Senior Database Security Engineer

Job Purpose

To analyse information security related tasks within the ambit of existing information security policies, standards and processes, procedures and practices as well as business rules. Working independently to deliver on work tasks.  Mentor Administrators and Analyst I. Collaborate with other specialists to execute analysis work tasks, perform operational tasks, question, recommend and update improvements to the existing policies, process and procedures. To ensure stability and up-time for areas the incumbent takes responsibility for, which could require availability  on demand to perform job related duties outside of normal working hours.   

Job Responsibilities

Monitoring & Health Checks

Set up and conduct regular health checks on monitoring coverage using vulnerability scanner and Asset Discovery tools. Investigate and resolve any non-functional connections within Tenable IO.

Vulnerability Management

Investigate and remediate vulnerabilities detected on databases to resolution.                                                                                        

Database Activity Monitoring

Review and follow up on alerts generated by the database activity monitoring system.

Compliance

Monitor and resolve CIS benchmark compliance for databases to ensure adherence to security standards.

Auditing

Conduct and support database audits to ensure compliance with established security standards

Collaboration

Conduct monthly meetings with database and application support teams to monitor open issues and ensure timely resolution of outstanding non-compliant vulnerabilities and CIS benchmark deviations.

Documentation

Develop and maintain comprehensive technical documentation for monitoring processes and environment configurations, while establishing and updating security standards to ensure compliance and best practices.

Password & Access Management

Manage credentials using password management tools.

Administer privileged access through PAM tools.

Essential Qualifications - NQF Level

Preferred Qualification

A+, N + S+ or equivalent 

Preferred Certifications

Relevant Information Security Certification 

Minimum Experience Level

• Database Technologies: Proficient in SQL Server, Oracle, DB2 (UDB & Mainframe), PostgreSQL, and MongoDB.
• Cloud Platforms: Hands-on experience with AWS (Oracle & PostgreSQL) and Azure (SQL Managed Instances & PostgreSQL).
• Operating Systems: Knowledge of Windows, Linux, AIX, and Solaris environments.
• Virtualization: Knowledge in VMware and Nutanix Hypervisor.
• Security Expertise: In-depth understanding of database encryption, authentication, and access control mechanisms.
• Monitoring & Automation: Experience with database monitoring tools and implementing security automation solutions.
• Industry Experience: Background in the financial sector, particularly banking, is highly desirable.
• General: Experience with Enterprise PAM and Vulnerability Scanning tools an advantage.
• Experience in financial services, especially banking environments.
• Proven experience in database administration, security, and compliance monitoring

Technical / Professional Knowledge

Behavioural Competencies