Qualification & Experience

Mandatory

• Bachelor’s degree in Computer Science, Information Security, or a related field
  
• Certifications such as CISSP, CISM, CCSP, GIAC, or database-specific security certifications
  
• Experience with security tooling such as Imperva, or native cloud database security services
  
• Background in automation or scripting (e.g., Python, PowerShell, SQL)
  
• Experience supporting large-scale or highly regulated financial institution
  

Desirable

• Cloud security certifications (e.g., AWS Security Specialty, Azure Security Engineer)
  

• Implement, and maintain database security controls including authentication, authorization, encryption, auditing, and monitoring.
  
• Secure databases across on-premise and cloud platforms (e.g., Oracle, SQL Server, PostgreSQL, MySQL, MongoDB, AWS RDS/Aurora, Azure SQL).
  
• Configure policies and manage database activity monitoring (DAM) solutions.
  
• Conduct database vulnerability assessments, configuration reviews, and penetration testing support.
  
• Monitor database activity logs and alerts, escalating potential security issues as required
  
• Investigate and respond to database-related security incidents, performing root cause analysis and remediation.
  
• Support audits by providing evidence, risk assessments, and remediation plans.
  
• Identify and mitigate database-specific security risks and contribute to enterprise risk management activities.
  
• Advise on identity and access management (IAM) integration for databases.
  
• Evaluate new database technologies and security tools, making recommendations based on risk and business value.
  
• Work closely with database administrators, application teams, and security colleagues.
  
• Perform other responsibilities as assigned by the Head, Security Policy, Governance and Compliance