true
/seeker/email?jobAdId=59673DEF737BD66E
window.open('/seeker/apply/quickApply?jobAdId=59673DEF737BD66E');logEvent('job details','apply-1');
59673DEF737BD66E
At IHG we want our guests to feel trusted and free to do what they want in their own space.

Job Description

IHG (InterContinental Hotels Group) is a global organization and one of the world’s leading hotel companies. With a broad portfolio of 9 hotel brands, including InterContinental® Hotels & Resorts, Crowne Plaza® Hotels & Resorts, Hotel Indigo®, Holiday Inn® Hotels and Resorts, Staybridge Suites® and Kimpton Hotels®. We have over 5,100 hotels in nearly 100 countries around the world, and another 1,000 hotels in our development pipeline. Our vision is to become one of the great companies in the world by creating Great Hotels Guests Love.



Our Regional office, based in Atlanta, Georgia, is looking for a Senior Security Analyst. For more information about this role and how you can be part of such a great company, please read about the role and responsibilities.



LEVEL DESCRIPTION



• Seasoned professional individual contributor on one or more project or work teams.
• Works under limited supervision.
• Problems faced are difficult and moderately complex.
• May contribute to the development of other professionals, but does not have hiring or firing authority.
• May provide guidance to other professionals to facilitate the successful completion of projects.

ORGANIZATIONAL IMPACT



• Works to achieve operational targets within job area with major impact on departmental results.

• Responsible for managing large projects or processes that extend beyond immediate job area.
• Contributes to the development of goals and related planning efforts for the department.
• Executes operational plans for job area with short-term impact on results.
• Recommends improvements to existing processes and/or standards that will have a moderate impact on the achievement of overall function results.



INNOVATION, DECISION MAKING, AND PROBLEM SOLVING



• Responsible for making moderate to significant changes or enhancements to systems and processes, through conceptualizing, reasoning, and interpretation, to solve problems or improve effectiveness of job area.

• Identifies, defines and addresses problems and opportunities that are typically undefined, difficult, and complex; requires detailed information gathering, analysis and investigation to understand and resolve.
• Problems require understanding of multiple job areas, departments, or specialties.
• Performs tasks and functions within and outside of immediate job area that require significant analysis.



KNOWLEDGE AND EXPERIENCE



• Requires advanced knowledge of job area; may have subject matter expertise.

• Typically requires a University degree and a minimum of 7 years of relevant experience or equivalent combination of education, experience, and/or certification.



Job Requirements

Essential Duties and Responsibilities



• Responsible for the design, engineering, implementation, deployment, documentation, testing, and ongoing capacity planning of security solutions (hardware, software and systems configuration solutions).
* Responsible for the control environment and identifies approaches to improve controls.
* Recommends IT general controls and/or application layer security controls to ascertain whether they comply with organizational objectives.
• Creates processes and templates for security implementations
• Responsible for solution documentation in support of operational readiness, which may include training, process development and explanation of standards.
• Contributes to and sets standards for security hardware, software and configuration management.

• Researches and recommends ideas for proofs of concept for technology solutions
• Researches the impact of proposed or required changes (internally and by vendors) especially in the areas of hardware, software, performance, maintenance and cost; provide recommendations to more senior team members and management with an impact assessment.
* Leads decision making for mitigating identified deficiencies and seek to understand the broader impact of the decisions made.
* Identifies and evaluates technology internally and/or at third parties, internal controls which mitigate risks, and related opportunities for internal control improvements.
* Leads security initiatives with system compliance tasks with operations and project management teams

*Vulnerability Assessment - Reviews and interprets vulnerability and penetration test reports and results, Conducts in-depth vulnerability research to determine comprehensive details of identified vulnerabilities and provides subject matter expertise on vulnerability mitigation and remediation to operations teams
* Contributes as a subject matter expert on all compliance related initiatives, control reviews, audit preparation activities and auditor interaction
* Reviews audit findings and initiate remediation activities
* Develops stakeholder reporting and metrics deliverables
* Performs external 3rd party audits to determine service offering gaps related to the organization, and determine necessary security enhancements.

* Contributes and manages the Security Awareness program and other training objectives
* Conducts SME training for new and existing users on security initiatives
* Analyzes, consults, and champions the secure design and implementation of new and existing IHG products and applications.
* Drives and manages information security projects, including use case and requirement development, technology evaluations, and technology recommendations.
*Performs complex risk and control assessments



Technical Skills and Knowledge

* Advanced knowledge of privacy and regulatory compliance including information security enterprise risk assessments, PCI remediation, data protection and strategy
* Advanced knowledge in defining preventative security controls, particularly in relation to protecting applications and data (i.e., firewalls, IDS/IPS, WAFs, anti-malware systems, cross-site scripting libraries, etc.)
* Advanced knowledge of security processes such as vulnerability management and risk assessment
* Knowledge of SOX, SOC, PCI, and regulatory security audit programs and advanced knowledge of audit procedures

* Advanced knowledge of operating system security controls (e.g., Windows, Linux, Unix)
*Advanced knowledge of IP networking and network protocols, architecture, and concepts
* Proficient understanding of business and information technology and security management processes.
* Advanced knowledge in writing processes, procedural document review/updating, audit findings, and vulnerability management/remediation reports
* CISSP Required; CISA, CRISC, SANS certifications a plus
* Ability to understand complex business and information technology management processes.
* Advanced experience writing processes, procedural document review/updating, audit findings, and vulnerability management/remediation reports

* Experience as a developer/programmer or candidate with deep understanding of various programming languages and secure coding techniques preferred



Total Reward: Base salary plus annual bonus potential



You must meet the legal requirements to work in this country.



Your individual talents, interests and dreams that make you who you are. If you are interested in joining us in Global Technology at IHG, know that a team with different perspectives and passions can only make us stronger.



So why not work somewhere that gives you the freedom to be yourself and in return we’ll provide competitive financial and benefit packages including a matching 401K plan and global hotel discounts. Find out more about joining us today by visiting www.careers.ihg.com



IHG is an equal opportunity employer Minorities/Females/Disabled/Veterans



Apply Now