Senior Security Auditor at IHG in Atlanta, Georgia

Job Description:

About us

Bringing True Hospitality to the world.

We want to welcome you to a world of bringing True Hospitality to everyone. When you join us at IHG®, you become part of our global family. A welcoming culture of warmth, honesty, and a passion for providing True Hospitality.

We pride ourselves on letting your personality and passions shine, recognizing the individual contribution you make and supporting your ambition to learn and create your own career path. In making a difference to our guests and owners, colleagues and communities, every day is a chance to create great and unique experiences, in your own way.

With over 370,000 colleagues in nearly 100 countries sharing our values, there’s countless opportunities at your fingertips.

We’re growing; grow with us.

Your day to day

Purpose for the Role:  The Technical Advisor IT Information Security is responsible for leading the design, engineering, implementation, deployment, documentation, testing, and ongoing capacity planning of security solutions (hardware, software, and systems configuration solutions).  The Technical Advisor IT Information Security will function as a Subject Matter Expert (SME) in one or more security frameworks and/or technologies with the ability to create solutions in multiple technical disciplines (systems, network, security, applications).

Key Accountabilities:

• Serves as an escalation point for Infrastructure security operations for complex solution resolution, and responsible for root cause analysis.


• Develop teams understanding of PCI and SOX control environment and identify approaches to improve controls. Leads proofs of concept for technology solutions.


• Leads the design of processes and templates for security implementations.


• Evaluates the impact of proposed or required changes which may be complex in nature (internally and by vendors) especially in the areas of hardware, software, performance, maintenance, and cost; provide recommendations to management with an impact assessment.


• Responsible for initiating and leading technical discussions, training other resources and communicating to technical and non-technical stakeholders.


• Ability to translate technical specifications to business requirements.


• Act as advisor to Sr. level IT management concerning strategic decisions and new technology.

Education:

• Bachelor's or Master's Degree in a relevant field of work or an equivalent combination of education and work related experience.


• Highly Desired Certification: CISA, CISSP, CISSA   

Preferred Certifications:  CISSP, CRISC, SANS, ISA, ISC2

Experience:

• Typically, a minimum of 10+ years of progressive work related experience with demonstrated proficiency in multiple disciplines, technologies, or processes related to the position.

What we need from you

Technical Skills and Knowledge

• Expert knowledge and experience with privacy and regulatory compliance including information security enterprise risk assessments, PCI remediation, data protection and strategy


• Expert knowledge of preventative security controls, particularly in relation to protecting applications and data (i.e., firewalls, IDS/IPS, WAFs, anti-malware systems, cross-site scripting libraries, etc.)


• Expert knowledge of security processes such as vulnerability management and risk assessment


• Knowledge of SOX, SOC, PCI, and regulatory security audit programs and expert knowledge of audit procedures


• Expert knowledge of operating system security controls (e.g., Windows, Linux, Unix)


• Expert knowledge of IP networking and network protocols, architecture, and concepts 


• Proficient understanding of business and information technology and security management processes


• Expert knowledge in writing processes, procedural document review/updating, audit findings, and vulnerability management/remediation reports


• Ability to understand complex business and information technology management processes. 


• Experience as a developer/programmer or candidate with deep understanding of various programming languages and secure coding techniques preferred

What we offer

We’ll reward all your hard work with a great salary and benefits – including great room discount and superb training.

Join us and you’ll become part of the global IHG family – and like all families, all our individual team members share some winning characteristics. As a team, we work better together – we trust and support each other, we do the right thing and we welcome different perspectives. You need to show us you care, that you notice the little things that make a difference to guests as well as always looking for ways to improve - click here to find out more about us.

At IHG Hotels & Resorts, we are proud to be an equal opportunity employer. IHG Hotels & Resorts provides equal employment opportunities to applicants and employees without regard to an individual's, race, color, ethnicity, national origin, religion, sex, sexual orientation, gender identity or expression, age, disability, marital or familial status, veteran status or any other characteristic protected by law. IHG is committed to promoting a culture of inclusion where everyone feels safe, respected and valued. We seek talent from all backgrounds to join our teams, and encourage our colleagues to bring their authentic and best selves to work.

Not Applicable for Colorado applicants.