Chief Info Security Officer (CISO)
Marriott
Job Description As the #1 leader in hospitality worldwide, Marriott International has nearly 40 brands and over 9,800 hotels in its portfolio across 145 countries - and we're still growing. By joining Marriott, you can be a part of something bigger than yourself, be inspired by what's possible and discover your own future as we continue to undertake the industry's largest digital and technology transformation that will allow us to maintain our position as the industry leader in travel and hospitality for years to come. The patent-pending platforms and architecture is built with secure by design, trust by design principles. Come build what's next .
As a critical member of the senior technology leadership team, the Chief Information Security Officer (CISO) defines, leads, and executes the enterprise-wide information security, governance, risk, compliance and trust strategy to protect the company's digital assets, technology platforms, brand reputation, and customer trust in an increasingly AI-enabled world. This executive establishes and operationalizes a Trust and Security by Design model-ensuring security, privacy, resilience, and ethical use of technology are embedded into every product, platform, and digital experience as well as the culture of how we work. They are also accountable for leading all Board-level engagement on information security with Marriott's BOD technology subcommittee, instilling confidence in our current and continually evolving cybersecurity strategy.
The CISO is accountable for evolving the organization's cybersecurity posture through intelligent automation, advanced analytics, and AI driven security capabilities, enabling proactive risk reduction, faster threat detection and response, and scalable governance across a global, decentralized environment. The CISO will be accountable for a forward-thinking and resilient Information Security Program, Governance, Risk, and Compliance (GRC), Identity and Access Management (IAM), Security Architecture and Strategy and Security Operations Center (SOC).
Serving as the strategic leader for cyber risk, regulatory compliance, and digital trust, the CISO partners closely with IT, Legal, HR, Compliance, Data Privacy, and business leaders to align security outcomes with business priorities. This executive sets the tone for a culture of security consciousness, responsible AI use, and continuous improvement-anticipating emerging threats and embedding modern, automated defenses to protect the company's future. The role reports to the Chief Information Officer. CANDIDATE PROFILE Education and Experience Required:
The CISO is the executive owner of the enterprise Trust and Security by Design framework, ensuring that cybersecurity, data protection, privacy, resilience, and ethical technology use are foundational design requirements-not after-the-fact controls. This includes embedding security and trust principles into:
Set the Information Security Strategy & Champion Change
This role is not solely responsible for protecting systems-it is accountable for protecting trust, enabling innovation, and ensuring security is designed into how the enterprise operates, scales, and serves its customers. At Marriott International, we are dedicated to being an equal opportunity employer, welcoming all and providing access to opportunity. We actively foster an environment where the unique backgrounds of our associates are valued and celebrated. Our greatest strength lies in the rich blend of culture, talent, and experiences of our associates. We are committed to non-discrimination on any protected basis, including disability, veteran status, or other basis protected by applicable law. About Us All positions offer a 401(k) plan, stock purchase plan, discounts at Marriott properties, commuter benefits, employee assistance plan, and childcare discounts. Benefits are subject to terms and conditions, which may include rules regarding eligibility, enrollment, waiting period, contribution, benefit limits, election changes, benefit exclusions, and others. Click here to learn more. Full-time positions also offer coverage for medical, dental, vision, health care flexible spending account, dependent care flexible spending account, life insurance, disability insurance, accident insurance, adoption expense reimbursements, paid parental leave and educational assistance.
Washington Applicants Only : Employees will accrue paid sick leave, 0.077 PTO balance for every hour worked and be eligible to receive a minimum of 9 holidays annually. Marriott HQ is committed to a hybrid work environment that enables associates to Be connected. Headquarters-based positions are considered hybrid, for candidates within a commuting distance to Bethesda, MD; candidates outside of commuting distance to Bethesda, MD will be considered for Remote positions. About the Team Marriott International is the world's largest hotel company, with more brands, more hotels and more opportunities for associates to grow and succeed. Be where you can do your best work, begin your purpose, belong to an amazing global team, and become the best version of you.
As a critical member of the senior technology leadership team, the Chief Information Security Officer (CISO) defines, leads, and executes the enterprise-wide information security, governance, risk, compliance and trust strategy to protect the company's digital assets, technology platforms, brand reputation, and customer trust in an increasingly AI-enabled world. This executive establishes and operationalizes a Trust and Security by Design model-ensuring security, privacy, resilience, and ethical use of technology are embedded into every product, platform, and digital experience as well as the culture of how we work. They are also accountable for leading all Board-level engagement on information security with Marriott's BOD technology subcommittee, instilling confidence in our current and continually evolving cybersecurity strategy.
