Application Security Analyst
@ Marriott Vacations Worldwide

Orlando, FL
$120,000
On Site
Full Time
Posted 6 hours ago

Your Application Journey

Personalized Resume
Apply
Email Hiring Manager
Interview

Email Hiring Manager

XXXXXXXX XXXXXXXXXXXXX XXXXXXXXX***** @marriottvacationsworldwide.com
Recommended after applying

Job Details

Position Overview

The Application Security Analyst at Marriott Vacations Worldwide is responsible for integrating security measures throughout the DevOps lifecycle. This role involves comprehensive security assessments including static and dynamic analyses, code reviews, and automated vulnerability scans across various applications and environments.

Key Responsibilities

  • Conduct thorough penetration testing of infrastructure, web applications, APIs, and cloud environments.
  • Collaborate with development teams to implement early security testing practices and secure code reviews.
  • Lead red team exercises and simulate advanced persistent threats (APTs) for realistic security assessments.
  • Map offensive security results to the MITRE ATT&CK framework.
  • Mentor junior security analysts and refine testing methodologies.

Candidate Profile

Candidates should have a Bachelor's in Computer Science, Information Security, or a related field, with at least 4 years of offensive security experience. Certifications such as OSCP, CEH, GPEN, OSWE, CSSLP, or GWAPT are preferred. Experience with DevSecOps, CI/CD pipelines, cloud platforms (AWS, Azure, GCP), and container security (Docker, Kubernetes) is essential.

Key Skills/Competency

  • Penetration Testing
  • DevSecOps
  • CI/CD
  • Cloud Security
  • Red Team Testing
  • Code Review
  • Vulnerability Assessment
  • MITRE ATT&CK
  • Secure Coding
  • Mentorship

How to Get Hired at Marriott Vacations Worldwide

🎯 Tips for Getting Hired

  • Customize your resume: Highlight DevSecOps and penetration testing skills.
  • Showcase certifications: Include OSCP, CEH, or similar credentials.
  • Research Marriott Vacations Worldwide: Understand their security priorities and culture.
  • Prepare for technical challenges: Practice application security scenarios and CI/CD security integration.

📝 Interview Preparation Advice

Technical Preparation

Review CI/CD security implementations.
Practice penetration testing using industry tools.
Study cloud and container security practices.
Understand MITRE ATT&CK framework usage.

Behavioral Questions

Describe teamwork in high-pressure situations.
Explain your approach to mentoring juniors.
Share experiences on cross-department collaboration.
Describe problem-solving steps in security incidents.

Frequently Asked Questions