton has the technology needed
to support our continued global growth while remaining at the forefront of
hospitality technology innovation.
What will I be doing?
The location for this position can be Mclean| VA; Dallas| TX;
Memphis| TN or remote/virtual.
As the Lead Cyber Security Analyst| you will own responses to security
incidents across the enterprise| using department policies| guidelines| an

industry standards to remediate cases and restore normal business operations

Balancing business priorities| emerging threats| and standard methodologies t

ensure the confidentiality| integrity| and availability of the Company|

information assets| you will actively identify risks and craft actionable
strategies to safeguard against future incidents

You will play a meaningful role in maintaining the controls that enable our
organization to operate efficiently| cost effectively and within compliance
standards. You will also be charged with assisting others in interpreting|
understanding| and applying information security policies and standards to
mitigate information security risks. In this role| you will work closely with
other members of the Information Security and Compliance organization in a
coordinated and focused manner.

More specifically| you will:

Improve Hilton|s full life-cycle information security incident response program| from pre-incident preparation to final incident report.
Provide mentorship and technical leadership to our Information Technology teams by referencing and implementing standard methodologies and approaches.
Ensure timely response and resolution to anomalous behaviors in a matrixed and outsourced environment.
Collaborate with business partners| key personnel and internal groups to formulate technical response strategies to address information security incidents.
Provide technical expertise for the detection and remediation of security incidents enterprise-wide.
Perform root cause analyses of incidents.
Assist in identifying and removing new malware variants as needed; sending samples to the anti-virus companies.
Correlate multiple data sources| fact gathering and analysis| determining the best remediation strategy| and implementing solutions until the incident is contained and resolved.
Update incident history real time and writing final incident reports.

What are we looking for?

We believe success in this role will demonstrate itself through the following
attributes and skills:

Ability to communicate clearly and succinctly both verbally and in writing as well as interact and work with others in a collaborative fashion
Ability to understand regulations and laws related to control requirements
Ability to work efficiently and independently with minimal supervision as well as the ability to work successfully in a multi-functional team in a complex matrix environment
Ability to interact with all levels of management across the enterprise
Works with audit teams to facilitate cross organizational auditing
Able to judge boundaries| provide factual objective opinions| rationalize| etc.
Ability to work in an environment with multiple opinions/view and remain objective. Many times| you will be in the negotiator role.
Knowledge of current technology and the ability to become familiar with new technologies

To fulfill this role successfully| you should demonstrate the following
minimum qualifications:

Seven (7) years Professional Technology or relevant experience
Four (4) years of information security incident response experience
Experience detecting and investigating anomalies| containing and remediating identified incidents| securely capturing malware samples and sending to anti-virus companies
Experience writing incident reports for executive review

It would be helpful in this position for you to demonstrate the following
capabilities and distinctions:

Bachelor|s Degree OR Associate|s Degree plus six (6) years of Technology related experience
Nine (9) years Professional Technology or relevant experience
Experience with web application firewalls| firewalls| IPS| network topologies and protocols| web content filtering/proxies| load balancers| UNIX/LINUX| identity management| access management| Active Directory| DNS| password management| DLP| logging| SIEM| and security event correlation and analytics
Knowledge of hotel-based IT systems and applications
Advanced certifications| including CISSP| CISM| CEH| CWSP and GCWN

What will it be like to work for Hilton?

Hilton is the world|s leading global hospitality company| spanning the lodging
sector from luxurious full-service hotels and resorts to extended-stay suites
and mid-priced hotels. For nearly a century| Hilton has offered business and
leisure travelers the finest in accommodations| service| amenities| and value.
Hilton is dedicated to continuing its tradition of providing exceptional guest
experiences across its global brands. Our vision to fill the earth with the
light and warmth of hospitality unites us as a team to create remarkable
hospitality experiences around the world every day. And| our amazing Team
Members are at the heart of it all!