Senior Database Security Engineer
Hyderabad, India
Applications have closed
Experian
Experian is committed to helping you protect, understand, and improve your credit. Start with your free Experian credit report and FICO® score.Company Description
Experian is the world’s leading global information services company. During life’s big moments — from buying a home or a car to sending a child to college to growing a business by connecting with new customers — we empower consumers and our clients to manage their data with confidence. We help individuals to take financial control and access financial services, businesses to make smarter decisions and thrive, lenders to lend more responsibly, and organizations to prevent identity fraud and crime.
We have 17,800 people operating across 44 countries, and every day we’re investing in new technologies, talented people and innovation to help all our clients maximize every opportunity. We are listed on the London Stock Exchange (EXPN) and are a constituent of the FTSE 100 Index.
Learn more at www.experianplc.com or visit our global content hub at our global news blog for the latest news and insights from the Group
Experian is the world’s leading global information services company. During life’s big moments — from buying a home or a car to sending a child to college to growing a business by connecting with new customers — we empower consumers and our clients to manage their data with confidence. We help individuals to take financial control and access financial services, businesses to make smarter decisions and thrive, lenders to lend more responsibly, and organizations to prevent identity fraud and crime.
We have 17,800 people operating across 44 countries, and every day we’re investing in new technologies, talented people and innovation to help all our clients maximize every opportunity. We are listed on the London Stock Exchange (EXPN) and are a constituent of the FTSE 100 Index.
Learn more at www.experianplc.com or visit our global content hub at our global news blog for the latest news and insights from the Group
Job Description
Data Protection Engineer
Engineering– Data Protection
The mission of the EGSO Data identification and loss prevention team is to identify and monitor Experian data, safeguarding against negative impacting cyber events that compromise the Confidentiality, Integrity and Availability of that data.
The Security Data identification and loss prevention Team performs the following key functions:
Sensitive Data Discovery and Protection of that sensitive data through suitable logging and monitoring methods.
Perform Control Engineering of security tools to detect, monitor and protect sensitive data against potential malicious activity. Currently focused on logging and monitoring Database activity using tools such as IBM Guardium.
Ensuring Security Compliance against regulations enforced by respective governments.
Identify restricted data (PII,PCI and PHI) in structured and unstructured data both on Prem and cloud platforms
The focus for the role will be on Data identification and Monitoring.
Data Security Engineer
The Data Security Engineer develops roadmaps and sets the technical direction for data protection service areas such as database activity monitoring on Prem and in Cloud (AWS, AZURE ,GCP and OCI). They establish the tactical roadmap (aligned to the tower strategy) that is focused on the implementation of future state security controls where capabilities will be :Agile, Available, Simple to implement, and Automated.
The Data Security Engineer is responsible for the build-out of the data security controls and for uplifts and planning forward to ensure health and data protection is maintained at the highest levels. They are the escalation point for Data Protection technical gaps and provide change governance.
Data Security Engineer Functions
Provide SME expertise on security tool capabilities and configuration adjustments when needed to contain implement controls such as database monitoring and encryption as well as during security incidents or block future security attacks
Collaborate with the Manager to Identify capability gaps and operational inconsistencies within the Data Protection controls environment and develop a plan to address through product enhancement, reconfiguration, upgrades and/or automation of processes
Ensure build documentation for all security controls is available on the EGSO WiKi including configuration standards and repeatable processes to support the tools.
Build, manage, and maintain the automated reporting dashboards system
Provide oncall support
Collaborate with Customers and other EITS teams to ensure operational requests and incidents are resolved within defined SLOs
Leverage tooling to monitor and optimize the performance of the wider data protection operations team
Analyze, troubleshoot, and resolve complex technical Data Protection control issues
Build, manage, and maintain the intake process for requests on service now or a suitable tool.
Examine concepts, work on Proof of Concepts, develop Minimum Viable Product and scale and operationalize the product including documentation and process development,
Data Security Engineer Responsibilities
TIMELY COMPLETION OF WORK:
o Establish a baseline plan and corresponding execution roadmaps.
o Refresh and re-publish tactical Plan for advanced data protection controls in June of every year
o Report progress against roadmap every month
o Refresh Data Protection roadmap/s quarterly
o Define plan and roadmap for dashboard automation and service now intake process and report weekly progress against plan.
QUALITY OF WORK:
o Ensure Technical and Process documentation is 100% current all the time (all changes thoroughly documented)
o Ensure new builds/integrations/agent implementation follow operational readiness processes, are fully documented, health/performance kpi's are defined and in place, and monitoring and alerting is in place before promoting to production
o Provide change governance
EDUCATE SELF AND PEERS:
o Demonstrate continual progress toward obtaining a security-specific (or specific security product certification)- or maintain a current certification
o Complete two career-related training courses per year
o Perform monthly training sessions for business teams
o Attend lunch and learn sessions to share knowledge with Engineering group
o Mentors team members to promote continual growth
o Independently/informally leading teams on projects through completion.
FOLLOW PROCESS:
o Publish build documentation for the Relevant Data Protection controls on the EGSO WiKi -
EFFECTIVE COMMUNICATION:
o Advocate Data Protection Controls across Experian
o Maintain objective progress documentation
o Documentation – documentation of business cases, POCs, Procedures, results of POCs, Test cases, integration guides and relevant runbooks to operationalize database activity monitoring and data discovery for Experian.,
Qualifications
Skill Requirements
Must have:
BS in Science and technology or Engineering or Equivalent 8+ years of job experience
in IT and at least 5+ years in security
Database administration skill of 2+ years
Strong leadership skills
In-depth knowledge of various operation systems Windows, Linux/Unix and shell scripts
Experience working with cloud platforms like AWS, Oracle, Azure , Google
Experience with Data activity monitoring tools like IBM Guardium, Imperva
Knowledge of Network technologies
Knowledge of SIEM tools
Preferable:
Certified in DAM tools
Experience with Splunk and Exabeam tools
Knowlede and Experience with Data Governance tools like IBM Watson Knowledge catalog, Data360 ,ASG
Additional Information
Experian Careers - Creating a better tomorrow together
Find out what its like to work for Experian by clicking here
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile Automation AWS Azure Cloud Compliance Encryption Exabeam GCP Governance Linux Monitoring Oracle POCs SIEM SLOs Splunk Strategy UNIX Windows
Perks/benefits: Career development Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Security Operations Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Application security-related jobs
- Open Network security-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs
- Open CEH-related jobs
- Open IPS-related jobs