Principal Application Security Architect
Strada
AWSAzureCyber Security
Database Security Specialist Lead – Vice President
MUFG
full-time
Posted on:
Location Type: Hybrid
Location: Tempe • Arizona, Florida • 🇺🇸 United States
Visit company websiteSalary
💰 $137,000 - $176,000 per year
Job Level
Senior
Tech Stack
AWSCyber SecurityLinuxMySQLOracleUnix
About the role
- Designing, developing, testing, documenting, monitoring, and implementing information and database security solutions
- Serve as a trusted partner to business, operations, development, risk and compliance teams providing database security subject matter expert (SME) guidance and analysis
- Managing a database activity monitoring (DAM) platform for security and audit compliance
- Developing and maintaining database security standards, guidelines and procedures for hardening database configurations, users and roles
- Refining and enhancing existing controls, policies, standards, procedures, and guidelines
- Evaluating updates to new/existing database security controls
- Identifying weak links in information security products
- Enhancing preventive systems used to stop and/or deter security breaches
- Evaluating database security patches from vendors and assesses potential risk
- Respond to security Incidents and assist with Tier-1 and Tier-2 incident investigations
- Performing root cause analysis of security violations
- Serve as technical lead on projects within area of responsibility
- Working with database custodians at different levels of the organization to understand their respective security needs
- Working with internal and external auditors to demonstrate and provide evidence of security controls
Requirements
- Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or Related Fields or relevant industry certifications and comparable experience
- 5-7+ years of technical experience in cybersecurity, insider threat, incident response, security operations, or related information security field
- Experience in the banking or finance industries preferred
- Database security, monitoring and protection
- Database activity monitoring platforms such as Imperva Data Security and Data Risk Analytics (DRA) and Imperva Data Security Fabric (DSF / Sonar)
- Imperva Data Security Specialist (IDSS) certification strongly preferred
- In-depth working knowledge of databases and database technologies
- Familiarity with AWS technologies and methods including RDS (Relational Database Service)
- Data protection especially with regard to cybersecurity tools and methods
- Database Firewall, Data Classification
- Vulnerability detection and mitigation
- Cybersecurity experience in regulated banking or financial environment
- Penetration testing and attack forensics
- IS audit
- GRC Tools & Processes
- Ability to understand security risks and controls
- Advanced experience with DAM, SIEM, UEBA and related tools.
- Detailed knowledge of major database platforms such as Oracle, SQLSERVER, MySQL, etc.
- Working knowledge of at least two or more operating systems and corresponding security systems (Linux, Unix, Windows, etc.)
- Proficient with development of documentation, presentations and architecture diagrams.
- Working knowledge of regulatory requirements affecting data integrity, protection and monitoring, such as GLBA, SOX, PCI, etc.
- Certifications such as Imperva Database Security Specialist (IDSS), Certified Information Systems Auditor (CISA), Certified Ethical Hacker (CEH), Certified in Governance, Risk and Compliance (CGRC), Certified Authorization Professional [CAP], Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM) are a plus
Benefits
- comprehensive health and wellness benefits
- retirement plans
- educational assistance and training programs
- income replacement for qualified employees with disabilities
- paid maternity and parental bonding leave
- paid vacation
- sick days
- holidays
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
database securitydatabase activity monitoringvulnerability detectionpenetration testingincident responsedata protectionroot cause analysissecurity operationsdatabase hardeningcybersecurity
Soft skills
communicationcollaborationanalytical thinkingproblem-solvingleadership
Certifications
Imperva Data Security Specialist (IDSS)Certified Information Systems Auditor (CISA)Certified Ethical Hacker (CEH)Certified in Governance, Risk and Compliance (CGRC)Certified Authorization Professional (CAP)Certified Information Systems Security Professional (CISSP)Certified Information Security Manager (CISM)
