Profiles search

Hiranya M.

Senior Director of Information Security at Marriott International
Ft. Washington, MD, United States

Details

Education: Chief Information Security Officer (CISO) Executive Education Program

Computer and Information Systems Security/Information Assurance

Carnegie Mellon University

2019 : 2019

Master's degree

Management Information Systems

Carnegie Mellon University

1999 : 2003

Bachelor of Science (BS)

Information Systems

Carnegie Mellon University

1999 : 2003

Additional Degree in

Business Administration

Carnegie Mellon University

1999 : 2003
Experience: Leading PCI Compliance, Assurance, and Endpoint Compliance Teams.

2022 : Present

Marriott International

Senior Director Information Security

2021 :

Tuckahoe Recreation Club Inc

Board Member

19+ years of experience helping design and implement IT Security Technologies for enterprises.

Current focus revolves around leading a team of 9 Associates centered on IT Security Compliance and Assurance.

IT Security Compliance :

Partner Assurance Program (aka. Third Party Risk Management) for Marriott International. Reviewing third party vendors to ensure they meet Marriott IT Security Standard. Team currently processes over 200 vendors/year.

Endpoint Compliance : Responsible for IT Security Compliance of all 300k+ endpoint devices in 7000 locations in 125+ countries.

Other responsibilities at Marriott :

IT Vulnerability Management : Temporarily supported the Marriott Vulnerability Management team, due to changes in the organization. Responsible for the strategic vision of the VM program and tracking current vulnerabilities to remediation.

Bug Bounty Program : Temporarily supported the rollout of the Marriott Bug Bounty Program.

2016 : 2022

Marriott International

Director of Information Security

2011 : 2016

Booz Allen Hamilton

Lead Associate

2007 : 2011

Oneiric Technology

Director
Company: Marriott International
Years of Experience: 21

Skills

Amazon Web Services (AWS), Application Security, Business Analysis, Business Intelligence, Business Process Improvement, Business Transformation, C&A, CISSP, Computer Security, Consulting, Enterprise Architecture, Enterprise Software, Information Assurance, Information Security, Infrastructure, Integration, IT Strategy, Leadership, Management, Management Consulting, Penetration Testing, PMP, Process Improvement, Program Management, Project Management, Requirements Analysis, SDLC, Security, SOA, Software Development, Business Process

About

19+ years of experience helping design and implement IT Security Technologies for enterprises.



Current focus revolves around leading a team of 9 Associates centered on IT Security Compliance.

IT Security Compliance:

Partner Assurance Program (aka. Third Party Risk Management) for Marriott International. Reviewing third party vendors to ensure they meet Marriott IT Security Standard. Team currently processes over 200 vendors/year.

Endpoint Compliance: Responsible for IT Security Compliance of all 300k+ endpoint devices in 7200 locations in 133+ countries.



Other responsibilities at Marriott:

IT Vulnerability Management: Temporarily supported the Marriott Vulnerability Management team, due to changes in the organization. Responsible for the strategic vision of the VM program and tracking current vulnerabilities to remediation.

Bug Bounty Program: Temporarily supported the rollout of the Marriott Bug Bounty Program.



Experienced in helping clients move systems securely to Cloud Platforms, including extending their data center into the cloud. Experience in Web Application Penetration testing and mobile application testing. Vendor and Third Party Assessment and management.



Certified Information System Security Professional (CISSP) March 2006

Security+ December 2007

Certified Secure Software Lifecycle Professional (CSSLP) April 2009

Certified Information Security Manager (CISM) June 2011

GIAC Web Penetration Testing (GWAPT) May 2012

Project Management Professional (PMP) January 2013

CCSK