Marriott International

Chief Info Security Officer (CISO)

Marriott International$200K — $250K *
Information Technology
11 - 15 years of experience
Job Overview by Ladders

Qualifications

  • Bachelor's degree in Information Security, Computer Science, or related field.
  • 15+ years of progressive cybersecurity experience; at least 10 years in senior leadership roles.
  • Experience in leading enterprise information security programs and teams.
  • Experience using AI, machine learning, and automation in cybersecurity operations at enterprise scale.
  • Proven ability to embed security and privacy by design in technology and product development lifecycles.

Responsibilities

  • Define and lead enterprise-wide information security and governance strategy.
  • Establish a Trust and Security by Design model integrated into products and culture.
  • Evolve cybersecurity posture using intelligent automation and advanced analytics.
  • Develop and implement a multi-year cybersecurity and digital trust roadmap.
  • Conduct Board-level engagement on information security and governance.

Benefits

  • Opportunity to shape and influence enterprise-wide cybersecurity strategy.
  • Engagement with C-suite and Board-level stakeholders.
  • Work in a dynamic, AI-driven technology landscape.
  • Chance to enhance security culture and practices within the organization.
Full Job Description
Job Description

As a critical member of the senior technology leadership team, the Chief Information Security Officer (CISO) defines, leads, and executes the enterprise-wide information security, governance, risk, compliance and trust strategy to protect the company's digital assets, technology platforms, brand reputation, and customer trust in an increasingly AI-enabled world. This executive establishes and operationalizes a Trust and Security by Design model-ensuring security, privacy, resilience, and ethical use of technology are embedded into every product, platform, and digital experience as well as the culture of how we work. They are also accountable for leading all Board-level engagement on information security with Marriott's BOD technology subcommittee, instilling confidence in our current and continually evolving cybersecurity strategy.

The CISO is accountable for evolving the organization's cybersecurity posture through intelligent automation, advanced analytics, and AI driven security capabilities, enabling proactive risk reduction, faster threat detection and response, and scalable governance across a global, decentralized environment. The CISO will be accountable for a forward-thinking and resilient Information Security Program, Governance, Risk, and Compliance (GRC), Identity and Access Management (IAM), Security Architecture and Strategy and Security Operations Center (SOC).

Serving as the strategic leader for cyber risk, regulatory compliance, and digital trust, the CISO partners closely with IT, Legal, HR, Compliance, Data Privacy, and business leaders to align security outcomes with business priorities. This executive sets the tone for a culture of security consciousness, responsible AI use, and continuous improvement-anticipating emerging threats and embedding modern, automated defenses to protect the company's future. The role reports to the Chief Information Officer.

CANDIDATE PROFILE

Education and Experience

Required:
  • Bachelor's degree in information security, Computer Science, or related field.
  • 15+ years of progressive cybersecurity experience with at least 10 years in a senior leadership role that reflects significant people and financial management experiences and leading through a range of moments from crisis to driving change.
  • Demonstrated success leading enterprise information security programs and teams.
  • Demonstrated experience applying AI, machine learning, and automation to cybersecurity operations, risk management, or governance at enterprise scale.
  • Proven leadership embedding security by design and privacy by design principles into digital transformation, cloud adoption, and product development lifecycles.
  • Experience governing the secure and responsible use of AI-enabled technologies, including risk management, controls, and ethical considerations.
  • Extensive knowledge of cybersecurity frameworks (NIST, ISO 27001), risk management practices, and IT governance.
  • Experience managing complex security operations, incident response, and threat mitigation.
  • Strong background in security technologies including firewalls, SIEM, intrusion detection, encryption, and identity & access management.
  • Experience implementing DevSecOps, secure software development, and security engineering practices.
  • Experience with cloud security and securing multi-cloud infrastructures.
  • Experience with leading Identity & access management (IAM).
  • Deep understanding of Network and endpoint protection technologies.
  • Working knowledge of data privacy regulations (e.g., GDPR, HIPAA) and compliance programs.
  • Strong platform skills and proven track record in executive communication and influencing at the C-suite and Board levels.
  • Strong analytical, decision-making, and problem-solving capabilities.

