Senior Lead Vulnerability Management Analyst at Hilton Global in McLean, Virginia

Job Description:

***This position will be Remote based***

From smartphone capabilities like Digital Key to connected rooms that allow for integrated entertainment, temperature, and lighting controls, Hilton's Global Technology team is responsible for creating the hospitality experience of the future - for our guests, owners, and Team Members. Through innovative technology development and deployment, this team ensures Hilton has the technology needed to support our continued global growth while remaining at the forefront of hospitality technology innovation.

What will I be doing?

As the Senior Lead Cyber Security Engineer for Vulnerability Management, you will play a lead role in driving the strategy, evaluation, process, execution, and operations of the vulnerability management program at Hilton. You will primarily be working on vulnerability identification, analysis, communication, and remediation against common vulnerabilities. You will collect, process, monitor, and disseminate security vulnerabilities as well as potential threats to the environment. You will partner with each functional area to overlay vulnerability data with system knowledge to identify where compensating controls or deep system knowledge can be applied to lower (or raise) the effective risk ratings.

More specifically, you will:

• Responsible for the day to day operations of Vulnerability Management using Qualys
• Develop working partnerships with business partners to ensure systems are effectively scanned and remediated.
• Run and support vulnerability management scans across all Hilton systems, solve and fix issues as they arise.
• Compile vulnerability metrics/Key Performance Indicators and regular reporting mechanisms for measuring compliance of VM projects
• Validate accurate mitigation controls are in place until remediation activities are complete

We believe the success in this role will demonstrate itself through the following attributes and skills:

• Experience with Enterprise vulnerability management tools such as Qualys Vulnerability Management suite.
• Strong written and verbal communication skills with the ability to collaborate across functions
• A passion and proven ability to drive security that is streamlined, collaborative, and effective
• Able to meet the technical challenge of communicating identified vulnerabilities out to various teams.
• Ability to ensure focused delivery of remediation and risk reduction.
• Solid grasp of networking principles

• Ten (10) years of experience in Technology
• Six (6) years of experience in Vulnerability Management, Compliance, and supporting a large group of geographically distributed systems
• Four (4) years of Cybersecurity engineering and Operations experience
• Experience running internal and external network vulnerability scans using Qualys
• Understanding of how to prioritize vulnerabilities and validate tool findings

• Bachelor's Degree, or Associate's Degree plus six (6+) years of Technology related experience, or High School Degree/GED plus twelve (12+) years of Technology related experience; preferred Master's degree in computer science, Information Systems, or equivalent
• Twelve (12) years of work experience in Technology or a related field
• Experience with threat intelligence, specifically pertaining to the evaluation of the risk to the enterprise
• CVSS calculations to understand vulnerable and impacted components
• Experience with Qualys Cloud Agent, Qualys API, Qualys Policy compliance, and Qualys PCI module
• Experience in AWS cloud environments and capabilities as well as an understanding of container vulnerability management process
• Experience solving firewall issues preventing vulnerability management scanners from reaching their targets, or issues preventing Qualys Agents from checking in
• Experience with typical scripting and/or programming languages such as Groovy Script, Regular Expressions, PowerShell, Python, VBA, JavaScript, and SQL

The future of hospitality is bright at Hilton : a leading global hospitality company with a diverse portfolio of world-class brands . Dedicated to filling the earth with the light and warmth of hospitality, we have welcomed more than 3 billion guests in our more than 100-year history. Hilton is proud to have an award-winning workplace culture, and we are consistently named among one of the World's Best Workplaces.

We support the mental and physical wellbeing of all Team Members, so they can Thrive, thanks to innovative programs and benefits such as workplace flexibility, career growth and development, and our Go Hilton travel discount program. Hilton prioritizes understanding and integrating our Team Members' unique perspectives and voices-along with those of our Guests, Owners, Suppliers, and Partners-to cultivate a diverse and inclusive environment for all. Check out the Hilton Careers blog and Instagram to learn more about what it's like to be on Team Hilton!

We are an equal opportunity employer and value diversity at our company. We will ensure that qualified individuals with protected disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions of his or her role, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

For Colorado applicants only: The annual salary range for this role starts at $93,000 and is based on applicable and specialized experience and location. Hilton offers its eligible team members a comprehensive benefits package including medical and prescription drug coverage, dental coverage, vision coverage, life insurance, short-and long-term disability insurance, a 401(k) savings plan, paid time off, and our travel discount. Subject to plan terms and conditions, you will be eligible to participate in the Hilton Annual Incentive (Bonus) Plan consistent with other team members at the same level and/or position within the Company.