Sr Cybersecurity Engineer-Database

JOB DESCRIPTION

About the role:

The Sr Cybersecurity Engineer is responsible for developing, deploying, monitoring, tuning, evaluating, reporting and maintaining systems and procedures to identify and mitigate threats to the corporate network, corporate assets and corporate users. This team member will identify core requirements, design and implement security technologies, and work with stakeholders to perform ongoing tuning and alerting on those technologies. Said technologies may include, but are not limited to: Data Loss Prevention (DLP), Security Incident Event Management (SIEM), User Behavior Analytics, Host Intrusion Prevention (HIPS) and Web/Email Gateway. This team member will be responsible for both technical implementation of systems and communication of security requirements to management and security leadership.

RESPONSIBILITIES

• Job Duties:
• Engineer, design, install, and support security technologies such as Database Activity Monitoring (DAM), Data Loss Prevention (DLP), SIEM, Privileged Access Management (PAM), Data Encryption, Identity and Access Management (IAM), and vulnerability management for database platforms
• Serve as technical lead on projects within area of responsibility.
• Serve as a trusted partner to business, operations, risk and compliance teams providing database security subject matter expert guidance and analysis.
• Work with internal auditors to demonstrate and provide evidence of security controls are adherence to regulatory compliance.
• Provide technical guidance, knowledge transfer and skill sharing, and mentorship to junior Cybersecurity engineers.
• Proactively identify and implement technologies to secure enterprise data assets across structured and unstructured data environments
• Use threat intelligence, incident response data, and SIEM analysis to deploy custom rules and policies that protect sensitive data in databases
• Collaborate with cybersecurity leadership to develop and implement project plans that mature database security posture
• Participate in periodic risk assessments and emergency response activities related to data breaches or unauthorized access to databases
• Prepare and maintain documentation including procedures, standards, and technical requirements for database security
• Develop proposals and plans for new database security systems that enhance data protection and compliance
• Evaluate and recommend tools to improve efficiency and effectiveness of database security operations

• Advanced knowledge of database platforms such as Microsoft SQL Server, Oracle, PostgreSQL, MySQL, and cloud-native databases (e.g., Azure SQL, Amazon RDS, Google Cloud SQL)
• Strong expertise in database security architecture, including encryption, auditing, access control, and vulnerability management
• Experience implementing and tuning DAM tools (e.g., IBM Guardium, Imperva SecureSphere, Oracle Audit Vault)
• Familiarity with data classification, tokenization, and masking techniques for sensitive data
• Understanding of regulatory and compliance frameworks such as PCI-DSS, HIPAA, SOX, and GDPR as they relate to data security
• Experience integrating database security tools with SIEM platforms like Splunk for alerting and analytics
• Proficiency in scripting and automation (e.g., Python, PowerShell, SQL) for security monitoring and remediation
• Experience working with DevOps and data engineering teams to embed security into database development and deployment pipelines
• Knowledge of cloud service models (IaaS, PaaS, SaaS) and shared responsibility models as they pertain to data protection
• Demonstrated ability to analyze database logs and telemetry to detect anomalies and potential threats
• Strong communication skills and ability to influence across technical and business teams
• Experience managing database security projects and initiatives in enterprise environments

• 3-5 years of experience in data loss prevention, cybersecurity or network operations in an enterprise environment preferred
• Bachelor's Degree in related field or equivalent work experience strongly preferred

• One or more security related certifications, such as CISSP, CCNP-Security, GIAC, CEH, CPTS, is highly preferred