Senior Database Security Engineer

Company Description

Experian is the world’s leading global information services company. During life’s big moments — from buying a home or a car to sending a child to college to growing a business by connecting with new customers — we empower consumers and our clients to manage their data with confidence. We help individuals to take financial control and access financial services, businesses to make smarter decisions and thrive, lenders to lend more responsibly, and organizations to prevent identity fraud and crime.

We have 17,800 people operating across 44 countries, and every day we’re investing in new technologies, talented people and innovation to help all our clients maximize every opportunity. We are listed on the London Stock Exchange (EXPN) and are a constituent of the FTSE 100 Index.

Learn more at www.experianplc.com or visit our global content hub at our global news blog for the latest news and insights from the Group

Experian is the world’s leading global information services company. During life’s big moments — from buying a home or a car to sending a child to college to growing a business by connecting with new customers — we empower consumers and our clients to manage their data with confidence. We help individuals to take financial control and access financial services, businesses to make smarter decisions and thrive, lenders to lend more responsibly, and organizations to prevent identity fraud and crime.

We have 17,800 people operating across 44 countries, and every day we’re investing in new technologies, talented people and innovation to help all our clients maximize every opportunity. We are listed on the London Stock Exchange (EXPN) and are a constituent of the FTSE 100 Index.

Learn more at www.experianplc.com or visit our global content hub at our global news blog for the latest news and insights from the Group

Job Description

Data Protection Engineer

Engineering– Data Protection

The mission of the EGSO Data identification and loss prevention team is to identify and monitor Experian data, safeguarding against negative impacting cyber events that compromise the Confidentiality, Integrity and Availability of that data.

The Security Data identification and loss prevention Team performs the following key functions:

Sensitive Data Discovery and Protection of that sensitive data through suitable logging and monitoring methods.

Perform Control Engineering of security tools to detect, monitor and protect sensitive data against potential malicious activity. Currently focused on logging and monitoring Database activity using tools such as IBM Guardium.

Ensuring Security Compliance against regulations enforced by respective governments.

Identify restricted data (PII,PCI and PHI) in structured and unstructured data both on Prem and cloud platforms

The focus for the role will be on Data identification and Monitoring.

Data Security Engineer

The Data Security Engineer develops roadmaps and sets the technical direction for data protection service areas such as database activity monitoring on Prem and in Cloud (AWS, AZURE ,GCP and OCI).  They establish the tactical roadmap (aligned to the tower strategy) that is focused on the implementation of future state security controls where capabilities will be :Agile, Available, Simple to implement, and Automated.

The Data Security Engineer is responsible for the build-out of the data security controls and for uplifts and planning forward to ensure health and data protection is maintained at the highest levels.   They are the escalation point for Data Protection technical gaps and provide change governance.

Data Security Engineer Functions

Provide SME expertise on security tool capabilities and configuration adjustments when needed to contain implement controls such as database monitoring and encryption  as well as during security incidents or block future security attacks

Collaborate with the Manager to Identify capability gaps and operational inconsistencies within the Data Protection controls environment and develop a plan to address through product enhancement, reconfiguration, upgrades and/or automation of processes

Ensure build documentation for all security controls is available on the EGSO WiKi including configuration standards and repeatable processes to support the tools.

Build, manage, and maintain the automated reporting dashboards system

Provide oncall support

Collaborate with Customers and other EITS teams to ensure operational requests and incidents are resolved within defined SLOs

Leverage tooling to monitor and optimize the performance of the wider data protection operations team

Analyze, troubleshoot, and resolve complex technical Data Protection control issues

Build, manage, and maintain the intake process for requests on service now or a suitable tool.

Examine concepts, work on Proof of Concepts, develop Minimum Viable Product and scale and operationalize the product including documentation and process development,

Data Security Engineer Responsibilities

TIMELY COMPLETION OF WORK:

o   Establish a baseline plan and corresponding execution roadmaps.

o   Refresh and re-publish tactical Plan for advanced data protection controls in June of every year

o   Report progress against roadmap every month

o   Refresh Data Protection roadmap/s quarterly

o   Define plan and roadmap for dashboard automation and service now intake process and report weekly progress against plan.

QUALITY OF WORK:

o   Ensure Technical and Process documentation is 100% current all the time (all changes thoroughly documented)

o   Ensure new builds/integrations/agent implementation follow operational readiness processes, are fully documented, health/performance kpi's are defined and in place, and monitoring and alerting is in place before promoting to production

o   Provide change governance

EDUCATE SELF AND PEERS:

o   Demonstrate continual progress toward obtaining a security-specific (or specific security product certification)- or maintain a current certification

o   Complete two career-related training courses per year

o   Perform monthly training sessions for business teams

o   Attend lunch and learn sessions to share knowledge with Engineering group

o   Mentors team members to promote continual growth 

o   Independently/informally leading teams on projects through completion.

FOLLOW PROCESS:

o   Publish build documentation for the Relevant Data Protection controls on the EGSO WiKi -

EFFECTIVE COMMUNICATION:

o   Advocate Data Protection Controls across Experian

o   Maintain objective progress documentation

o   Documentation – documentation of business cases, POCs, Procedures, results of POCs, Test cases, integration guides and relevant runbooks to operationalize database activity monitoring and data discovery for Experian.,

Qualifications

Skill Requirements

Must have:

BS in Science and technology or Engineering or Equivalent 8+ years of job experience

in IT and at least 5+ years in security

Database administration skill of 2+ years

Strong leadership skills

In-depth knowledge of various operation systems Windows, Linux/Unix and shell scripts

Experience working with cloud platforms like AWS, Oracle, Azure , Google

Experience with Data activity monitoring tools like IBM Guardium, Imperva

Knowledge of Network technologies

Knowledge of SIEM tools

Preferable:

Certified in DAM tools

Experience with Splunk and Exabeam tools

Knowlede and Experience with Data Governance tools like IBM Watson Knowledge catalog, Data360 ,ASG

Additional Information

Experian Careers - Creating a better tomorrow together

Find out what its like to work for Experian by clicking here