Director, Cybersecurity Pen Testing

Description

***This role is based at one of our corporate offices in Memphis, TN, McLean, VA, Dallas, TX, or Remote***

This is your chance to be a part of an in-house Technology team that’s creating consumer-facing, cutting-edge technologies revolutionizing the hospitality industry around the world! As a Director Cyber Penetration Testing you will bring your technical skills to a hospitality company with an award-winning culture. On the Global Information Security team reporting to the Senior Director Cyber Security, you will support the security validation of enterprise solutions such as Hilton.com, Mobile, central reservation system, and property management software across various Hilton properties across the globe. 

HOW WE WILL SUPPORT YOU

Hilton is proud to support the mental and physical wellbeing of all Team Members so they can Thrive personally and professionally in a diverse and inclusive environment, thanks to programs and benefits such as:

• Go Hilton travel program: 100 nights of discounted travel with room rates as low as $40/night
• Hilton Shares: Our employee stock purchase program (ESPP) - you can purchase Hilton shares at a 15 percent discount
• Paid parental leave for eligible Team Members, including partners and adoptive parents
• Mental health resources including free counseling through our Employee Assistance Program
• Paid Time Off (PTO)
• Learn more about the rest of our benefits

At Hilton, we believe every Team Member is a leader. We are committed to offering leadership development opportunities and programs through every step of a Team Member’s career journey and at every level, both in our hotels and across corporate. 

**Available benefits may vary depending upon terms and conditions of employment and are subject to the terms and conditions of the plans.

Requirements

HOW YOU WILL MAKE AN IMPACT

Your role is important and below are some of the fundamental job duties that make your work unique.

What your day-to-day will be like:

• Lead and mentor a penetration test team, providing guidance, technical expertise, and career development opportunities.
• Conduct comprehensive penetration testing engagements, including planning, scoping, execution, reporting, and remediation guidance.
• Identify and exploit critical vulnerabilities in web applications, networks, and systems.
• Present and document findings in a clear, concise, and actionable manner to allow the level of management.
• Collaborate with developers and security teams to remediate vulnerabilities found during testing and external Bug Bounty program.
• Contribute to the development and improvement of our penetration testing methodologies and strategy.
• Stay current with emerging trends and technologies in security threats, vulnerabilities, and penetration testing methodologies to identify opportunities to incorporate new tools and techniques into our cyber processes. 

How you will collaborate with others:

• You will collaborate with multiple teams including Product, Design, and Architecture to drive efficiency, and standards, and maintain the security of the various products.
• Be an engaged member of a Global Information Security team working with software and infrastructure engineering team members daily, identifying and helping resolve security vulnerabilities
• Work with external vendors to manage the Hilton’s Bug Bounty Program.
• Work with an external educational institution to manage external testing and research labs.
• Use a customer-centric approach to create and manage business and technology processes. 

What projects you will take ownership of: 

• Overall technical ownership for our Global Information Security Penetration Testing and Research program.

WHY YOU'LL BE A GREAT FIT

You have these minimum qualifications:

• Ten (10) years of professional work experience in Technology or related field
• Six (6) years of management/supervisory experience in information security with a focus on penetration testing
• Strong understanding of penetration testing methodologies, including OWASP methodologies and PTES frameworks
• Strong understanding of network protocols, cryptography, authentication protocols, and security vulnerabilities
• Proficiency in using penetration testing tools like Metasploit, Burp Suite, Wireshark, Nessus, etc.
• Possession of one or more relevant penetration testing certifications (e.g., OSCP, OSCE, or GPEN)
• Experience in Agile methodology best practices and familiarity with Agile software tools such as JIRA 
• Travel up to 25%

It would be useful if you have:

• Bachelor’s Degree, or Associate’s Degree plus 6 years of Technology related experience, or High School Degree/GED plus 12 years of Technology related experience 
• Twelve (12) years of professional work experience in Technology or related field
• Eight (8) years of Management/Supervisory experience
• Experience in the hospitality industry
• Experience with development languages such as Python or Java

WHAT IT IS LIKE WORKING FOR HILTON

Hilton, the #1 World's Best Workplace, is a leading global hospitality company with a diverse portfolio of world-class brands. Dedicated to filling the earth with the light and warmth of hospitality, we have welcomed more than 3 billion guests in our more-than 100-year history. Hilton is proud to have an award-winning workplace culture and we are consistently named among one of the World’s Best Workplaces. Check out the Hilton Careers blog and Instagram to learn more about what it’s like to be on Team Hilton!

It is the policy of Hilton to employ qualified persons without regard to color, race, creed, religion, national origin, ancestry, citizenship status, age, sex or gender (including pregnancy, childbirth and related medication conditions), gender identity or gender expression, sexual orientation, marital status, military service, status as a protected veteran, disability, protected medical condition as defined by applicable law, genetic information, or any other protected group status as defined by and subject to applicable federal, state and local laws. 

We provide reasonable accommodations to qualified persons with disabilities to perform the essential functions of the position and provide other benefits and privileges of employment in accordance with applicable law.  Please contact us if you require an accommodation during the application process.

Hilton offers its eligible team members a comprehensive benefits package including medical and prescription drug coverage, dental coverage, vision coverage, life insurance, short-and long-term disability insurance, access to our employee stock purchase plan (ESPP) where you can purchase Hilton shares at a 15 percent discount, a 401(k) savings plan, 20 days of paid time off accruing over your first year of employment and increasing up to 25 days after completing one year of full employment, up to 12 weeks of paid leave for birth parents and 4 weeks for non-birth parents, 10 paid holidays and 2 floating holidays throughout the year, up to 5 bereavement days, flexible spending accounts, a health savings account, an employee assistance program, access to a care coordination program (“Wellthy”),  a legal services program, an educational assistance program, adoption assistance, a backup childcare program, pre-tax commuter benefit and our travel discount. The annual salary range for this role is $145,000-$200,000 and is determined based on applicable and specialized experience and location. Subject to plan terms and conditions, you will be eligible to participate in the Hilton Annual Incentive (Bonus) Plan, and the Company's long-term incentive plan, consistent with other team members at the same level and/or position within the Company. #LI-REMOTE