We are seeking a skilled Data Security Engineer to join our team and play a pivotal role in safeguarding our data assets and ensuring the confidentiality, integrity, and availability of our organization’s critical data. As a Data Security Engineer, you will be responsible for designing, implementing, and maintaining security solutions to protect sensitive data across the enterprise. You will work closely with cross-functional teams to ensure data security best practices are followed, compliance requirements are met, and security incidents are quickly identified and remediated.

Key Responsibilities:

1. Data Security Architecture and Design:

   • Design and implement data security solutions to protect sensitive data both at rest and in transit.
   • Architect secure data access controls and encryption mechanisms to safeguard organizational data assets.
   • Ensure that data protection measures comply with industry standards, regulations (e.g., GDPR, HIPAA), and organizational security policies.

2. Data Protection and Encryption:

   • Develop and manage encryption strategies and solutions to ensure the security of data throughout its lifecycle.
   • Implement and maintain strong data access controls, ensuring only authorized personnel have access to sensitive information.
   • Work with other security engineers to deploy and manage data masking, tokenization, and other data protection techniques.

3. Security Monitoring and Incident Response:

   • Monitor systems, networks, and applications for vulnerabilities, potential threats, and abnormal data access patterns.
   • Respond to and investigate data security incidents, including data breaches, unauthorized access, and data leaks.
   • Coordinate with incident response teams to mitigate and resolve data security incidents promptly.

4. Compliance and Risk Management:

   • Ensure that the organization’s data handling, processing, and storage practices comply with relevant data protection regulations, including GDPR, CCPA, HIPAA, and industry-specific standards.
   • Assist in conducting regular risk assessments and audits of data security practices to identify areas of improvement.
   • Provide support for compliance audits and reporting requirements related to data security.

5. Collaboration and Training:

   • Collaborate with IT, engineering, and business teams to implement data security solutions across various systems, applications, and platforms.
   • Educate and train employees on data security best practices, ensuring a culture of security awareness across the organization.
   • Work with Data Privacy and Compliance teams to ensure alignment with data governance and privacy initiatives.

6. Vulnerability Management and Patch Management:

   • Identify vulnerabilities in data systems and develop remediation plans to address security gaps.
   • Work closely with IT teams to ensure timely patching and updates of data security systems and platforms.
   • Regularly perform security assessments, penetration testing, and vulnerability scans to ensure systems remain secure.

7. Documentation and Reporting:

   • Maintain detailed documentation of data security policies, procedures, and configurations for data protection solutions.
   • Prepare and present regular security reports to leadership, highlighting security incidents, trends, and areas for improvement.

8. Continuous Improvement:

   • Stay up to date with the latest trends and advancements in data security, including encryption technologies, threat detection techniques, and regulatory changes.
   • Continuously evaluate and recommend improvements to the organization’s data security posture.

Qualifications:

1. Education and Experience:

   • Bachelor’s degree in Computer Science, Information Security, or a related field; Master’s degree preferred.
   • 5+ years of experience in data security, information security, or a related field.
   • Experience with data security tools and technologies such as encryption, tokenization, Data Loss Prevention (DLP), and Identity and Access Management (IAM).
   • Familiarity with cloud security models and securing data in cloud environments (e.g., AWS, Azure, GCP) is highly preferred.

2. Technical Skills:

   • Expertise in data encryption standards and protocols (e.g., AES, TLS/SSL, RSA).
   • Experience with data protection technologies like DLP, data masking, tokenization, and secure data storage.
   • Familiarity with security frameworks, such as NIST, ISO 27001, SOC 2, and GDPR.
   • Experience with security monitoring tools, SIEM solutions (e.g., Splunk, ELK), and vulnerability management tools.
   • Strong knowledge of network security and secure communication protocols.

3. Problem-Solving and Analytical Skills:

   • Strong analytical and troubleshooting skills, with the ability to identify and mitigate complex security risks.
   • Experience in security incident management and response, including data breach investigations and remediation.
   • Ability to evaluate and recommend security improvements based on risk assessments.

4. Communication and Collaboration Skills:

   • Strong communication skills with the ability to explain complex data security concepts to non-technical stakeholders.
   • Ability to collaborate with cross-functional teams and drive data security initiatives across the organization.
   • Strong documentation skills to maintain security policies, procedures, and reports.

5. Certifications (Preferred):

   • Certified Information Systems Security Professional (CISSP).
   • Certified Information Security Manager (CISM).
   • Certified Cloud Security Professional (CCSP).
   • CompTIA Security+ or equivalent.

What We Offer:

• Competitive salary and benefits package.
• Opportunities for career growth and professional development.
• A collaborative and innovative work environment where your contributions matter.
• Access to the latest tools and technologies in the field of data security.

Posted On: Friday, January 17, 2025