Principal Information Security Consultant at Westpac focusing on security protocols and employee benefits for staff. Hybrid role centrally located with opportunities for professional development and employee perks.
About the role
- Database Security Engineer Lead safeguarding the bank’s information assets and providing database security guidance. Collaborating with teams to implement and maintain security solutions mainly within financial systems at MUFG.
Responsibilities
- Designing, developing, testing, documenting, monitoring, and implementing information and database security solutions
- Serve as a trusted partner to business, operations, development, risk and compliance teams providing database security subject matter expert (SME) guidance and analysis
- Managing a database activity monitoring (DAM) platform for security and audit compliance
- Developing and maintaining database security standards, guidelines and procedures for hardening database configurations, users and roles
- Refining and enhancing existing controls, policies, standards, procedures, and guidelines
- Evaluating updates to new/existing database security controls
- Identifying weak links in information security products
- Enhancing preventive systems used to stop and/or deter security breaches
- Evaluating database security patches from vendors and assesses potential risk
- Respond to security Incidents and assist with Tier-1 and Tier-2 incident investigations
- Performing root cause analysis of security violations
- Serve as technical lead on projects within area of responsibility
- Working with database custodians at different levels of the organization to understand their respective security needs
- Working with internal and external auditors to demonstrate and provide evidence of security controls
Requirements
- Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or Related Fields or relevant industry certifications and comparable experience
- 5-7+ years of technical experience in cybersecurity, insider threat, incident response, security operations, or related information security field
- Experience in the banking or finance industries preferred
- Database security, monitoring and protection
- Database activity monitoring platforms such as Imperva Data Security and Data Risk Analytics (DRA) and Imperva Data Security Fabric (DSF / Sonar)
- Imperva Data Security Specialist (IDSS) certification strongly preferred
- In-depth working knowledge of databases and database technologies
- Familiarity with AWS technologies and methods including RDS (Relational Database Service)
- Data protection especially with regard to cybersecurity tools and methods
- Database Firewall, Data Classification
- Vulnerability detection and mitigation
- Cybersecurity experience in regulated banking or financial environment
- Penetration testing and attack forensics
- IS audit
- GRC Tools & Processes
- Ability to understand security risks and controls
- Advanced experience with DAM, SIEM, UEBA and related tools.
- Detailed knowledge of major database platforms such as Oracle, SQLSERVER, MySQL, etc.
- Working knowledge of at least two or more operating systems and corresponding security systems (Linux, Unix, Windows, etc.)
- Proficient with development of documentation, presentations and architecture diagrams.
- Working knowledge of regulatory requirements affecting data integrity, protection and monitoring, such as GLBA, SOX, PCI, etc.
- Certifications such as Imperva Database Security Specialist (IDSS), Certified Information Systems Auditor (CISA), Certified Ethical Hacker (CEH), Certified in Governance, Risk and Compliance (CGRC), Certified Authorization Professional [CAP], Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM) are a plus
Benefits
- comprehensive health and wellness benefits
- retirement plans
- educational assistance and training programs
- income replacement for qualified employees with disabilities
- paid maternity and parental bonding leave
- paid vacation
- sick days
- holidays
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Engineer supporting secure development lifecycle processes for product lines in the energy sector. Collaborating with R&D on security requirements and compliance audits.
Automation Oversight Engineer providing oversight of compliance in automated device configurations for Comcast Business. Managing configuration checks and reporting, ensuring reliable oversight and improvement strategies.
Principal Systems Engineer - Cybersecurity role in protecting our nation's products as part of Integrated Platform Solutions team. Develop solutions utilizing RMF, Anti - Tamper, Software Assurance, and more.
Agent de Sécurité assurant la sécurité des usagers du réseau de transport TBM. Rattaché au Manager de Proximité Sûreté, garantissant la qualité de service public de transport en commun.
Web and Remote Access Security Engineer managing secure remote connectivity solutions. Collaborating across security and networking domains to enable reliable access for global workforce.
Security Officer protecting patients, visitors, and staff at Shriners Hospital for Children in Sacramento. Engaging in various responsibilities related to safety and security on hospital property.
Senior IT Security Administrator supporting IT security operations at Uline. Collaborating with teams to develop security procedures and manage risks effectively.
Security Technician at Presbyterian Healthcare Services ensuring safety through patrols, incident response, and emergency preparedness. Responsibilities include monitoring risks and documenting activities efficiently.
Product Security Engineer at Junglee Games ensuring security is integrated into each stage of the software development lifecycle. Collaborate across teams and harden the security of products and platforms.