Search 16,184 current hospitality jobs

Senior Manager Risk Team Lead

posted June 5, 2019

McLean, VA
578011 l

About This Job


From smartphone capabilities like Digital Key to connected rooms that allow for integrated entertainment, temperature and lighting controls, Hilton’s Global Technology team is building the hospitality experience of the future – for our guests, owners and Team Members. Through innovative technology development and deployment, this team ensures Hilton has the technology needed to support our continued global growth while remaining at the forefront of hospitality technology innovation.

What will I be doing?

***The location for the position is McLean, VA; Dallas, TX; or Memphis, TN.***

As the Senior Manager Risk Team Lead, you will be responsible for evaluating and assessing cybersecurity risks associated with IT vendor and product reviews while continuing to enhance the cybersecurity risk management process across Hilton. This role is responsible for creating, tracking risk treatment plans and policy/standard exceptions processes for our various vendors and products. As the Risk Team Lead, you will also be responsible for presenting the identified risks and their control plans to Hilton’s leadership team.

As a senior cybersecurity manager at Hilton, you will play a meaningful role in maintaining the controls that enable our organization to operate efficiently, cost effectively, and within compliance standards. You will create and assist others in interpreting, understanding, and applying information security policies and standards to mitigate cybersecurity risks. This position works closely with other members of the cybersecurity and the legal compliance organizations in a coordinated and focused manner.

More specifically, you will:

  • Work closely with the cybersecurity vendor, product and infrastructure teams to conduct regular security assessments. You will identify, document, present the existing and potential cybersecurity risks that can affect Hilton’s partners.
  • Recommend enhancements and changes to existing policies, controls, and standards based upon the evolving operating and threat landscape.
  • Manage the creation and tracking of risk treatment plans, including the creation of policy/standard exceptions where necessary.
  • Communicate risk postures and metrics to senior management and business units as required.
  • Actively participate in the governance process associated with cybersecurity and technology standards.
  • Act as a cybersecurity risk escalation point for project teams.


What are we looking for?

We believe success in this role will demonstrate itself through the following attributes and skills:

  • Motivated self-Starter with "Can do" attitude and ability to spin up quickly on technologies, challenging opportunities, topics, and advances in the cyber security field that require ongoing learning and self-training
  • Keen ability to discern the value to the business of new tools and technologies with the ability to translate security requirements and constraints into business and simple terms
  • Good verbal and written communication skills to successfully accomplish client-facing interactions and presentation of results to clientele leadership in person or remote
  • Knowledge of hotel-based IT systems and applications
  • Experience developing, authoring risk reports and tracking risks for a large enterprise
  • Prior experience developing risk quantification formulas, remediation workflows and processes
  • Experience communicating cybersecurity requirements and risks to IT teams and business partners
  • Experience reviewing application design, software framework, and infrastructure to identify risks and vulnerabilities
  • Understanding of enterprise, networks, systems, and application-level security issues; enterprise computing environments, distributed applications; and a strong understanding of encryption technologies, Java, Linux, and Microsoft implementations
  • Must be skilled in communicating across a global business and amongst all management levels
  • Experience with industry standards, guidelines, and regulatory compliance requirements related to information security and cloud computing (e.g., GDPR, ISO 27001, Cloud Security Alliance, NIST 800-53, PCI DSS, SOC2)

To fulfill this role successfully, you should demonstrate the following minimum qualifications:

  • Professional experience with at least one common GRC platform: ServiceNow, MetricStream, RSAM, Archer, Prevalent, etc. including: System configuration and customization, Report generation, Data Import/Export and mining, and Dashboard development
  • Cybersecurity certifications such as CISSP, CISA, Open FAIR and/or GRC platform specific certifications and training
  • Travel - 30% as needed

It would be helpful in this position for you to demonstrate the following capabilities and distinctions:

  • BA/BS Bachelor's Degree in Information Technology, Computer Science, Computer Engineering, or equivalent work experience
  • Two (2) years of experience in an Agile and DevOps environment
  • Two (2) years of experience with infrastructure security tools, designs and best practices
  • Two (2) years of experience with traditional on-premises computing platforms (operating systems, databases, storage/backup devices, or virtualization)
  • Experience with Service GRC Platform service tools or expertise in similar IT GRC platforms
What will it be like to work for Hilton?

Hilton is the world’s leading global hospitality company, spanning the lodging sector from luxurious full-service hotels and resorts to extended-stay suites and mid-priced hotels. For nearly a century, Hilton has offered business and leisure travelers the finest in accommodations, service, amenities, and value. Hilton is dedicated to continuing its tradition of providing exceptional guest experiences across its global brands. Our vision to fill the earth with the light and warmth of hospitality unites us as a team to create remarkable hospitality experiences around the world every day. And, our amazing Team Members are at the heart of it all!



About This Employer


7930 Jones Branch Drive, Suite 1100
McLean, VA 22102

(703) 883-1000

Corporate Office

Follow us:

About Hilton

Hilton is a leading global hospitality company, with a portfolio of 14 world-class brands comprising more than 4,900 properties with over 800,000 rooms in 104 countries and territories. Hilton is dedicated to fulfilling its mission to be the world’s most hospitable company by delivering exceptional experiences – every hotel, every guest, every time.

We believe Hospitality isn’t just a job; it’s a journey of self-discovery, growth, community and cultures. Our Team Members are extraordinary professionals who work together to deliver exceptional experiences for all who walk through our doors. As we continue to grow and innovate, our Vision “to fill the earth with the light and warmth of hospitality” has never faltered. We are more than a room for the night. We create heartfelt experiences for Guests, meaningful opportunities for Team Members, and a positive impact in our Communities.

We’re always on the lookout for executives, management, hotel operations, call center/reservationists, and students and graduates interested in joining any of the Hilton brands:

  • Hilton Hotels & Resorts
  • Waldorf Astoria Hotels & Resorts
  • Conrad Hotels & Resorts
  • Canopy by Hilton
  • Curio – A Collection by Hilton
  • Doubletree by Hilton
  • Embassy Suites by Hilton
  • Hilton Garden Inn
  • Hampton by Hilton
  • Homewood Suites by Hilton
  • Home2 Suites by Hilton
  • Hilton Grand Vacations
  • Tru by Hilton
  • Tapestry Collection by Hilton

If you appreciate the impact global travel can have on the world and know how to offer an exceptional hospitality experience, you may be just the person we are looking for to work as a Hilton Team Member.