The CISO is accountable for evolving the organization's cybersecurity posture through intelligent automation, advanced analytics, and AI driven security capabilities, enabling proactive risk reduction, faster threat detection and response, and scalable governance across a global, decentralized environment. The CISO will be accountable for a forward-thinking and resilient Information Security Program, Governance, Risk, and Compliance (GRC), Identity and Access Management (IAM), Security Architecture and Strategy and Security Operations Center (SOC).
Serving as the strategic leader for cyber risk, regulatory compliance, and digital trust, the CISO partners closely with IT, Legal, HR, Compliance, Data Privacy, and business leaders to align security outcomes with business priorities. This executive sets the tone for a culture of security consciousness, responsible AI use, and continuous improvement-anticipating emerging threats and embedding modern, automated defenses to protect the company's future. The role reports to the Chief Information Officer. CANDIDATE PROFILE Education and Experience Required:
- Bachelor's degree in information security, Computer Science, or related field.
- 15+ years of progressive cybersecurity experience with at least 10 years in a senior leadership role that reflects significant people and financial management experiences and leading through a range of moments from crisis to driving change.
- Demonstrated success leading enterprise information security programs and teams.
- Demonstrated experience applying AI, machine learning, and automation to cybersecurity operations, risk management, or governance at enterprise scale.
- Proven leadership embedding security by design and privacy by design principles into digital transformation, cloud adoption, and product development lifecycles.
- Experience governing the secure and responsible use of AI-enabled technologies, including risk management, controls, and ethical considerations.
- Extensive knowledge of cybersecurity frameworks (NIST, ISO 27001), risk management practices, and IT governance.
- Experience managing complex security operations, incident response, and threat mitigation.
- Strong background in security technologies including firewalls, SIEM, intrusion detection, encryption, and identity & access management.
- Experience implementing DevSecOps, secure software development, and security engineering practices.
- Experience with cloud security and securing multi-cloud infrastructures.
- Experience with leading Identity & access management (IAM).
- Deep understanding of Network and endpoint protection technologies.
- Working knowledge of data privacy regulations (e.g., GDPR, HIPAA) and compliance programs.
- Strong platform skills and proven track record in executive communication and influencing at the C-suite and Board levels.
- Strong analytical, decision-making, and problem-solving capabilities.
- Master's degree in Cybersecurity, IT, Business Administration, or related field.
- Certifications such as CISSP, CISM, CISA, or CRISC.
- Background in digital forensics, vulnerability management, and penetration testing.
- Experience deploying AI-driven threat detection, security orchestration (SOAR), automated incident response, and predictive risk analytics.
- Familiarity with emerging regulatory and industry expectations related to AI governance, algorithmic risk, and digital trust.
The CISO is the executive owner of the enterprise Trust and Security by Design framework, ensuring that cybersecurity, data protection, privacy, resilience, and ethical technology use are foundational design requirements-not after-the-fact controls. This includes embedding security and trust principles into:
- Digital products and guest-facing experiences
- Cloud, AI, and data platforms
- Workplace technologies and end-user computing
- Third-party and ecosystem integrations
Set the Information Security Strategy & Champion Change
- Develop and communicate a compelling enterprise security and trust vision that integrates AI-enabled security capabilities and automation aligned to business outcomes.
- Lead a multi-year cybersecurity and digital trust roadmap that embeds Trust and Security by Design into all technology initiatives.
- Proactively evaluate emerging threats, AI-driven risks, and technology trends, adjusting strategy to ensure resilience and responsible innovation.
- Champion the adoption of automation to reduce manual controls, improve decision quality, and increase speed and consistency across security operations.
- Establish and oversee a global governance framework that integrates cybersecurity, data protection, privacy, AI risk, and digital trust.
- Leverage automation and analytics to continuously assess risk, prioritize remediation, and monitor control effectiveness.
- Ensure third-party, vendor, and ecosystem risk programs incorporate security-by-design expectations and automated assurance mechanisms.
- Provide executive and Board-level reporting using data-driven, forward-looking risk indicators rather than static compliance metrics.
