Database Security Manager

Robert Walters
400 - 550 per annum
11 Nov 2017
18 Nov 2017
Contract Type
Full Time
This global retail organisation are looking for a Database Security Administrator to support the growth of their organisation.As the Database Security Administrator you will assist with defining new security baseline across a number of key systems. The successful candidate will work with IT Security to define suitable controls and then work with system owners to implement those controls, tracking their delivery. * Define best practice security controls to apply to key databases delivered across multiple database technologies.* Working with System owners, review current security measures against required controls and produce a gap analysis. * Agree controls requirements and deliver these to system owners for implementation. * Review architectural and design documents (as it pertains to database security) including Solution Outline Documents, Detailed Designs, Network Diagrams, Data Flow Diagrams etc.* Responsible for tracking any database vulnerabilities that have been identified are processed in accordance with the latest Information Security Risk Management process including; risk analysis, identifying and applying appropriate controls, recording, reviewing and approval.* Articulate risk in technical and non-technical terminology so that it can be interpreted by IT and Business individuals alike.* Attend Programme/Project meetings and represent Information Security, giving advice as required.Escalate any issues to the Information Security Project Assurance Lead where appropriate. Skills * Experience using some/all of the following technologies - SAP, Oracle, SQL, Data Analytics.* Experience implementing security improvements to databases (improved access controls, encryption application etc.).* Risk management and risk remediation activities.* Experience of database Vulnerability Management and mitigating vulnerabilities.* In depth understanding of Security Compliance standards including ISO27001.* Understanding of Security Architecture and SDLC.* Experience working with 3rd party organisations.* Ability to deal with a broad range of stakeholders at all levels, both internal and external, in a confident and assured manner.* Knowledge of ISO 27000 series of standards, NIST Cybersecurity Framework, CIS Critical Security Controls.* Ability to work with a high degree of independence and exercise good judgement.* Excellent documentation skills (process, control, policy, and risk documentation).* Ability to learn quickly and apply risk/control considerations, mindful of business process impact. - provided by Dice DEGREE, GAP ANALYSIS, INFORMATION SECURITY, ISO27001, ORACLE, RISK ANALYSIS, RISK MANAGEMENT, SAP, SQL