Effectively provisioning, installing, configuring, operating, and maintaining security systems and services to protect sensitive data across datacenter for WaveStrong’s clients;
Conducting ad-hoc and scheduled risk assessments, audits, system reviews, and classification and vulnerability scans using a combination of automated tools (e.g. IBM Guardium), manual methods, and interviewing techniques to gather the information necessary to provide written reports, and summarizing findings and recommendations;
Participating in information security audits ensuring technical compliance with security related regulatory requirements (PCI, SOX, PII, GDPR etc.);
Being familiar with the best practices surrounding security incident responses;
Designing and the administration of data activity monitoring, data protection, and compliance solutions (i.e. IBM Guardium);
Designing and the administration of Security Information and Event Management (SIEM) solutions (i.e. QRadar).;
Integrating data activity monitoring solutions with SIEM to perform policy violation analyses and generating offenses;
Demonstrating an understanding of key IT operational policies, processes and methodologies applicable to governance, risk management and compliance;
Serving as a senior member of WaveStrong’s Information Security Team and actively participating in analyzing and mitigating potential security threats for WaveStrong’s clients; and
Developing plans for incident responses, vulnerability assessments, data classification, penetration tests and security audits.
Bachelor’s degree in computer engineering and 5 years of experience in information and database security.Must be proficient in IBM Guardium and QRadar.A foreign educational equivalent is acceptable.