Preferred:
  • Master's degree in Cybersecurity, IT, Business Administration, or related field.
  • Certifications such as CISSP, CISM, CISA, or CRISC.
  • Background in digital forensics, vulnerability management, and penetration testing.
  • Experience deploying AI-driven threat detection, security orchestration (SOAR), automated incident response, and predictive risk analytics.
  • Familiarity with emerging regulatory and industry expectations related to AI governance, algorithmic risk, and digital trust.


CORE FOCUS

Trust & Security by Design

The CISO is the executive owner of the enterprise Trust and Security by Design framework, ensuring that cybersecurity, data protection, privacy, resilience, and ethical technology use are foundational design requirements-not after-the-fact controls. This includes embedding security and trust principles into:
  • Digital products and guest-facing experiences
  • Cloud, AI, and data platforms
  • Workplace technologies and end-user computing
  • Third-party and ecosystem integrations

Security decisions are risk-based, automated where possible, and aligned to customer trust, regulatory expectations, and long-term enterprise value.

Set the Information Security Strategy & Champion Change
  • Develop and communicate a compelling enterprise security and trust vision that integrates AI-enabled security capabilities and automation aligned to business outcomes.
  • Lead a multi-year cybersecurity and digital trust roadmap that embeds Trust and Security by Design into all technology initiatives.
  • Proactively evaluate emerging threats, AI-driven risks, and technology trends, adjusting strategy to ensure resilience and responsible innovation.
  • Champion the adoption of automation to reduce manual controls, improve decision quality, and increase speed and consistency across security operations.
  • Establish and oversee a global governance framework that integrates cybersecurity, data protection, privacy, AI risk, and digital trust.
  • Leverage automation and analytics to continuously assess risk, prioritize remediation, and monitor control effectiveness.
  • Ensure third-party, vendor, and ecosystem risk programs incorporate security-by-design expectations and automated assurance mechanisms.
  • Provide executive and Board-level reporting using data-driven, forward-looking risk indicators rather than static compliance metrics.
  • Oversee modern, AI-enabled Security Operations capabilities that leverage advanced analytics, automation, and orchestration to detect and respond to threats in real time.
  • Lead enterprise incident response with a focus on speed, accuracy, and automation, including post-incident learning and continuous improvement.
  • Integrate threat intelligence, digital forensics, and predictive analytics to anticipate and mitigate emerging risks.
  • Direct the design of secure, resilient architectures across applications, infrastructure, cloud, and AI platforms.
  • Embed security-by-design, zero-trust, and privacy-by-design principles into all digital initiatives and product development lifecycles.
  • Partner with IT and engineering teams to integrate security controls into CI/CD pipelines, DevSecOps practices, and AI development processes.
  • Continuously modernize the security technology stack with a focus on automation, scalability, and reduced operational friction.
  • Continuously improve the role based system access framework and provisioning.
  • Build a high-performing security organization skilled in automation, data-driven decision-making, and AI-enabled security practices.
  • Lead enterprise-wide security, privacy, and responsible-AI awareness programs that reinforce trust as a shared accountability.
  • Foster a culture where innovation and security advance together-balancing speed, safety, and customer trust.

Information Security Governance, Risk & Trust Management
  • Establish and oversee a global governance framework that integrates cybersecurity, data protection, privacy, AI risk, and digital trust.
  • Leverage automation and analytics to continuously assess risk, prioritize remediation, and monitor control effectiveness.
  • Ensure third-party, vendor, and ecosystem risk programs incorporate security-by-design expectations and automated assurance mechanisms.
  • Provide executive and Board-level reporting using data-driven, forward-looking risk indicators rather than static compliance metrics.

Security Operations, Automation, & Incident Response
  • Oversee modern, AI-enabled Security Operations capabilities that leverage advanced analytics, automation, and orchestration to detect and respond to threats in real time.
  • Lead enterprise incident response with a focus on speed, accuracy, and automation, including post-incident learning and continuous improvement.
  • Integrate threat intelligence, digital forensics, and predictive analytics to anticipate and mitigate emerging risks.

