SECURITY ANALYST III - DATABASE
Tesco
SECURITY ANALYST III - DATABASE
Job Description
Supports the strengthening of Oracle and SQL DBs security posture, focusing on one or more of the following: risk management; regulatory compliance, threat security policy development and enforcement.
Risk Management:
Brings advanced level skills to assess the information security risk associated with existing and proposed business operational programs, systems, applications, practices and procedures in very complex, business-critical environments.
May conduct and document very complex information security risk assessments.
May assist in the creation and implementation of security solutions and programs.
Regulatory Compliance:
Brings advanced level skills to manage programs to establish, document and track compliance to industry and government standards and regulations, e.g. ISO-27001, PCI-DSS, HIPAA, FedRAMP, GDPR, etc.
Researches and interprets current and pending governmental laws and regulations, industry standards and customer and vendor contracts to communicate compliance requirements to the business.
Participates in industry forums monitoring developments in regulatory compliance.
Mentors and trains other team members.
Compiles information and reports for management.
- Build out new security control catalogue, security policies and procedures and assist in implementing them
- Knowledge of application, data classification, security infrastructure and governance, Logging, Supervising aspects and Authorization
- Ability to analyze security requirements and convert into secure and scalable DB security controls
- Review application architectures and implementation details for design flaws, incorrect security implementation and missing security controls
- Drive and lead security processes, tools, methods, and knowledge and security enhancements
- Use Static and Dynamic Analysis tools to support broad testing and vulnerability discovery in the CI/CD pipeline
- Conduct security assessments
- Coordinate with Corporate Security teams and System Owners to ensure Corporate Security standards implementation
- Perform security audit, risk assessment, and generate reports of security posture of systems
- Build automation using Python/Ruby/Terraform/Ansible /Oracle Apex to handle large Infrastructure
- Drive innovation and integration of new technologies into projects and activities
- Provide domain-specific expertise, overall security leadership and perspective to cross- organization projects, programs, and activities
- Willing to learn new technologies and products
- Knowledge of encryption technologies
- Several years of experience in a Senior security analyst role or Senior DBA: This experience should ideally be focused on IAM security.
- Experience working with Oracle databases (SQL is a big plus)
- Experience with security assessments and audits
- Minimum 5 years of experience, preferably 7-10 years
Locations
- Czechia
Salary
40,000 - 70,000 EUR / yearly
Source: ai estimated
* This is an estimated range based on market data and may vary based on experience and qualifications.
Skills Required
- risk managementintermediate
- regulatory compliance (ISO-27001, PCI-DSS, HIPAA, FedRAMP, GDPR)intermediate
- threat security policy developmentintermediate
- security assessmentsintermediate
- static and dynamic analysis toolsintermediate
- CI/CD pipeline vulnerability discoveryintermediate
Responsibilities
- assess information security risk
- conduct risk assessments
- manage compliance programs
- build security control catalogue, policies and procedures
- analyze security requirements for DB security controls
- review application architectures for flaws
- drive security processes and enhancements
Tags & Categories
Answer 10 quick questions to check your fit for SECURITY ANALYST III - DATABASE @ Tesco.
Related Books and Jobs
SECURITY ANALYST III - DATABASE
Tesco
SECURITY ANALYST III - DATABASE
Job Description
Supports the strengthening of Oracle and SQL DBs security posture, focusing on one or more of the following: risk management; regulatory compliance, threat security policy development and enforcement.
Risk Management:
Brings advanced level skills to assess the information security risk associated with existing and proposed business operational programs, systems, applications, practices and procedures in very complex, business-critical environments.
May conduct and document very complex information security risk assessments.
May assist in the creation and implementation of security solutions and programs.
Regulatory Compliance:
Brings advanced level skills to manage programs to establish, document and track compliance to industry and government standards and regulations, e.g. ISO-27001, PCI-DSS, HIPAA, FedRAMP, GDPR, etc.
Researches and interprets current and pending governmental laws and regulations, industry standards and customer and vendor contracts to communicate compliance requirements to the business.
Participates in industry forums monitoring developments in regulatory compliance.
Mentors and trains other team members.
Compiles information and reports for management.
- Build out new security control catalogue, security policies and procedures and assist in implementing them
- Knowledge of application, data classification, security infrastructure and governance, Logging, Supervising aspects and Authorization
- Ability to analyze security requirements and convert into secure and scalable DB security controls
- Review application architectures and implementation details for design flaws, incorrect security implementation and missing security controls
- Drive and lead security processes, tools, methods, and knowledge and security enhancements
- Use Static and Dynamic Analysis tools to support broad testing and vulnerability discovery in the CI/CD pipeline
- Conduct security assessments
- Coordinate with Corporate Security teams and System Owners to ensure Corporate Security standards implementation
- Perform security audit, risk assessment, and generate reports of security posture of systems
- Build automation using Python/Ruby/Terraform/Ansible /Oracle Apex to handle large Infrastructure
- Drive innovation and integration of new technologies into projects and activities
- Provide domain-specific expertise, overall security leadership and perspective to cross- organization projects, programs, and activities
- Willing to learn new technologies and products
- Knowledge of encryption technologies
- Several years of experience in a Senior security analyst role or Senior DBA: This experience should ideally be focused on IAM security.
- Experience working with Oracle databases (SQL is a big plus)
- Experience with security assessments and audits
- Minimum 5 years of experience, preferably 7-10 years
Locations
- Czechia
Salary
40,000 - 70,000 EUR / yearly
Source: ai estimated
* This is an estimated range based on market data and may vary based on experience and qualifications.
Skills Required
- risk managementintermediate
- regulatory compliance (ISO-27001, PCI-DSS, HIPAA, FedRAMP, GDPR)intermediate
- threat security policy developmentintermediate
- security assessmentsintermediate
- static and dynamic analysis toolsintermediate
- CI/CD pipeline vulnerability discoveryintermediate
Responsibilities
- assess information security risk
- conduct risk assessments
- manage compliance programs
- build security control catalogue, policies and procedures
- analyze security requirements for DB security controls
- review application architectures for flaws
- drive security processes and enhancements
Tags & Categories
Answer 10 quick questions to check your fit for SECURITY ANALYST III - DATABASE @ Tesco.
Related Books and Jobs