Sr. Engineer-DevSecOps

Job Description

Posting Date Jun 14, 2022
Job Number 22097504
Job Category Information Technology
Location Marriott International HQ, 10400 Fernwood Road, Bethesda, Maryland, United States VIEW ON MAP
Brand Corporate
Schedule Full-Time
Relocation? N
Position Type Management
Located Remotely? Y
Marriott International is the world’s largest hotel company, with more brands, more hotels and more opportunities for associates to grow and succeed. We believe a great career is a journey of discovery and exploration. So, we ask, where will your journey take you?

JOB SUMMARY

The Systems Engineer DevSecOps, with a focus on application delivery and site reliability, will provide expertise in the areas of platform automation and continuous integration and continuous delivery at Marriott International. DevSecOps Engineering is a discipline which combines both software and systems engineering to build and operate large-scale, distributed, fault-tolerant systems. Our engineers ensure that Marriott's services have the necessary security, resiliency and uptime appropriate to user needs while incorporating a fast rate of change around functional and non-functional improvements.

CANDIDATE PROFILE

Education and Experience

Required:

• 8+ years relevant experience in Information Technology, with 4+ years experience in DevSecOps methodologies
• 3+ years professional experience in Infrastructure as a Service (IaaS) modeling including infrastructure as code development (Terraform or similar) or infrastructure engineering at enterprise scale
• 3+ years professional experience in automated configuration management (Chef, Puppet, Ansible)
• 3+ years professional experience with cloud computing technology and its concepts (AWS, Azure)
• 3+ years professional experience in container operations (Docker, OpenShift Enterprise, ECS) and orchestration (Docker Swarm, Kubernetes)
• 2+ year professional experience with Continuous Integration and Continuous Delivery pipeline tools and implementation for immutability
• 5+ years Linux system administration
• 2+ years’ experience in the following:
  • Implementing DevSecOps practices at scale
  • Security Protocols (SSL, SAML, SAMP, LDAP etc.) and controls (container scanning, log aggregation, network scanning, CVE)
  • C, C++, Java, Python, Go, Perl, and/or Ruby
  • Designing, analyzing, and engineering large-scale distributed systems
• Experience operating in an agile scrum environment.
• Delivery focused with experience to deliver incrementally at a fast pace in 2-week sprints

Preferred:

• Professional experience in managing others (1-3 member teams)
• Metric gathering (RTO/RPO, release velocity, bug identification, etc.) and analysis
• Understanding of automated ITCM/ITRM best practices
• Requirement gathering, validation, fulfillment and change management
• Infrastructure operations experience including self-healing autonomy
• Provide functional, technical, and/or process leadership
• Strong knowledge of emerging tools, software, applications, and systems for attaining best-in-class IT technology across the enterprise
• Experience operating in Scaled Agile Framework

CORE WORK ACTIVITIES

Technical Leadership

• Develop and implement continuous integration and continuous delivery (CI/CD) pipelines to automate and shift left for the deployment of infrastructure and application code.
• Drive an “automate everything” strategy, removing toil while increasing control and predictability.
• Allow Technology teams to operate more optimally through tooling and automation.
• Design, build and maintain tools/processes to effectively secure our infrastructure and products.
• Develop automated testing framework within DevSecOps processes
• Implement a program to integrate security into the build/release pipelines to validate our code is secure before it goes to production.
• Responsible for project inception including requirements gathering and architecting, costs and chargeback modeling, infrastructure-as-code development, configuration management, DevOps pipeline construction and CI/CD deployments
• Work with Enterprise Architecture to provide technology and cloud native service governance for technology steering committees, with cost and support directives
• Work directly with IT Program and Project management orgs to ensure alignment on capability and feature release schedules, targets and cost with prioritization
• Promote Marriott International Cloud Platform capabilities including Cloud Native Services for cost effective solutions against architecture
• Promote Containers-as-a-Service Kubernetes methodologies for orchestrated scheduling of portable containers across global cloud platforms
• Monitor and drive industry best practice Continuous Delivery principals for improvement of application and feature deployment velocity with minimal downtime
• Work with MI Security for governance and application of Tier0/1 Security tooling across the entire fleet of cloud virtual machines including automated OS, access, log, DDOS and code monitoring and auditing
• Own relationships with tooling and Cloud vendors including Red Hat, Docker, Chef, Amazon, Google
• Coordination between onshore/offshore engineering and operations teams; handover and acceptance of L1/2 shared services Ops
• Reporting of issues/risks to Sr. Director level, Project Management and the Business

Delivering Technology

• Administer and operate BAU and in-flight deployment of Marriott’s largest applications
• Work closely with Development teams to understand Marriott applications and dependency requirement to ensure platform performance
• Design cloud-based technical architectures to meet application functional and non-functional requirements across public and private cloud sites in accordance with Enterprise Architecture
• Leverage Hashicorp Terraform to develop infrastructure as code for repeatable environment provisioning via automated blueprints and solutions
• Author Configuration Management standards as code using Chef Enterprise with Compliance to ensure standards and patching is applied across the fleet
• Create parameterized build jobs via Jenkins for Continuous Integration of Secirity and environamtal variables
• Own container and OS base images, plus libraries for individual apps/services
• Build container artifacts and storage in Artifactory/Docker Trusted Registry for deployment to multiple sites
• Constructing CI/CD deployment pipelines to Red Hat OpenShift Enterprise Kubernetes orchestration platform
• Complete real-time deployments for feature releases during business and non-business hours
• Integrate with standardized APM, machine, BAC and other monitoring services for 24x7 alerting of Production assest to centralized operations center
• Work with network teams to ensure firewall and router changes made by application an automated and secure fashion including global and local traffic management to four production sites
• Migrate private cloud collocated datacenter workload to the cloud via portable as-code methodologies to ensure compute, configuration and network standards for EOL of company owned assets
• Work with CMDB team to establish Business Service, Configuration Item, Application relationship in CMDB
• SOP/ConOps documentation for L1/L2 operations teams
• Ensures proper coordination with appropriate IT and vendor relations teams
• Ensures early warning to the business stakeholder executives regarding degraded or missed service levels

IT Governance

• Follows all defined IT standards and processes (i.e. IT Governance, SM&G, Architecture, etc.), and provides input for improvements to the appropriate process owners as needed
• Execute infrastructure compliance monitors and auditing to ensure user and password security
• Maintains a proper balance between business and operational risk
• Follows the defined project management standards and processes

Service Provider Management

• Validates that Service Providers develop and manage respective aspects of a project plan, including schedules, deliverables, and appropriate metrics.
• Makes short term plans for the team to effectively utilize resources
• Monitors Service Provider outcomes
• Reviews estimates of work effort for client project provided by Service Providers for accuracy
• Facilitates timely resolution of service delivery problems and minimizes the impact to clients

This position requires proof of full vaccination against COVID-19 prior to the first date of employment, subject to applicable law. If you are offered employment, this requirement must be met by your date of hire, unless a reasonable accommodation request is received and approved.

Marriott International is an equal opportunity employer. We believe in hiring a diverse workforce and sustaining an inclusive, people-first culture. We are committed to non-discrimination on any protected basis, such as disability and veteran status, or any other basis covered under applicable law.