Chief Information Security Officer

**This role is based at our corporate office in McLean, VA, or Dallas, TX***

This is your chance to be a part of an in-house Technology team that’s creating cutting-edge technologies revolutionizing the hospitality industry around the world!

What will I be doing?

Reporting directly to the Chief Information Officer (CIO), the Chief Information Security Officer will be responsible for advancing the cyber security of Hilton’s global technology infrastructure that spans over 7,400 hotels, corporate offices, data centers, cloud networks and 150K managed endpoints.  You will be a strategic leader to enhance all aspects of Hilton’s cyber security program, with an emphasis on the controls protecting our network, server, endpoint, and remote workforce, and lead enterprise cyber risk discussion with business and technology leaders.

Your responsibilities will also include:  

• Develop high-performing work teams, preparing a succession plan for key positions and top performers annually. Develop current talent to achieve greater strategic goals and performance.     
• Develop and evolve the multi-year cyber security strategy.     
• Engage Hilton governance, risk, and compliance processes and ensure risks are reasonably tracked and appropriately acknowledged. 
• Advocate for reasonable cyber security, presenting at internal conferences and team events as appropriate.     
• Apply in-depth knowledge of cyber security to lead the continuous evaluation and improvement of processes and controls required to mitigate cyber threats.     
• Maintain an understanding of Hilton’s cyber remit as defined by various brand standards, management agreements, franchise license agreements, and other instruments.      
• Ensure the cyber program’s scope reasonably covers Hilton’s cyber security responsibilities and liability insurance scope, consulting with Legal on contract terms and provisions to ensure cyber interests and obligations are protected.      
• Lead and provide senior cyber security management oversight for a team of Directors and cyber engineers.      
• Partner with the cyber leadership team to evolve Hilton’s cyber data collection, management, and visualization strategy.  Align automation efforts across cyber teams, evolve Hilton’s Security Orchestration, Automation, and Reporting capability.     
• Lead the Hotel Technology Cyber Governance Program that helps ensure technology procured by the hotels is safe and reasonably deployed, maintained, supported, and secured.  Enhance the program through increased integration with cyber vendor risk management, technology procurement, legal, field technology, and inclusion of industry COTS related cyber frameworks (mvsp.dev, CISA SBOM, etc.) into cyber reviews and quality assurance requirements.

How you will collaborate with others:

• Build positive, dependable, and highly effective working relationships across Hilton.   

What initiatives you will take ownership of:

• Develop cyber maturity strategies, plans, roadmaps, and measurement methods that drive continuous improvement.  Direct projects and cross-team engagements in a highly matrixed, geographically dispersed environment.  Anticipated focus areas include, but are not limited to: network access control, network device configuration and change management, software defined networking governance, Internet access control, remote access, franchise BYOT, and data observability pipelines.  

What are we looking for?

Success will demonstrate itself through the following attributes and skills:

• Fundamental understanding of IP networking and IP Cyber Security controls
• Proven experience working with very large Global enterprises
• Experience managing large Cyber Security team
• Business acumen when balancing Cyber Risk decisions and recommendations
• Proven Leadership skills in supervising and developing teams and people

To fulfill this role successfully, you must possess the following minimum qualifications and experience:

• Sixteen (16) years of professional work experience in Technology or a related field
• Thirteen (13) years of progressive work experience in Cyber Security related roles
• Five (5) years of management experience directly leading people and teams
• Previous experience as a CISO or deputy CISO for a publicly traded, international company
• Ability to travel both domestically and internationally up to 25% as needed

It would be useful in this position for you to demonstrate the following capabilities and distinctions:

• Bachelor’s Degree
• CISSP, PCI QSA, SANs Certifications, or other Cyber Security Professional certification

What is it like working for Hilton?

Hilton is proud to support the mental and physical wellbeing of all Team Members so they can Thrive personally and professionally in a diverse and inclusive environment, thanks to our benefits such as the Go Hilton travel program, employee stock purchase program, and paid time off including parental leave.

The future of hospitality is bright at Hilton: a leading global hospitality company with a diverse portfolio of world-class brands. Dedicated to filling the earth with the light and warmth of hospitality, we have welcomed more than 3 billion guests in our more than 100-year history. Hilton is proud to have an award-winning workplace culture, and we are consistently named among one of the World’s Best Workplaces. Check out the Hilton Careers blog and Instagram to learn more about what it’s like to be on Team Hilton! 

It is the policy of Hilton to employ qualified persons without regard to color, race, creed, religion, national origin, ancestry, citizenship status, age, sex or gender (including pregnancy, childbirth and related medication conditions), gender identity or gender expression, sexual orientation, marital status, military service, status as a protected veteran, disability, protected medical condition as defined by applicable law, genetic information, or any other protected group status as defined by and subject to applicable federal, state and local laws. Hilton’s commitment to equal employment opportunity supports the attraction and retention of a diverse workforce that will enhance our effectiveness in attracting Team Members, customers, corporate partners, and owners.
 
We provide reasonable accommodations to qualified persons with disabilities to perform the essential functions of the position and provide other benefits and privileges of employment in accordance with applicable law.  Please contact us if you require an accommodation during the application process.