Senior Manager, Cyber Security, China

[{{ $ | translate}}] Senior Manager, Cyber Security, China
Shanghai Area Office


Job description

Marriott International is the world’s largest hotel company, with more brands, more hotels and more opportunities for associates to grow and succeed.  We believe a great career is a journey of discovery and exploration.  So, we ask, where will your journey take you?


  • Supporting the enterprise Information Protection and Privacy team to develop, implement, and maintain policies, procedures and tools to protect the company’s information assets for Marriott in China.
  • Collaborating with Global and Continent Information Technology teams and cross-functional departments to define the Information Protection strategy for the Continent.
  • Contributing to a well-informed and compelling privacy vision that is aligned with business needs.
  • Acting as the internal IT official on behalf of Marriott International with Chinese regulators to address cyber security inquiries.
  • Partnering closely with the business to align business-iT security governance to maintain balance between service capability and management of security-related risks.
Education and Experience
  • Based in Shanghai or willingness to relocate to be present in our Shanghai Regional Office
  • Fluent in English and Mandarin Chinese and capable of reviewing technical documents in Mandarin Chinese
  • 5+ years information technology background
  • 3+ years recent management experience in a China information security and privacy leadership role in a mid to large company
  • Strong verbal and written communication skills with the ability to articulate complex technical ideas in easy to understand business terms
  • In depth current knowledge about the China Cyber Security laws and data protection
  • Exposure to business systems management
  • Expertise in specific security issues around web-presence, cloud platforms, risk and vulnerability management
  • Proven ability to effectively prioritize and execute tasks in a high-pressure environment
  • Strong negotiation, influencing, and problem resolution skills
  • Ability to assess customer/client needs, creatively approach solutions, decide and influence appropriate courses of action
  • Ability to accomplish results through others by establishing relationships and leading in a culturally diverse environment
  • University degree or equivalent experience / certifications, MBA
  • Knowledge of hospitality culture and iT’s role in enabling the business
  • Certified specialist in China Data Protection and Privacy (e.g. Cyber Security Law)
  • Experience in conducting data protection audits
  • Experience with managing cybersecurity response teams
  • Knowledge of Employee law related to Data Protection and Privacy
    CORE WORK ACTIVITIES                                                                                
  • Acts as Marriott’s Cybersecurity officer to the China Cyberspace Administration where appointed or nominated:
    • Complies and applies for required cybersecurity related licenses when required
    • Performs reviews and assessments on IT infrastructure to comply with China’s Cyber Security Law
    • Ensures compliance with local China policies on confidentiality, integrity and availability of associates’ and customers’ data
    • Rectifies internally facing systems in accordance to China regulatory requirements when required
    • Formalizes business continuity requirements for all business functions in China
    • Leads local IT Crisis management team and partners with government affairs, legal and BMSC business leaders
    • Keeps abreast of China’s law and regulatory requirements i.e. advertising, privacy, data retention, etc.
  • Maintains documentation for technology asset registers, data retention periods and data flows within and external to China
  • Works with Legal on application of new or renewal iT related license and permits from authorities
  • Internal advisor on China IT infrastructure planning
  • (Participating member of Crisis management team)/Leads IT rectification plans to meet China regulatory requirements and address significant breach incidences
  • Internal expert about the IT aspects of China Cybersecurity legislations; recommends short term and long term internal changes including business processes
  • Ensures ongoing IT education/rollout instructions for IT Operations and discipline partners
  • Proactively advises on new/modified systems to be operated in China
  • Proactively advises on new Hotel business partnerships to be operated in China e.g. mergers and acquisitions
  • Involvement in the selection and compliance of IT vendors and third-party data providers
  • Assists Continent teams in creating privacy and information security disclosure statements to customers and associates. 
  • Proactively advises on maintaining property audit documentation in partnership with IT Operations
  • Leads China piloting of new security and privacy-enhancing technologies
  • Conducts competitor studies and generates regular trend reports to keep abreast of development of the cyber-security industry
  • Communication - Conveys information and ideas to others in a convincing and engaging manner through a variety of methods.
  • Leading Through Vision and Values - Keeps the organization's vision and values at the forefront of employee decision making and action.
  • Managing Change - Initiates and/or manages the change process and energizes it on an ongoing basis, taking steps to remove barriers or accelerate its pace; serves as role model for how to handle change by maintaining composure and performance level under pressure or when experiencing challenges.
  • Problem Solving and Decision Making - Identifies and understands issues, problems, and opportunities; obtains and compares information from different sources to draw conclusions, develops and evaluates alternatives and solutions, solves problems, and chooses a course of action.