- Oversee modern, AI-enabled Security Operations capabilities that leverage advanced analytics, automation, and orchestration to detect and respond to threats in real time.
- Lead enterprise incident response with a focus on speed, accuracy, and automation, including post-incident learning and continuous improvement.
- Integrate threat intelligence, digital forensics, and predictive analytics to anticipate and mitigate emerging risks.
- Direct the design of secure, resilient architectures across applications, infrastructure, cloud, and AI platforms.
- Embed security-by-design, zero-trust, and privacy-by-design principles into all digital initiatives and product development lifecycles.
- Partner with IT and engineering teams to integrate security controls into CI/CD pipelines, DevSecOps practices, and AI development processes.
- Continuously modernize the security technology stack with a focus on automation, scalability, and reduced operational friction.
- Continuously improve the role based system access framework and provisioning.
- Build a high-performing security organization skilled in automation, data-driven decision-making, and AI-enabled security practices.
- Lead enterprise-wide security, privacy, and responsible-AI awareness programs that reinforce trust as a shared accountability.
- Foster a culture where innovation and security advance together-balancing speed, safety, and customer trust.
- Establish and oversee a global governance framework that integrates cybersecurity, data protection, privacy, AI risk, and digital trust.
- Leverage automation and analytics to continuously assess risk, prioritize remediation, and monitor control effectiveness.
- Ensure third-party, vendor, and ecosystem risk programs incorporate security-by-design expectations and automated assurance mechanisms.
- Provide executive and Board-level reporting using data-driven, forward-looking risk indicators rather than static compliance metrics.
- Oversee modern, AI-enabled Security Operations capabilities that leverage advanced analytics, automation, and orchestration to detect and respond to threats in real time.
- Lead enterprise incident response with a focus on speed, accuracy, and automation, including post-incident learning and continuous improvement.
- Integrate threat intelligence, digital forensics, and predictive analytics to anticipate and mitigate emerging risks.
- Direct the design of secure, resilient architectures across applications, infrastructure, cloud, and AI platforms.
- Embed security-by-design, zero-trust, and privacy-by-design principles into all digital initiatives and product development lifecycles.
- Partner with IT and engineering teams to integrate security controls into CI/CD pipelines, DevSecOps practices, and AI development processes.
- Continuously modernize the security technology stack with a focus on automation, scalability, and reduced operational friction.
- Continuously improve the role based system access framework and provisioning.
- Build a high-performing security organization skilled in automation, data-driven decision-making, and AI-enabled security practices.
- Lead enterprise-wide security, privacy, and responsible-AI awareness programs that reinforce trust as a shared accountability.
- Foster a culture where innovation and security advance together-balancing speed, safety, and customer trust.
This role is not solely responsible for protecting systems-it is accountable for protecting trust, enabling innovation, and ensuring security is designed into how the enterprise operates, scales, and serves its customers. At Marriott International, we are dedicated to being an equal opportunity employer, welcoming all and providing access to opportunity. We actively foster an environment where the unique backgrounds of our associates are valued and celebrated. Our greatest strength lies in the rich blend of culture, talent, and experiences of our associates. We are committed to non-discrimination on any protected basis, including disability, veteran status, or other basis protected by applicable law. About Us All positions offer a 401(k) plan, stock purchase plan, discounts at Marriott properties, commuter benefits, employee assistance plan, and childcare discounts. Benefits are subject to terms and conditions, which may include rules regarding eligibility, enrollment, waiting period, contribution, benefit limits, election changes, benefit exclusions, and others. Click here to learn more. Full-time positions also offer coverage for medical, dental, vision, health care flexible spending account, dependent care flexible spending account, life insurance, disability insurance, accident insurance, adoption expense reimbursements, paid parental leave and educational assistance.
Washington Applicants Only : Employees will accrue paid sick leave, 0.077 PTO balance for every hour worked and be eligible to receive a minimum of 9 holidays annually. Marriott HQ is committed to a hybrid work environment that enables associates to Be connected. Headquarters-based positions are considered hybrid, for candidates within a commuting distance to Bethesda, MD; candidates outside of commuting distance to Bethesda, MD will be considered for Remote positions. About the Team Marriott International is the world's largest hotel company, with more brands, more hotels and more opportunities for associates to grow and succeed. Be where you can do your best work, begin your purpose, belong to an amazing global team, and become the best version of you.
