Cybersecurity Data Security Engineer Job at Saxon Global in Irving
Saxon Global, Irving, TX, United States, 75084
Location : Austin Texas (Hybrid)
Visa : USC & GC
Client : N/A
**ONLY CANDIDATES LOCAL TO TEXAS NEED APPLY**
We are currently seeking a Cybersecurity Data Security Engineer for a contract position with our client in Austin, Texas.
Responsibilities:
Provide security architecture expertise surrounding governance and security guidance over our cloud adoption strategy, with a focus on the security of storing, analyzing, and processing data with varying levels of sensitivity and regulatory requirements.
Implement security solutions, provide security expertise and guidance around following regulation, policy, and best practices for agency initiatives with a focus on cloud and data management.
and support the clients in their desire to protect the business
Define technical and business requirements for data protection solutions, as well as, help develop business processes and policies related to securing and controlling access to data.
Develops and recommends plans to safeguard information systems from accidental or unauthorized modification, destruction, or disclosures.
Develop data protection strategies as well as implementing solutions to provide data security, privacy, and integrity
Advise business units, Information and System Owners, and Technologist with multiple data protection strategies and solutions that include:
DLP, Data Classification, CASB, Database encryption, Tokenization, key management, API Security,
Discuss security issues with information security governance teams to determine strategies to accept, transfer, or mitigate risks.
Work closely with business units to review and understand Data Protection requirements for new and in-flight projects and initiatives, with the ability to articulate the impacts clearly, while recommending solutions and offering practical suggestions as to remediation activities.
Design and build Data Protection infrastructure and solutions to align with program objectives, policies, procedures, and technical control requirements.
Write and define solution requirements and identify the business value.
Define key performance indicators (KPIs) and key risk indicators (KRIs) for data governance and protection controls.
Define/create operational and strategic metrics for the data protection program.
Work in a collaborative cross-matrix environment and be able to build and maintain key relationships throughout the agency
Qualifications:
A minimum of 7 years of related work experience in developing, implementing or architecting information security systems with a strong understanding of information security regulatory requirements and compliance issues.
Functional understanding of regulatory and governance frameworks, including but not limited to HIPAA, HITECH, NIST, and PCI.
Robust understanding of networking (TCP/IP, OSI model), operating system fundamentals (Windows, UNIX, Serverless), security technologies (firewalls, IDS/IPS, EDR, etc.), and Cloud Security models.
Knowledge of general security concepts and methods such as vulnerability assessments, data classification, privacy assessments, incident response, security policy creation, enterprise security strategies, architectures and governance
Knowledge of Disk, file, device and database encryption, and Key management/Public Key Infrastructure (PKI), Secure information storage, Logging, monitoring, and security event management, and application programming/scripting languages (C, Java, Perl, Shell)
Industry recognized security certification: CCSP/CISSP/GIAC/OSCP/
Familiarity with data pipelines used for data ingestion and manipulation.
Familiarity with project methodologies to include agile and waterfall.
Skills & Technologies
Azure
Synapse/Purview/Data Lake/Private Endpoints/Event Hubs/Snowflake/Data Factory
Key Management Systems
Data Classification
Data Loss Prevention (DLP)
Application Programming Interface (API) Security
Cloud Security Assessments
Knowledge of risk management frameworks (RMF)