  • Professional Demeanor - Exhibits behavioral styles that convey confidence and command respect from others; makes a good first impression and represents the company in alignment with its values.
  • Strategy Development - Develops business plans by exploring and systematically evaluating opportunities with the greatest potential for producing positive results; ensures successful preparation and execution of business plans through effective planning, organizing, and on-going evaluation processes.
Managing Execution
  • Building a Successful Team - Uses an effective interpersonal style to build a cohesive team; inspires and sustains team cohesion and engagement by focusing the team on its mission and importance to the organization.
  • Strategy Execution – Ensures successful execution across of business plans designed to maximize customer satisfaction, profitability, and market share through effective planning, organizing, and on-going evaluation processes.
  • Driving for Results - Sets high standards of performance for self and/or others; assumes responsibility for work objectives; initiates, focuses, and monitors the efforts of self and/or others toward the accomplishment goals; proactively takes action and goes beyond what is required.
Building Relationships
  • Customer Relationships - Develops and sustains relationships based on an understanding of customer/stakeholder needs and actions consistent with the company’s service standards.
  • Global Mindset - Supports employees and business partners with diverse styles, abilities, motivations, and/or cultural perspectives; utilizes differences to drive innovation, engagement and enhance business results; and ensures employees are given the opportunity to contribute to their full potential.
  • Strategic Partnerships - Develops collaborative relationships with fellow employees and business partners by making them feel valued, appreciated, and included; explores partnership opportunities with other people in and outside the organization; influences and leverages corporate and continental shared services and/or discipline leaders (e.g., HR, Sales & Marketing, Finance, Revenue Management) to achieve objectives; maintains effective external relations with government, business and industry in respective countries; performs effectively as a liaison between locations, disciplines, and corporate to ensure needed resources are received and corporate strategies are understood and executed.
Generating Talent and Organizational Capability
  • Developing Others - Plans and supports the development of others’ skills and capabilities so that they can fulfill current or future job/role responsibilities more effectively; provides high visibility to individuals with potential; offers challenging assignments that build confidence and credibility and provides such individuals with a personal vision for their future.
  • Organizational Capability - Evaluates and adapts the structure of assignments and work processes to best fit the needs and/or support the goals of an organizational unit.
Learning and Applying Professional Expertise
  • Business Acumen - Understands and utilizes business information to manage everyday operations and generate innovative solutions to approach business and administrative challenges.
  • Technical Acumen - Understands and utilizes professional skills and knowledge in a specific functional area to conduct and manage everyday business operations and generate innovative solutions to approach function-specific work challenges.
    • Technical Intelligence: knowledge and ability to identify technological opportunities and threats that could affect the future growth and survival of the business.
    • Technology Life Cycle:  knowledge of the Life Cycle of technologies and how applications, infrastructure, and processes relate to these timelines.
    • IT Systems:  Knowledge of IT systems supporting the business including benefits, requirements, costs, justification, and operations. 
    • IT Resources:  The ability to secure and manage IT resources to achieve business objectives (e.g., contracts, vendor relationships, financial accountability, portfolio management, information and resource planning) and measure project impact.
  • Continuous Learning - Actively identifies new areas for learning; regularly creates and takes advantage of learning opportunities; uses newly gained knowledge and skill on the job and learns through their application.
  • Strategy Knowledge - Understanding and utilizing professional skills and knowledge in a specific functional area to conduct and manage business operations and generate innovative solutions to approach function-specific strategic work challenges.
  • Basic Competencies - Fundamental competencies required for accomplishing basic work activities.
    • Basic Computer Skills - Uses basic computer hardware and software (e.g., personal computers, word processing software, Internet browsers, etc.).
    • Mathematical Reasoning - Adds, subtracts, multiplies, or divides quickly, correctly, and in a way that allows one to solve work-related issues.
    • Oral Comprehension - Listens to and understands information and ideas presented through spoken words and sentences.
    • Reading Comprehension - Understands written sentences and paragraphs in work related documents.
    • Writing - Communicates effectively in writing as appropriate for the needs of the audience.  
Marriott International is an equal opportunity employer committed to hiring a diverse workforce and sustaining an inclusive culture. Marriott International does not discriminate on the basis of disability, veteran status or any other basis protected under federal, state or local laws.


See description

Job type
Shanghai, China
Starting in
As soon as possible

Other suggested jobs

{{:: 'IT Executive' | ellipsis : 40 : true }}

{{:: 'Ajman Saray, a Luxury Collection Resort' | ellipsis : 35 : true }}

{{:: 'IT Manager' | ellipsis : 40 : true }}

{{:: 'The St. Regis Doha' | ellipsis : 35 : true }}
Other jobs
Club Wing Supervisor
Tsim Sha Tsui, Hong Kong
Accounting Assistant
Tsim Sha Tsui, Hong Kong
View 15931 other offers