Icon hamburger
US
What job do you want?
Apply to this job.
Think you're the perfect candidate?
Apply Now
Thumsup

You’re being taken to an external site to apply.

Enter your email below to receive job recommendations for similar positions.
Mfz6r76k64ryng4hsmb

Sr. Security Specialist (IBM Guardium)

AIC (part of ACS Group) Jacksonville Full-Time
Apply Now

This position is a key member of the Cyber Security Threat Management team responsible for the engineering, implementation, configuration, tuning and maintenance of database compliance, integrity and activity monitoring of core business database management systems.

The role will focus on systems and tools associated with database activity security monitoring, event correlation, vulnerability scanning and configuration compliance.

Candidates will be responsible to support existing enterprise database activity monitoring solutions and optimize deployment and operations.

Specific deliverables will support implementation of IBM Guardium Database Activity Monitoring, Vulnerability Assessor and Configuration Auditing System components and should have experience with core DBMS technologies including, but not limited to Oracle, IBM DB2 LUW, Microsoft SQL, Mongo, and Hadoop.

  1. Performs installation, testing, monitoring, configuration, migration, maintenance and troubleshooting of assigned technology
  2. Manages system/application environment and ongoing operations
  3. Proactively monitors and reports performance and utilization of assigned technologies
  4. Troubleshoots software and/or hardware issues/failures
  5. Performs solution design architecting, capacity planning, and configuration/deployment of GIM, S-TAP.
  6. Creates and publishes audit reports and risk/performance metrics. Ability to understand and report on current state of deployment architecture, assets, and databases within defined categories/types, business or security framework alignments.
  7. Technical experience with design and configuration of tool-based automation and workflow features, as well enabling integration to other SIEM, inventory and/or ticketing systems such as Splunk and Remedy.
  8. Understanding of industry security logging standards and best practices
  9. Resolves alerts and performs remediation activities
  10. Manages problem or escalated tickets and tasks and out of cycle requests from systems/software owners
  11. Collects and presents data for reporting and planning
  12. Assists with developing tactical strategies, processes and procedures related to systems/application administration
  13. Collaborates with IT and business area partners on work groups and initiatives
  14. Assist in identification of alternative configurations and approaches to enable business needs
  15. Serves as a liaison with IT and business area partners to identify, understand, document and advise on security requirements, impacts and risks.
  16. Develops and maintains documentation for security systems, procedures and security diagrams
  17. Analyzes, proposes and implements solutions concerning residual risk, vulnerabilities and other security exposures.
  18. Participates on assigned projects, ensuring that security best practices and requirements are considered and addressed.
  19. Participates in initiatives to identify, select and implement technical controls
  20. Develops information security processes, policies and procedures.
  21. Advises on service level agreements and works to ensure that security controls are managed and maintained.
  22. Other duties as assigned

Must have: IBM Guardium implementation and operations experience

Strongly preferred: RHEL Linux experience IBM AIX experience IaaS, PaaS, SaaS understanding Micro services experience (Kubernetes, Docker, etc.)

Software Development Lifecycle: Waterfall and Agile

Additional Requirements:

  • 2-4 years of experience in Systems and Information Security administration with at least 1-2 years professional experience related to Database compliance and Security Monitoring
  • More than 2 year's experience with the IBM Guardium implementations
  • Working knowledge of core database platforms: Oracle, Microsoft SQL Server, IBM DB2/LUW, Mongo, Hadoop, and PostgreSQL
  • Experience integrating security capabilities with ITSM; preferably BMC Remedy integration experience
  • Experience with log management and enterprise log management implementations
  • Understanding of how to secure next-generation datacenter solutions (e.g. PaaS, SaaS or IaaS).
  • Demonstrate a working knowledge of multiple technologies and their interfaces and integration
  • Extensive experience implementing and administering/managing technical solutions in major, large-scale system implementations
  • Knowledge of information security principles, including risk assessment and management, threat and vulnerability management, incident response and identity and access management
  • Knowledge of network infrastructure including routers, switches, firewalls and associated network protocols and concepts.
  • Experience developing, documenting and maintaining security procedures.
  • Knowledge of operating systems and security applications, as well as a working knowledge of basic network protocols and tools.
  • Ability to manage tasks independently and take ownership of responsibilities
  • Ability to learn from mistakes and apply constructive feedback to improve performance
  • Strong customer focus with ability to manage customer expectations and experience and build long-term relationships.
  • Strong team-oriented interpersonal skills with the ability to interface with a broad range of people and roles including vendors and IT-business personnel.
  • Ability to adapt to a rapidly changing environment
  • Critical thinking skills to evaluate alternatives and present solutions that are consistent with business objectives and strategy.
  • Familiarity with PCI, HIPAA, NIST, HITRUST and other compliance frameworks

