Database Security Engineer

At AIG, we are reimagining the way we help customers to manage risk. Join us as a Database Security Engineer to play your part in that transformation. It’s an opportunity to grow your skills and experience as a valued member of the team. Make your mark in Information Technology At AIG, technology is at the heart of everything we do, from underwriting risks to processing claims. The Information Technology (IT) team equips our colleagues with the latest tools to complete their work efficiently, with the highest standards of excellence. The team is responsible for shielding the company’s systems from security risks, while designing technology strategies that enable AIG’s businesses to achieve their goals. Innovation in IT drives innovation across the organization. How you will create an impact The Database Security Engineer is responsible for implementing security systems that will provide detection, prevention, containment, and deterrence mechanisms to protect and maintain the integrity of data at AIG. The Database Security Engineer is a key position in providing protection and assurance on the controls safeguarding the information assets. Specifically, the position is responsible for: Designing, developing, testing, documenting, monitoring, and implementing information and database security solutions to enforce security strategies and support new/existing systems in accordance with policies, standards, guidelines, and procedures. Serve as a trusted partner to business, operations, development, risk, and compliance teams providing database security subject matter expert (SME) guidance and analysis. Managing a database activity monitoring (DAM) platform for security and audit compliance, including policy creation, event and trend analysis, performance monitoring, and infrastructure maintenance. Developing and maintaining database security standards, guidelines, and procedures for hardening database configurations, users and roles, profiles, etc. Refining and enhancing existing controls, policies, standards, procedures, and guidelines to prevent the unauthorized use, release, modification, or destruction of data. Evaluating updates to new/existing database security controls by determining the strengths/weaknesses and coordinating the testing and implementation of the new/enhanced controls with all business partners that are affected. Identifying weak links in information security products and determining how to mitigate the control deficiencies. Enhancing preventive systems used to stop and/or deter security breaches. Evaluating database security patches from vendors, assessing potential risks, and working with stakeholders to address vulnerabilities. Working with database custodians at different levels of the organization to understand their respective security needs and assist with implementing practices and procedures consistent with the information security policy. Conducting and identifying database security compliance issues and ensuring that any non-compliance to security baseline configurations is identified, tracked, and assigned to stakeholders for remediation. Working with internal and external auditors to demonstrate and provide evidence of security controls adherence to regulatory compliance. What you'll need to succeed: 5+ years of Database Security Engineer experience Ability to understand security risks and controls, to analyze various methods of controlling information security problems, determine the strengths and weaknesses of each method, and implement the best cost-justified solution Detailed knowledge of major database platforms such as Oracle, SQLSERVER, MySQL, etc. Working knowledge of at least two or more operating systems and corresponding security systems in use at the Bank (Linux, Unix, Windows, etc.) Identify weak links in information security products and determine how to mitigate the control deficiencies Maintain familiarity with industry trends and current security practices Demonstrate ability to manage complex projects effectively, including the ability to prepare detailed task plans outlining all requirements to complete the given assignment Evaluate business processes and application software related to the integrity, functionality, and reliability of the Bank’s network and systems Passionate, positive, and driven attitude Good communication (written and verbal) and interpersonal skills Reliable time management and organization skills Demonstrates the ability to convey technical findings in simple language Proactive mindset and actions Aptitude to lead complex efforts with minimal supervision Willingness to collaborate across the organization Capability to adapt to new and changing environments and handle multiple priorities, including quick learning Proven ability to work independently and as a team member Flexibility to work in varying business functions and capabilities Skills: Database security, monitoring, and protection Database activity monitoring platforms such as Imperva Data Security and Data Risk Analytics (DRA) Imperva Data Security Specialist (IDSS) certification strongly preferred In-depth working knowledge of databases and database technologies Familiarity with AWS technologies and methods including RDS (Relational Database Service) Data protection Database Firewall Data Loss Prevention (DLP) Data Classification Vulnerability detection and mitigation Cybersecurity experience in regulated banking or financial environments Top 10 banking (Strongly preferred) Information security Penetration testing and attack forensics IT risk management IS audit GRC Tools & Processes At AIG, we value in-person collaboration as a vital part of our culture, which is why we ask our team members to be primarily in the office. This approach helps us work together effectively and create a supportive, connected environment for our team and clients alike. Enjoy benefits that take care of what matters At AIG, our people are our greatest asset. We know how important it is to protect and invest in what’s most important to you. That is why we created our Total Rewards Program—a comprehensive benefits package that extends beyond time spent at work to offer benefits focused on your health, wellbeing, and financial security—as well as your professional development—to bring peace of mind to you and your family. Reimagining insurance to make a bigger difference to the world American International Group, Inc. (AIG) is a global leader in commercial and personal insurance solutions; we are one of the world’s most far-reaching property casualty networks. It is an exciting time to join us—across our operations, we are thinking in new and innovative ways to deliver ever-better solutions to our customers. At AIG, you can go further to support individuals, businesses, and communities, helping them to manage risk, respond to times of uncertainty, and discover new potential. We invest in our largest asset—our people—through continuous learning and development in a culture that celebrates everyone for who they are and what they want to become. Welcome to a culture of inclusion We’re committed to creating a culture that truly respects and celebrates each other’s talents, backgrounds, cultures, opinions, and goals. We foster a culture of inclusion and belonging through learning, cultural awareness activities, and Employee Resource Groups (ERGs). With global chapters, ERGs are a cornerstone for our culture of inclusion. The talent of our people is one of AIG’s greatest assets, and we are honored that our drive for positive change has been recognized by numerous recent awards and accreditations. AIG provides equal opportunity to all qualified individuals regardless of race, color, religion, age, gender, gender expression, national origin, veteran status, disability, or any other legally protected categories. AIG is committed to working with and providing reasonable accommodations to qualified individuals.