About the role
Job Responsibilities
- Support database security and hardening activities across system boundaries
- Support database hardening activities across enterprise database environments, including relational, NoSQL, and cloud-native platforms
- Assess database configurations against applicable hardening standards, including DISA STIGs, CIS Benchmarks, and organizational security baselines
- Identify database security gaps, misconfigurations, excessive privileges, insecure default settings, logging deficiencies, encryption gaps, and audit-readiness issues
- Support vulnerability remediation for database platforms by coordinating with DBAs, system owners, application teams, cloud teams, and security stakeholders
- Apply database security and administration experience to help translate security requirements into practical, operationally feasible database configurations
- Support secure configuration and hardening of Oracle, PostgreSQL, MySQL, MS SQL, MongoDB, Amazon RDS, Azure SQL, DynamoDB, and similar database technologies
- Assist with database patching, remediation planning, configuration validation, and evidence collection
- Implement, review, and validate database audit logging, data masking, encryption, access controls, and related security mechanisms
- Use scanning tools and manual validation methods to verify database hardening compliance and identify remediation needs
- Coordinate database scanning, patching, and remediation activities with stakeholders and infrastructure teams
- Assess hardening compliance levels using reporting and scanning tools
- Assist with reporting and dashboard development related to database security posture
- Develop, maintain, and improve database hardening scripts and technical processes
- Support implementation and maintenance of audit logging, encryption, masking, and related security controls
- Help identify and remediate database configuration weaknesses and compliance gaps
- Assist with documentation, reporting, and evidence collection for audits and reviews
- Support secure operation of on-premises and cloud-hosted database platforms
- Contribute to process improvement, standardization, and automation efforts
Job Qualifications
- Bachelor’s degree in Information Technology, Computer Science, Information Systems, or related technical field; or equivalent experience
- 5+ years of experience in database administration, database security, database engineering, or related work
- Experience supporting relational databases such as Oracle, PostgreSQL, MySQL, or SQL Server
- Familiarity with remediation practices across Windows, Linux, cloud platforms, and containerized environments as they relate to database hosting and operations
- Experience using enterprise ticketing systems such as ServiceNow to document findings, track remediation, and support audit ability
- Familiarity with Splunk or similar SIEM/reporting tools for database logging, dashboarding, reporting, or evidence support
- Familiarity with scripting or automation tools such as SQL, Python, PowerShell, Bash, or similar technologies.
- Familiarity with DevSecOps and CI/CD pipeline development processes as they relate to database deployment, configuration, and security validation
- Strong written and verbal communication skills with the ability to explain database security issues to technical and non-technical stakeholders
- Ability to work as part of a cross-functional cybersecurity team supporting vulnerability management, configuration management, database hardening, remediation tracking, and compliance reporting
- Familiarity with NoSQL and cloud-native database technologies is preferred
- Experience with database hardening, patching, scanning, and security compliance activities
- Experience using vulnerability scanning and assessment tools such as Tenable/Nessus
- Familiarity with DISA STIGs, CIS Benchmarks, and secure database configuration practices
- Experience with audit logging, encryption, masking, and access control concepts
- Ability to interpret compliance or audit requirements and translate them into technical actions
- Strong troubleshooting, reporting, and documentation skills
- Ability to work across teams to support secure and reliable database operations
Preferred Certifications
CASP, GSEC, GSLC, CISSP, CEH, CISM, CISA, PMI-ACP, SAFe Agilist, CSM, or comparable certifications
Clearance Required
Public Trust or ability to obtain and maintain required DHS suitability/access