Vacancy posted 2 days ago
Similar jobs that could be interesting for youBased on the Chief Info Security Officer (CISO) in Bethesda, MD vacancy
$104k - $166k
...Information System Security Officer Job Locations US-MD-Silver Spring Requisition ID 2026-168211 Position Category Cyber Security Clearance Top Secret/SCI Responsibilities Peraton is seeking an Information System...SuggestedFull timeContract workWork experience placementWork at officeShift work$151.66k - $219k
...establishing DAF-wide cybersecurity strategies and policies. Learn more about this agency Duties Help As the Chief Information Security Officer (CISO) for the Department of the Air Force, you will serve as a key executive leader directing the cybersecurity...SuggestedCivilian ContractorPermanent employmentFull timePart timeFor contractorsWork experience placementPrivate practiceWork at officeImmediate startRelocationRelocation package- ...Chief Information Security Officer (CISO), Growth About the Company Accomplished provider of top-tier security services Industry Security and Investigations Type Privately Held About the Role The Company is seeking a Chief Information...Suggested
- ...Chief Information Security Officer (CISO) for the Department of the Air Force As the Chief Information Security Officer (CISO) for the Department of the Air Force, you will serve as a key executive leader directing the cybersecurity strategy and cyber defense programs...SuggestedCivilian ContractorFor contractors
- ...Chief Information Security Officer (CISO) The CISO is responsible for overseeing and managing the organization's information security program, ensuring the protection of sensitive data and compliance with regulatory requirements. This role involves strategic planning...Suggested
- ...Chief Information Security Officer (CISO) About the Company Trusted provider & publisher of consumer insights about car models & auto brands Industry Market Research Type Privately Held, Private Equity-backed Founded 1968 Employees...
- Affirm is seeking a Chief Information Security Officer (CISO) to lead its information security and cybersecurity programs. This role plays a critical part in the Bank’s executive team, establishing a robust security framework that meets regulatory expectations. The CISO...Remote job
- ...exceptional professionals for this role. MANTECH seeks a motivated, career and customer-oriented Senior Information Systems Security Officer (ISSO) to join our team in Washington, D.C . This is an on-site position. The Senior ISSO will leverage their strong...Work at officeRemote work
$127.94k - $186.6k
...hackajob is collaborating with Excella to connect them with exceptional professionals for this role. Lead Information Systems Security Officer (ISSO) Arlington, Virginia, United States, Hybrid Excella is a transformative technology firm that helps organizations...Work from homeHome officeFlexible hours$140k - $200k
...Overview Byte Systems, a subsidiary of VTG, is seeking a Information Systems Security Officer (ISSO). Members of the ISSO team support the assessment and authorization (A&A) process for information systems. The successful candidate will have requisite cyber...Work experience placement- ...Information System Security Officer (ISSO) Apogee Research brings cutting-edge research into practice for the DoD community. We blend agility with rigor to develop new technologies and transition them into operational use. Founded in 2012, Apogee Research brings together...Full timeContract workWork at office
$90k - $140k
...Overview **Steampunk ** wantsyou to be a Senior Information System Security Officer (ISSO) . The primary responsibilities for the position are to support all activities that ensure the level of security documented with the security authorization is maintained at an...Local areaFlexible hours- ...concepts and practices. and procedures using established JC, DoD, and DIA policies and standards to minimize and/or mitigate RMF security risks. The contractor will review and comment on technical documentation to ensure compliance with security standards and regulations...For contractorsWork experience placementFor subcontractorWorldwide
- ...Information Systems Security Officer (ISSO) - Senior Category: Cyber Security Main location: United States, Virginia, Arlington Position ID: J0925-0453 Employment Type: Full Time Position Description: CGI Federal has an exciting opportunity for an ISSO within...Full time
- ...Distinction, Experience and Achievement. Our customer, Headquarters United States Space Force ( HQ USSF) Director of Staff Security Office (SF/DSZ) is responsible for carrying out and providing administration and management of the collateral security program, administration...Temporary workFor contractorsWork at officeRemote workMonday to FridayFlexible hours
- ...Senior Information System Security Officer Join our team at Core One! Our mission is to be at the forefront of devising analytical, operational and technical solutions to our Nation's most complex national security challenges. In order to achieve our mission, Core...
