Senior Software Engineer II, Associated Security Architect_2026_427

About Marriott: Marriott Tech Accelerator is part of Marriott International, a global leader in hospitality. Marriott International, Inc. is a leading American multinational company that operates a vast array of lodging brands, including hotels and residential properties. It consists of over 30 well-known brands and nearly 8,900 properties situated in 141 countries and territories.

Position Title: Senior Software Engineer II, Associated Security Architect Measures of success (examples) : SERs are progressed from intake to decision with predictable turnaround aligned to published SLAs/targets; submissions are complete and accurate (minimal rework due to missing/incorrect information); stakeholders receive timely updates and clear action items, so remediation and approval decisions are not delayed. Required Qualifications: Education and Experience: Bachelor's degree in computer science, information systems, cybersecurity or a related field or equivalent experience/certification. 6+ years overall Information Technology experience with: 6+ years of Information Security experience in security engineering with experience in two or more of the following areas Conducting security reviews and identifying risks and gaps Performing security accreditations Developing security architectures and strategies Working with development teams and vendor teams to implement compensating controls Experience in reviewing and identifying security risks/gaps as well as mitigation strategies The SAA should have 3+ years combined experience in two or more of the following areas: Full-stack knowledge of IT infrastructure: Applications,Databases Operating systems Windows, Linux, and UNIX IP networks WAN and LAN Backup networks and media Containers/Kubernetes and microservices Cryptography and current cryptographic standards, including PKI Direct, hands-on experience or a strong working knowledge of vulnerability management tools Working knowledge of the OWASP Top 10 (current edition) Preferred: Strong working knowledge of IT service management (e.g., ITIL-related disciplines): Change management,Configuration management,Asset management Incident management Problem management Ability to provide and interpret Security Requirements for areas including but not limited to; Cloud Computing, Application Development, IAM, Cryptography, and Infrastructure design and standards Familiarity with AI terminology and infrastructure principles, along with security topics and concerns impacting AI Ability to understand large complex integrated solutions and provide the security needed between systems Experience designing the deployment of applications and infrastructure into internal, hybrid, and public cloud services Ability to conduct independent research Strong abilities and experience in documentation and written communication for diverse audiences Experience working with diverse and distributed global teams. CORE WORK ACTIVITIES: Managing Projects and Priorities Delivering on the Needs of Key Stakeholders Providing Technical Support and Consultation Current information security certification(s), such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), ISC2 Certified Cloud Security Professional (CCSP), GIAC certifications, ITIL Knowledge of Industry Standards such as NIST Cybersecurity Framework (CSF), PCI-DSS, COBIT, CSA, MITRE ATT&CK & CAPAC, STRIDE, NIST 800-53, SOX, CIS Benchmarks, etc.

Knowledge of securing technologies such as, but not limited to; SaaS services (i.e., Microsoft 365, Salesforce), Application Design, Container Platforms (i.e.. Docker, Kubernetes), APIs, Serverless, Network Infrastructure, Operating Systems, Identity and Access Management Knowledge of SDLC (Waterfall/Agile), DevSecOps, and good understanding of the ITIL Framework Knowledge of SAFe Agile Methodologies, experience with customer ticketing systems to manage engagements. Strong negotiating, influencing and problem resolution skills Ability to effectively prioritize and execute tasks in a high-pressure environment Ability to assess customer/client needs, creatively approach solutions, decide and influence appropriate courses of action Contributes to, evaluates, and supports the documentation, and validation processes necessary to assure that associates, information technology systems and business processes meet the organizations information assurance, security, and privacy requirements.

Ensures appropriate treatment of risk, compliance, and assurance of internal policies and external regulations. Conducts security and privacy technology research, assessments, and integration processes; provides and supports a prototype capability and/or evaluates its utility Conduct meetings with stakeholders on their projects and assessments to gather the details on the project, including the scoping of the assessment. Consults with customers to gather and evaluate functional requirements and provides security and privacy requirements, guidelines, and standards Provides sound advice and recommendations to leadership and staff on a variety of relevant topics within the pertinent subject domain Applies knowledge of priorities to define an entitys direction and identify programs or infrastructure that are required to achieve desired goals within domain of interest.

Develops policy or advocates for changes in policy that will support new initiatives or required changes/enhancements Works with the Security Architect Analysts and Coordinators to monitor ongoing project activities, intake of new projects and monitoring of the Security Engagement Process including but not limited to: Data Classification, Security Controls, Threat Models, Architecture Review Boards, Authority to Operate (security authorization/approval) Develops specific goals and plans to prioritize, organize, and accomplish work. Champions leaders vision for product and service delivery. Makes and executes the necessary decisions to keep moving forward toward achievement of goals.

Provides direction and assistance to other teams regarding projects. Determines priorities, schedules, plans and necessary resources to promote completion of any projects on schedule. Analyzes information and evaluates results to choose the best solution and solve problems.

Generates and provides accurate and timely results in the form of reports, presentations, etc. Understands and meets the needs of key stakeholders. Communicates concepts in a clear and persuasive manner that is easy to understand.

Demonstrates an understanding of business priorities. Provides technical expertise and technical leadership within their own team and other teams. Applies knowledge/judgment to achieve business goals.

Foresees, identifies, and resolves problems. Keeps up-to-date technically and applies new knowledge to job. Performs other reasonable duties as required for this position.

Work Model: Hybrid