Website:
talent500.com
Job details:
About Us:
Marriott International Inc., headquartered in Bethesda, Maryland, USA, was founded in May 1927 by J. Willard Marriott and Alice S. Marriott with a modest nine-seat A&W root beer stand. Guided by the family's leadership and core principles, Marriott International today has grown into a global hospitality giant, operating approximately 9,000 properties and over 30 leading brands in more than 140 countries and territories.
From such humble beginnings to becoming the world’s largest hotel company, Marriott International has never stopped searching for inventive ways to serve its customers, provide opportunities for its associates, and grow their business. At Marriott Tech Accelerator center (MTA), Hyderabad, India, Marriott is exploring the world we live in and all its possibilities. At Marriott Tech Accelerator, we are a team of passionate engineering minds dedicated to creating and building cutting-edge solutions that streamline operations and elevate guest experiences.
Marriott Tech Accelerator center is fully owned and operated by ANSR. All associates at Marriott Tech Accelerator will be ANSR employees, delivering services exclusively to ANSR's client, Marriott International.
Role Title: Application Security Engineer I
JOB SUMMARY:
The Supply Chain Security Engineer will assist in supporting and improving the security of containerized applications and open-source software usage through container image security and software composition analysis (SCA). The ideal candidate will have a strong foundational understanding of application security, a proactive mindset, and knowledge of containerized environments and modern development pipelines. The role is designed to provide hands-on experience in application security within a corporate environment, with a strong focus on learning and development.
Education and Certifications:
Work location: Hyderabad, India.
Work mode: Hybrid
- Undergraduate degree or equivalent experience/certification.
CANDIDATE PROFILE:
Education and Experience:
Required:
- Associate’s degree in Cybersecurity, Computer Science or related field or equivalent experience/certification
- 4+ years of information technology experience
- 2+ years of experience in a cybersecurity, DevSecOps, or software security support role
- Experience with container platforms (e.g., Docker, Kubernetes) and image scanning tools
- Strong understanding of CI/CD pipelines and modern development workflows (e.g., Git, Jenkins, GitLab CI)
- Strong understanding of vulnerability management and risk management
- Strong understanding of security testing methodologies, tools, and approaches
- Strong interest in cybersecurity and a willingness to learn on the job
- Strong understanding of common software development practices and procedures (version control, testing, patching, CI/CD)
- Strong understanding of the Software Development Lifecycle (SDLC)
- Basic understanding of basic programming concepts and principals (interpretation, compilation, loops, control structures, data types)
- Basic understanding of OWASP Top 10 and its implications to software security
- Proficiency in Microsoft Word, PowerPoint, and Excel
- Excellent communication skills.
Preferred:
- Bachelor’s degree in Cybersecurity, Computer Science, or related field or equivalent experience/certification.
CORE WORK ACTIVITIES:
Container Security and Supply Chain Management:
Additional Responsibilities:
- Current information security certification, including: GSEC, GSIF, CySA+, Security+, CEH, GRISC, CISA
- Experience working in a regulated environment (e.g., finance, healthcare, government)
- Experience with conducting risk assessments and developing risk mitigation strategies
- Understanding of CVSS scoring and vulnerability management workflows
- Strong foundational knowledge of QA testing practices and principles
- Strong foundational knowledge of OWASP Top 10
- Experience assisting in vendor relationship management
- Monitor and triage findings from container image scanning tools (e.g., Trivy, Clair, Anchore, Aqua, or Prisma Cloud)
- Support the integration and maintenance of SCA tools (e.g., Snyk, Black Duck, WhiteSource, or GitHub Depend Bot)
- Collaborate with development and DevOps teams to ensure secure use of open-source components
- Interpret vulnerabilities, misconfigurations, and associated remediations
- Assist in the creation and enforcement of security policies related to containerization and open-source use
- Support the triage and resolution of security scanning related issues in CI/CD pipelines
- Assist the Senior Manager in vendor relationship management
- Assist in monitoring compliance with security standards and regulatory requirements related to container and web application security
- Assist in tracking and documenting risk mitigation efforts, ensuring timely resolution of identified issues
- Learn and assist in the use of security scanning tools for basic operations
- Work closely with development and DevOps teams to integrate risk management practices into the software development lifecycle
- Gain exposure to security frameworks and standards, under the mentorship of the Senior Manager
- Contribute to the development and maintenance of compliance documentation, including policies, procedures, and control frameworks
- Aid in the use of project management tools like JIRA to track tasks and projects
- Informs, updates, and provides information to supervisors, co-workers, and subordinates by telephone, in written form, e-mail, or in person in a timely manner.
- Attends and participates in all relevant meetings.
- Presents ideas, expectations and information in a concise, organized manner.
- Uses problem solving methodology for decision making and follow up.
- Maintains positive working relations with internal customers and department managers.
- Manages time effectively and conducts activities in an organized manner.
- Performs other reasonable duties as assigned by manager.
Marriott’s core values:
At Marriott, our make us who we are. We believe that success is never final. As we change and grow, the beliefs that are most important to us stay the same—putting people first, pursuing excellence, embracing change, acting with integrity, and serving our world. Being part of Marriott Tech Accelerator means being part of a proud history and a thriving culture.
Click on Apply to know more.