$62k - $141k
...Job Number: R0238311 Information System Security Officer The Opportunity: We're looking for an Information System Security Officer (ISSO) responsible for assessing and requesting customer authorization for company-managed classified endpoints, servers, networks...Full timeContract workPart timeWork at officeLocal areaRemote work$150k
...assets remain resilient, optimized, and secure in an evolving threat environment. Salary... ...experienced Information Systems Security Officer (ISSO) to support our civilian agency... ...Official (AO), System Owner (SO), and/or CISO on all matters (technical and otherwise)...Contract workFor contractorsWork at office$115k - $135k
...Senior Information Systems Security Officer (ISSO) Interested in working in an innovative, collaborative environment with motivated, social... ...Certifications : CISSP Experience working with CISA, CISOs, ISSMs, and senior leadership Applying to Arc Aspicio: Our...Contract workLive inWork at officeRemote workFlexible hours$119.3k - $138.36k
...technology and ingenuity for clients across defense, national security, public safety, civilian, and military health organizations.... ...the government forward! As an Information Systems Security Officer (ISSO), you’ll be responsible for guiding government clients through...Live inWork at officeLocal area$120.03k
...Job Description 79-003 Information Systems Security Officer (ISSO) II Location: JB Anacostia-Bolling, DC Salary: $120,028.24 Minimum Clearance Requirement: Active Top Secret Clearance with eligibility for Sensitive Compartmented Information (SCI) and Special...Contract work$105.1k - $231.1k
...Job Title: Senior Information System Security Officer Job Category: Information Technology Time Type: Full time Minimum Clearance... ...Security Officer (Senior ISSO) to support the FEMA Office of the Chief Information Security Officer (OCISO) in Washington, D.C. As a...Full timeContract workWork experience placementWork at officeFlexible hours- ...Information Systems Security Officer Seize your opportunity to make a personal impact as an Information Systems Security Officer supporting the Case Management Modernization (CMM) Program. The CMM program is an initiative to support the Administrative Office of the...Work experience placementWork at officeWork from homeFlexible hours
- ...Information System Security Officer (ISSO) DDC Innovation & Growth is seeking a part-time Information System Security Officer (ISSO) to support the United States Court of Appeals for the Armed Forces (USCAAF) in Washington, DC. This position requires on-site support...Contract workPart timeFor contractorsFor subcontractorInterim roleImmediate start
- ...Information System Security Officer (ISSO) II Security Clearance Requirement: TS, with SCI Eligibility ***Position Requires US Citizenship*** Position Title: Information System Security Officer (ISSO) II Location: Joint Base Anacostia-Bolling (JBAB) Position...Work at office
$107.9k - $195.05k
...mission software capabilities in the areas of cyber, logistics, security operations, and decision analytics to support our defense and... ...Business Area is currently seeking an Information System Security Officer (ISSO). The ISSO will be responsible for managing the...Contract workLocal areaImmediate start- Secure IT Service Management, a division of Paragone Solutions, Inc., is seeking an Information Systems Security Officer (ISSO) to join our team in a remote, temp-to-perm position. The ideal candidate will have extensive knowledge and expertise with Microsoft's security...Permanent employmentTemporary workFor contractorsWork at officeRemote work
- ...contractor that provides services and solutions in: National Security Programs Professional, Administrative, and Management... ...Status: Full Time Position Title: Information Systems Security Officer (ISSO) I Location: Crystal City, VA Security Clearance Level...Full timeFor contractorsWork at officeLocal areaFlexible hours
- ...Information Systems Security Officer As an Information Systems Security Officer, you will be entrusted with the critical responsibility of safeguarding the integrity of operating systems and applications. Your role will require you to adeptly identify, select, and...Contract workWork at office
$95k - $110k
Information Systems Security Officer (ISSO) Location: Washington, DC (Onsite) Clearance: Top Secret Status: Exempt Responsibilities: Work as part of the IT Security Support Team which manages and operates an information systems security program for a U.S. government...Local areaFlexible hours
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Chief Info Security Officer (CISO). Be the first to apply!
Related searches
- information technology security engineer Bethesda, MD
- information security Bethesda, MD
- information security lead Bethesda, MD
- senior information security analyst Bethesda, MD
- director information security Bethesda, MD
- data center security officer Bethesda, MD
- sr information security engineer Bethesda, MD
- director of corporate security
- chief security officer
- head of security


