Database Security and Hardening Specialist (R-00150)
Indexed description
Supports database security and hardening activities across on-premises and cloud-hosted database environments to ensure secure configuration, audit readiness, compliance with applicable benchmarks, and alignment with the risk-based asset management program's overall mission.
Job Responsibilities
- Support database security and hardening activities across system boundaries
- Support database hardening activities across enterprise database environments, including relational, NoSQL, and cloud-native platforms
- Assess database configurations against applicable hardening standards, including DISA STIGs, CIS Benchmarks, and organizational security baselines
- Identify database security gaps, misconfigurations, excessive privileges, insecure default settings, logging deficiencies, encryption gaps, and audit-readiness issues
- Support vulnerability remediation for database platforms by coordinating with DBAs, system owners, application teams, cloud teams, and security stakeholders
- Apply database security and administration experience to help translate security requirements into practical, operationally feasible database configurations
- Support secure configuration and hardening of Oracle, PostgreSQL, MySQL, MS SQL, MongoDB, Amazon RDS, Azure SQL, DynamoDB, and similar database technologies
- Assist with database patching, remediation planning, configuration validation, and evidence collection
- Implement, review, and validate database audit logging, data masking, encryption, access controls, and related security mechanisms
- Use scanning tools and manual validation methods to verify database hardening compliance and identify remediation needs
- Coordinate database scanning, patching, and remediation activities with stakeholders and infrastructure teams
- Assess hardening compliance levels using reporting and scanning tools
- Assist with reporting and dashboard development related to database security posture
- Develop, maintain, and improve database hardening scripts and technical processes
- Support implementation and maintenance of audit logging, encryption, masking, and related security controls
- Help identify and remediate database configuration weaknesses and compliance gaps
- Assist with documentation, reporting, and evidence collection for audits and reviews
- Support secure operation of on-premises and cloud-hosted database platforms
- Contribute to process improvement, standardization, and automation efforts
- Bachelor’s degree in Information Technology, Computer Science, Information Systems, or related technical field; or equivalent experience
- 5+ years of experience in database administration, database security, database engineering, or related work
- Experience supporting relational databases such as Oracle, PostgreSQL, MySQL, or SQL Server
- Familiarity with remediation practices across Windows, Linux, cloud platforms, and containerized environments as they relate to database hosting and operations
- Experience using enterprise ticketing systems such as ServiceNow to document findings, track remediation, and support audit ability
- Familiarity with Splunk or similar SIEM/reporting tools for database logging, dashboarding, reporting, or evidence support
- Familiarity with scripting or automation tools such as SQL, Python, PowerShell, Bash, or similar technologies
- Familiarity with DevSecOps and CI/CD pipeline development processes as they relate to database deployment, configuration, and security validation
- Strong written and verbal communication skills with the ability to explain database security issues to technical and non-technical stakeholders
- Ability to work as part of a cross-functional cybersecurity team supporting vulnerability management, configuration management, database hardening, remediation tracking, and compliance reporting
- Familiarity with NoSQL and cloud-native database technologies is preferred
- Experience with database hardening, patching, scanning, and security compliance activities
- Experience using vulnerability scanning and assessment tools such as Tenable/Nessus
- Familiarity with DISA STIGs, CIS Benchmarks, and secure database configuration practices
- Experience with audit logging, encryption, masking, and access control concepts
- Ability to interpret compliance or audit requirements and translate them into technical actions
- Strong troubleshooting, reporting, and documentation skills
- Ability to work across teams to support secure and reliable database operations
Clearance Required
Public Trust or ability to obtain and maintain required DHS suitability/access
We’re actively searching for talented security and technology practitioners who are ready to experience the True Zero difference. As a True Zero team member, you'll enjoy:
- Competitive salary, paid twice per month
- Best in class medical coverage
- 100% of medical premiums covered by True Zero
- Company wide new business incentive programs
- Contribution Incentives (i.e. white papers, blog posts, internal webinars, etc.)
- 3 weeks of PTO starting + 11 Paid Holidays Annually
- 401k Program with 100% company match on the first 4%
- Monthly reimbursement of Cell Phone and Home Internet costs
- Paternity/Maternity Leave
- Investment in training and certifications to broaden and deepen your technical skills
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search