Security Architecture & AI Technology Enablement
  • Direct the design of secure, resilient architectures across applications, infrastructure, cloud, and AI platforms.
  • Embed security-by-design, zero-trust, and privacy-by-design principles into all digital initiatives and product development lifecycles.
  • Partner with IT and engineering teams to integrate security controls into CI/CD pipelines, DevSecOps practices, and AI development processes.
  • Continuously modernize the security technology stack with a focus on automation, scalability, and reduced operational friction.
  • Continuously improve the role based system access framework and provisioning.

People Leadership & Organizational Development
  • Build a high-performing security organization skilled in automation, data-driven decision-making, and AI-enabled security practices.
  • Lead enterprise-wide security, privacy, and responsible-AI awareness programs that reinforce trust as a shared accountability.
  • Foster a culture where innovation and security advance together-balancing speed, safety, and customer trust.


This role is not solely responsible for protecting systems-it is accountable for protecting trust, enabling innovation, and ensuring security is designed into how the enterprise operates, scales, and serves its customers.

About Marriott International

Marriott International is a hospitality company with more than 3,900 properties around the world. Marriot International opened its first hotel in 1957 and operates franchises worldwide. The company’s headquarters is based in Maryland and employees nearly 200,000 people worldwide.   The company was founded by J. Willard and Alice Marriott in 1927 by opening a root beer stand in Washington D.C.

Marriott International Careers

Join the vibrant team at Marriott International, the global leader in hospitality, where career opportunities abound and the potential for growth is limitless. As part of our commitment to innovation and leadership in the industry, we are continuously seeking passionate, creative, and driven individuals to join our diverse team. Work You’ll Do At Marriott International, you will be part of a culture that values diversity, leadership, and professional development. Engage in meaningful work that enhances the travel experience of each guest while fostering a positive environment where all team members can thrive. Our team at Marriott International leads the way in delivering exceptional service and innovative hospitality solutions. With a variety of job opportunities ranging from front-line roles to executive positions, you can find the perfect match for your skills and career ambitions. Marriott International’s commitment to growth and innovation means we are always on the lookout for dynamic professionals to join our team. Whether you are seeking your first job, looking for a challenging leadership role, or aiming to specialize in hospitality management, Marriott offers unparalleled employment opportunities. Internship and Training Programs Kickstart your career with Marriott International’s internship programs. These opportunities provide invaluable industry experience and a chance to develop essential skills in a real-world setting. Interns at Marriott are treated as integral members of the team and are involved in projects that make a tangible impact on the company. In addition to internships, we offer comprehensive diversity training and professional development programs that prepare you for future leadership roles within the company. Our training programs are designed to enhance your capabilities and ensure you are equipped to meet the challenges of the evolving hospitality landscape. Benefits and Career Growth Marriott International believes in rewarding our employees for their dedication and hard work. We offer a competitive benefits package that includes health, vision, and dental insurance, employee discounts, and more. Moreover, we are committed to the professional growth of our employees. Career advancement at Marriott is not just a possibility—it is a priority. Join Our Team Explore the wide range of job opportunities at Marriott International. We are hiring across various departments, including management, customer service, culinary arts, and more. Bring your unique skills and perspective to our team, and help us continue to innovate and lead in the hospitality industry. Networking and Professional Development Stay connected and advance your career through Marriott’s extensive networking opportunities. Our professional community is designed to foster connections that can lead to career advancement and personal growth. Engage with leaders, gain industry insights, and build relationships that will support your career aspirations. Apply Now Ready to take the next step in your career? Search open positions that match your skills and interests on the Marriott Careers page. We look for individuals who are curious, team-oriented, and committed to excellence. Prepare your resume, sharpen your interview skills, and join one of the most respected names in the global hospitality industry. Stay Up to Date Keep informed with the latest career tips, company news, and industry insights from Marriott International. Join our community and discover how you can contribute to the world of hospitality and beyond. Explore job opportunities, embrace professional growth, and become part of a company that values innovation and leadership. At Marriott International, your career journey is just beginning.
Learn more about Marriott International
Size
120,000 employees
Market Cap
$46.5 billion
Industry
Net Income
-$267 million
Founded
1927
5 Year Trend
-2.1%
Revenue
$10.5 billion
NASDAQ

Similar Jobs

More Jobs at Marriott International

More Information Technology Jobs

Find similar Chief Info Security Officer (CISO) jobs: