Database Security Analyst

• Design, implement, and continuously improve security controls that protect enterprise databases and the data they store. This role combines deep technical expertise with strategic thinking, ensuring database environments remain secure, compliant, and resilient against evolving cyber threats
• Also work closely with database administrators, cloud and infrastructure teams, application owners, and security leadership to embed security best practices across on-premise, cloud, and hybrid database platforms
  

Key Responsibilities

• Implement, and maintain database security controls including authentication, authorization, encryption, auditing, and monitoring
• Secure databases across on-premise and cloud platforms (e.g., Oracle, SQL Server, PostgreSQL, MySQL, MongoDB, AWS RDS/Aurora, Azure SQL)
• Configure policies and manage database activity monitoring (DAM) solutions
• Conduct database vulnerability assessments, configuration reviews, and penetration testing support
• Monitor database activity logs and alerts, escalating potential security issues as required
• Investigate and respond to database-related security incidents, performing root cause analysis and remediation
• Support audits by providing evidence, risk assessments, and remediation plans
• Identify and mitigate database-specific security risks and contribute to enterprise risk management activities
• Advise on identity and access management (IAM) integration for databases
• Evaluate new database technologies and security tools, making recommendations based on risk and business value
• Work closely with database administrators, application teams, and security colleagues
• Perform other responsibilities as assigned by the Head, Security Policy, Governance and Compliance
  

Requirements
Required Knowledge, Skills and Abilities:

• Strong hands-on experience securing enterprise database platforms
• Deep understanding of database authentication models, role-based access control, and privilege management
• Experience with encryption at rest and in transit, key management systems (KMS/HSM), and secrets management
• Knowledge of SQL injection, insider threats, and database-specific attack vectors
• Experience supporting compliance and regulatory frameworks (ISO 27001, NIST, PCI-DSS, CIS)
• Strong troubleshooting, documentation, and communication skills
  

Qualification & Experience
Mandatory

• Bachelor's degree in Computer Science, Information Security, or a related field
• Certifications such as CISSP, CISM, CCSP, GIAC, or database-specific security certifications
• Experience with security tooling such as Imperva, or native cloud database security services
• Background in automation or scripting (e.g., Python, PowerShell, SQL)
• Experience supporting large-scale or highly regulated financial institution
  

Desirable

• Cloud security certifications (e.g., AWS Security Specialty, Azure Security Engineer)
  

Only shortlisted candidates will be contacted.
<