Senior Database Security Engineer
Job Description
Job title: Senior Database Security Engineer
Company: Experian
Job description: Company Description
Discover the Unexpected
Experian is the world’s leading global information services company. We’re passionate about unlocking the power of data in order to transform lives and create opportunities for consumers, businesses and society. For more than 125 years, we’ve helped economies and communities flourish – and we’re not done.
Our 21k amazing employees in 40+ countries believe the possibilities for you, and the world, are growing. We’re investing in the future, through new technologies, talented people and innovation so we can help create a better tomorrow. To do this we employ the brightest minds that share our purpose and want to make a difference.
Job Description
This position sits within Experian Global Security Office (ESGO)
The mission of the EGSO Engineering and Innovation Database Activity Monitoring (DAM) team is to monitor Experian sensitive data, safeguarding against negative impacting cyber events that compromise the Confidentiality, Integrity, and Availability of that data.
The EGSO Engineering and Innovation DAM Team performs the following key functions:
- Identify Sensitive Data and Protection of that sensitive data through suitable logging and monitoring methods.
- Perform Control Engineering of security tools to detect, monitor and protect sensitive data against potential malicious activity. Currently focused on logging and monitoring Database activity using tools such as IBM Guardium.
- Ensuring Security Compliance against regulations enforced by respective governments.
- Identify restricted data (PII, PCI and PHI) in structured and unstructured data both On-Prem and cloud platforms.
- The focus for the role will be on Data identification and Monitoring both in cloud and on-premises data repositories.
Senior Database Security Engineer
As a Database Security Engineer, you will be responsible for developing roadmaps and setting the technical direction for data protection service areas such as database activity monitoring On-Prem and in Cloud (AWS, AZURE ,GCP and OCI). This engineer will establish the tactical roadmap (aligned to the tower strategy) that is focused on the implementation of future state security controls following these guiding principles: Agile, Available, Simple to implement, and Automated.
The Data Security Engineer is responsible for the build-out of the data security controls and for planning to ensure health and data protection is maintained at the highest levels. This role is the escalation point for Data Protection technical gaps and provides change governance.
Role Functions
- Provide SME expertise on security tool capabilities and configuration adjustments, when needed, to implement controls such as: Identify restricted Data, Implement database monitoring, Perform Active Threat Analytics, Database misconfiguration and Database Entitlement reporting as well as during security incidents or block future security attacks
- Collaborate with the Manager to identify capability gaps and operational inconsistencies within the Data Protection controls environment and develop a plan to address through product enhancement, reconfiguration, upgrades and/or automation of processes
- Build, manage, and maintain the automated reporting dashboards system
- Provide on-call support
- Collaborate with Customers and other technology teams to ensure operational requests and incidents are resolved within defined SLAs
- Leverage tooling to monitor and optimize the performance of the wider data protection operations team
- Analyze, troubleshoot, and resolve complex technical Data Protection control issues
- Build, manage, and maintain the intake process for requests on service now or a suitable tool.
- Examine concepts, work on Proof of Concepts, develop Minimum Viable Product and scale and operationalize the product including documentation and process development
Key Responsibilities:-
- Establish a baseline plan and corresponding execution roadmaps.
- Refresh and re-publish tactical Plan for advanced data protection controls in June of every year
- Report progress against roadmap every month
- Refresh Data Protection roadmap/s quarterly
- Define plan and roadmap for dashboard automation and service now intake process and report weekly progress against plan
- Ensure Technical and Process documentation is 100% current all the time (all changes thoroughly documented)
- Ensure new builds/integrations/agent implementation follow operational readiness processes, are fully documented, health/performance KPIs are defined and in place, and monitoring and alerting is in place before promoting to production
- Provide change governance
- Demonstrate continual progress toward obtaining a security-specific (or specific security product certification)- or maintain a current certification
- Complete two career-related training courses per year
- Perform monthly training sessions for business teams
- Attend lunch and learn sessions to share knowledge with Engineering group
- Mentors team members to promote continual growth
- Independently/informally leading teams on projects through completion
- Publish build documentation for the Relevant Data Protection controls on the EGSO WiKi
- Advocate Data Protection Controls across Experian
- Maintain objective progress documentation.
- Documentation – documentation of business cases, POCs, Procedures, results of POCs, Test cases, integration guides and relevant runbooks to operationalize database activity monitoring and data discovery for Experian.
Qualifications
- Demonstrable experience in a similar position.
- Strong Database Administration skills.
- Strong leadership skills
- In-depth knowledge of various operation systems On-Premise: Windows, Linux/Unix , Mainframe and shell scripts Cloud:AWS, Azure, OCI, Google
- Experience working with cloud platforms like AWS, Oracle, Azure , Google
- Experience with Data activity monitoring tools like IBM Guardium, Imperva
- Knowledge of Network technologies
- Knowledge of SIEM tools
Preferable:
- Certified in DAM tools
- Experience with Splunk and Exabeam tools
- Knowledge and Experience with Data Governance tools like IBM Watson Knowledge catalog, Data360, ASG
Additional Information
Our uniqueness is that we truly celebrate yours.
Experian’s culture and people are key differentiators. We take our people agenda very seriously. We focus on what truly matters; DEI, work/life balance, development, authenticity, engagement, collaboration, wellness, reward & recognition, volunteering… the list goes on. We’re an award winning organisation due to our strong people first approach.
Innovation is a critical part of Experian’s DNA and practices, and our diverse workforce drives our success. Everyone can succeed at Experian and bring their whole self to work, irrespective of their gender, ethnicity, colour, sexuality, physical ability or age. If you have a disability or special need that requires accommodation, please let us know at the earliest opportunity.
#LI-CC1
Experian Careers – Creating a better tomorrow together
Expected salary:
Location: Ruddington, Nottinghamshire