IT.Security Analyst (Database Security)

Position Description

JOB DESCRIPTION

This position ensures the security, confidentiality, integrity, and availability of CITCO’s databases. This role manages security controls, monitors for vulnerabilities, and ensures compliance with internal policies and data protection regulations (such as GDPR) across on-premise and cloud environments (AWS, Azure).

Organizational Relations

This position reports to the IT Security Manager, GRC and works closely with other IT Security Teams, Development, Infrastructure and Operations, Project management, and vendor teams. The Database Security Administrator also collaborates with Data Owners and Senior Management to develop and enforce security policies.

Key Responsibilities

Technical Expectations:

• Review database environments (Oracle, MSSQL, DB2, and PostgreSQL) to ensure compliance with CITCO security policies and standards. Make recommendations to improve database security.
• Collaborate with Database Architects, Administrators, and other IT teams to review and secure new project implementations, representing IT Security’s strategic interests and policies in Technical Architecture Reviews.
• Regularly assess and update database policies and standards to address new vulnerabilities introduced by new software versions or technologies.
• Conduct ad-hoc and scheduled risk assessments, audits, and vulnerability scans using automated tools, manual methods, and interviews. Provide written reports detailing findings and recommendations.
• Ensure that high-privilege database accounts are secured within the Privileged Access Management (PAM) system.
• Actively participate in incident response, identifying the root cause of security breaches and recommending solutions to limit the scope. Work with senior management to implement additional controls to prevent future incidents.
• Stay current on security trends through ongoing training, research, and development, to minimize security risks.
• Deploy and maintain the database monitoring infrastructure, ensuring that policies are enforced, reports generated, and violations investigated.
• Ensure databases comply with internal and external data privacy and security regulations, focusing on sensitive data identification, Privileged Access Management, Activity Monitoring, and Encryption.
• Deploy and administer database encryption and activity monitoring solutions, including key management systems, and resolve support issues as they arise.
• Regularly create, review, and update documentation including security standards, policies, guidelines, and procedures.
• Perform other related duties incidental to the work described herein.
• Deliver operational metrics and participate in Audits and Compliance initiatives by providing evidence as requested.
  
  

Management/Leadership Expectations

• Ability to work independently with or without direction and or supervision.
• Portray professional demeanor and demonstrate professional judgment on the job.
  
  

Administrative Expectations

• Participate in meetings as required.
• Manage time and tasks.
• Prepare status reports and key metrics, as required.
  
  

Professional Expectations

• Excellent written, verbal and interpersonal presentation skills. Ability to communicate effectively at all organizational levels.
• Accept responsibility and personal accountability; demonstrate reliability.
• Maintain good attendance and punctuality; follow proper procedures for requesting time off; communicate with management appropriately.
• Demonstrate flexibility and adaptability in approach to work.
• Promptly respond to telephone calls, voice-mail, e-mail and other means of communication.
• Demonstrate effective teamwork and working relationships with others, both from Citco and external clients.
• Demonstrate a self-directed approach to learning new technologies in the field; pursue professional development.
  
  

Education

EDUCATION, EXPERIENCE & SKILLS:

• Bachelor's Degree in Computer Science, Computer Engineering, Information Technology, or equivalent experience in a related field.
• Database and Security Certifications are preferred: Oracle, MCDBA, Security+/CySA+, SSCP/CISSP, and the like.
  
  

Work Experience

• 4+ years of experience in database administration and security in one or more of the following: Oracle, MSSQL, DB2, and PostgreSQL, in a distributed global and hybrid multi-cloud environment. (required)
• Experience in a similar work in a highly regulated and security-oriented environment and role.
• Experience with security monitoring tools such as IBM Security Guardium and Imperva SecureSphere (not required but preferred)
• Strong knowledge and experience in DBMS native encryption technologies (e.g., Oracle/MSSQL TDE). (Experience in using Key Management systems such as Oracle Key Vault is preferred)
• Experience and familiarity with compliance management and data protection regulations like GDPR.
• Experience in Cloud Platforms, especially database services such as Amazon RDS and Azure SQL and monitoring services (Cloudwatch, Cloudtrail). (preferred)
• Experience in Data Encryption Standards and Technologies: encryption standards such as symmetric-key (AES) and asymmetric-key (RSA). Technologies such as Vormetric/CipherTrust, and Transparent Data Encryption (TDE).
• Experience in Vulnerability Management, particularly Database Vulnerability Assessment and Remediation is a plus.
  
  

Specific Knowledge / Skills

• Cybersecurity Fundamentals: security concepts, risk management, incident response, and vulnerability management.
• Database Systems: Proficient in securing, monitoring and auditing Oracle, MSSQL, PostgreSQL, or DB2 databases
• Operating Systems: able to work and navigate through both Windows and Linux environments.
• Familiarity in industry best practices in securing systems, especially Database systems.
• Ability to identify, analyze, qualify and report on database security issues.
• Experience in developing and implementing standards, policies and procedures.
• Project Management: Experience with project management methodologies is a plus.
  
  

Other Expectations & Demands

• Professional Conduct: Requires strong collaboration and communication skills to work across departments. The role demands accountability and attention to detail.
• Adaptability: The Database Security Administrator must manage multiple tasks, shifting priorities, evolving requirements and high-pressure incidents with composure.
• Work Environment: The role requires availability for after-hours support and the ability to operate in a 24x7x365 environment.
• Travel Requirements: Ability to travel as needed.
  
  

What We Offer

We offer a challenging job in a growing international company, an opportunity to expand your business knowledge by working with prestigious clients and complex financial and technological instruments in a friendly and fast-paced environment. Additionally, Citco is proud to offer our employees competitive compensation, vacation and health insurance benefits.