IND Senior Engineer, Infrastructure

IND Senior Engineer, Infrastructure - GCC034We’re determined to make a difference and are proud to be an insurance company that goes well beyond coverages and policies. Working here means having every opportunity to achieve your goals – and to help others accomplish theirs, too. Join our team as we help shape the future.

Enterprise Database Management is seeking a results-oriented and self-motivated individual to join our team as a Data Security Specialist. This role will include daily operational activity and application support of Data Security tools, automation implementation, and risk mitigation and governance, with a focus on process evaluation and improvement. The ideal candidate will display both database and security knowledge, a strategic mindset, and the ability to analyze and prioritize efforts to identify and remediate risk effectively.

Responsibilities

• Develop strategy to extend Infrastructure as Code and general Automation capabilities
• Partner closely with platform owners and application teams to build and roll out new automation capabilities/features and evaluate risk profile and remediation plans
• Maintain documentation of systems and standard operating policies and procedures
• Maintain documentation of all security practices in EDM as they relate to industry benchmarks, THIP controls, and other tools used to evaluate risk
• Closely collaborate with teammates to deliver quality data and solutions
• Support internal and external audit requests, delivering concise and timely responses
• Evaluate output from database vulnerability scanning, identifying trends, root cause, and opportunities for remediation
• Evaluate reporting requirements and capabilities to ensure risk is accurately conveyed
• Collaborate with internal and external teams to provide risk assessments, requirements, and documentation
• Manage all work using Agile methodology with Rally work management tool
• Investigate database activity for potential outlier behavior.
• Respond to SOC1 and SOC2 audit inquiries, providing evidence for logging and monitoring activities.
• Keep informed of company security policy changes and how they impact database activity monitoring.
• Implement custom vulnerability scan policies in Imperva. Review vulnerability assessments to confirm adherence to company security policies.
• Create real-time activity alerts and develop policies to handle the review of these alerts.
• Recommend and implement security best practices for various database technologies.
• Analyze database traffic to fine turn monitoring policies for increased efficiency.
• Create reports for database activity incidents and compliance with company policy.
• Perform self-audits to ensure our process confirms to all SOX and company policies, making recommendations to close gaps.

Qualifications

• 6-9 years of database, data, and/or security experience.
• Experience working within Scaled Agile Framework
• Strong written communication skills, including experience in leadership communications
• Excellent verbal communication and meeting facilitation skills
• Ability to assess, manage, and execute on multiple priorities
• Proficiency with MS tool suite, including Word, Excel, and PowerBI; Imperva, jSonar, AWS experience preferred
• Ability to self manage and work independently across geographic regions.
• Demonstrate problem-solving skill, innovative thinking, and have a strong attention to detail