Database Information Security Engineer, Senior

Key Role:

Develop and implement security solutions in alignment with security strategy. Maintain an awareness of market and technology trends to bring best of breed solutions to the client. Apply leading-edge principles, theories, and concept and contribute to the development of new principles and concepts. Work on unusually complex problems and provide highly innovative solutions. Operate with substantial latitude for unreviewed action or decision and mentor or supervise employees in both firm and technical competencies. Lead the design, engineering, integration, implementation, testing, deployment, maintenance, review, and administration of the infrastructure, hardware, and software that are required to effectively manage the security and risk posture of the network and resources. Assist with developing system concepts and apply the systems engineering life cycle to translate Cyber strategic objectives, technology, and environmental conditions into engineering outcomes and solutions.

Basic Qualifications:

  • 8+ years of experience in database security, including secure database configuration, database monitoring, and database vulnerability assessments with a focus on Imperva SecureSphere
  • 5+ years of experience with information security and Cybersecurity engineering or security operations
  • 5+ years of experience with the design and implementation of enterprise-wide security controls to secure systems, applications, networks, or infrastructure services
  • Experience with security tools and devices, including network firewalls, Weby proxy, intrusion prevention systems, vulnerability scanners, or penetration tools
  • Knowledge of federal compliance standards, including NIST 800-53, FIPS, or FedRAMP
  • Knowledge of TCP/IP networking concepts and DNS, including using packet analysis tools, such as Wireshark or tcpdump
  • Ability to obtain a security clearance
  • BA or BS degree in Science, Technology, Engineering, or Mathematics

Additional Qualifications:

  • 2+ years of experience in one of the following areas: building and administering security devices, including network firewall, Web proxy, data loss prevention systems, and intrusion prevention systems, building and administering Windows Server and Active Directory, building and administering Linux- and UNIX-based systems, building and administering Network devices, including Cisco or Juniper, conducting dynamic Web application security testing, including manual testing and using application security tools to discover exploitable vulnerabilities, conducting database security assessment and monitoring, managing Cloud security operations, including identity and access control, secure configuration management, network security, enforcement policy scripting, workload security, or data security, and logging and Public Key Infrastructure (PKI) management and data encryption for data-at-rest and data-in-transit
  • Experience with securing enterprise Web applications and OWASP Top 10
  • Experience with public Cloud services providers, including Amazon AWS or Microsoft Azure
  • BA or BS degree in Information Security, Computer Engineering, Information Systems, Telecommunications, or Technology
  • SANS GIAC Security Certification

Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristic—to fearlessly drive change.

#LI-AH1

Not ready to apply? Join our talent community and sign up for job alerts.