Preferred:

  • Experience analyzing business requirements and translating them into technical solutions
  • Industry standard Cyber Security Certifications: CompTIA Security+, CSANS GIAC Security Essentials (GSEC), Systems Security Certified Practitioner (ISC2 SSCP), ISACA Certified in Risk and Information Systems Control (CRISC)
*2-4 years of experience in Systems and Information Security administration with at least 1-2 years professional experience related to Database compliance and Security Monitoring •More than 2 years' experience with the IBM Guardium implementations •Working knowledge of core database platforms: Oracle, Microsoft SQL Server, IBM DB2/LUW, Mongo, Hadoop, and PostgreSQL •Experience integrating security capabilities with ITSM; preferably BMC Remedy integration experience •Experience with log management and enterprise log management implementations •Understanding of how to secure next-generation datacenter solutions (e.g. PaaS, SaaS or IaaS). •Demonstrate a working knowledge of multiple technologies and their interfaces and integration •Extensive experience implementing and administering/managing technical solutions in major, large-scale system implementations •Knowledge of information security principles, including risk assessment and management, threat and vulnerability management, incident response and identity and access management •Knowledge of network infrastructure including routers, switches, firewalls and associated network protocols and concepts. •Experience developing, documenting and maintaining security procedures. •Knowledge of operating systems and security applications, as well as a working knowledge of basic network protocols and tools. •Ability to manage tasks independently and take ownership of responsibilities •Ability to learn from mistakes and apply constructive feedback to improve performance •Strong customer focus with ability to manage customer expectations and experience and build long-term relationships. •Strong team-oriented interpersonal skills with the ability to interface with a broad range of people and roles including vendors and IT-business personnel. •Ability to adapt to a rapidly changing environment •Critical thinking skills to evaluate alternatives and present solutions that are consistent with business objectives and strategy. •Familiarity with PCI, HIPAA, NIST, HITRUST and other compliance frameworks

Recommended skills

Incident Response
Vulnerability Scanning
Vulnerability
Giac Security Essentials Certification
Cyber Security
Systems Security Certified Practitioner
Apply to this job.
Think you're the perfect candidate?
Apply Now

Help us improve CareerBuilder by providing feedback about this job: Report this job

Report this Job

Once a job has been reported, we will investigate it further. If you require a response, submit your question or concern to our Trust and Site Security Team

Job ID: 171377

CAREERBUILDER TIP

For your privacy and protection, when applying to a job online, never give your social security number to a prospective employer, provide credit card or bank account information, or perform any sort of monetary transaction. Learn more.

By applying to a job using CareerBuilder you are agreeing to comply with and be subject to the CareerBuilder Terms and Conditions for use of our website. To use our website, you must agree with the Terms and Conditions and both meet and comply with their provisions.

AIC is a leading talent solutions firm that provides highly-skilled Information Technology (IT), Engineering, and Finance professionals to clients nationwide. With an unwavering commitment to excellence, integrity, and innovation, AIC draws from 50 years of experience in the consulting services industry to provide unparalleled business and technical expertise to middle market and Fortune1000 companies. Founded in 1966, AIC is part of the ACS Group.

Our services are designed to meet clients' changing needs and our approach is flexible and collaborative. We take the time to understand your business and the unique needs of your environment, and then apply our technical knowledge and industry perspective to deliver a custom solution. Whether that means supplying you with an individual, several members of a joint project team or a completely outsourced solution, AIC has the expertise and the resources to deliver.

Our experience, passion and client-centric approach have resulted in a long track record of success. For more than 45 years, AIC has provided the added technical capacity and expertise required to help businesses drive value, control costs and deliver on the promise of a more efficient and productive enterprise.

View the full profile