Location: all cities,AK, USA
Job Description: Responsibilities: Work closely with client stakeholders to determine technical requirements for specific business objectives at hand and understand applicable security, regulatory and procedural controls & requirements Develop security requirements and specification for security policies Configuring data source for defining security protocols/policies, creating scanning profiles, integration with Enterprise IAM. Identifying appropriate security techniques such as Encryption (FPE, AES, Transparent) and Tokenization (SST, Vaultless, Vault based), etc. applicable from a PII data classification standpoint. nalysis of upstream/downstream application dependencies to ensure security protocols are appropriately configured and applied using the selected tool stack Implementation of Data Access Governance and Security/Privacy migrations End-to-end analysis of all the tables in a database apply appropriate policy on the identified sensitive data attribute (PII/PHI/PCI) using a data security tool stack. Knowledgeable with the data privacy regulations and compliances (GDPR, CCPA, HIPAA, SOC) Responsible for necessary design, configuration, and implementation of data security tools stacks like Protegrity, MicroFocus Voltage, Imperva, Immuta, Privacera, Thales. Recommend appropriate key management solutions (key rotation, HSM, etc.) Understand security posture for hybrid environments (legacy, distributed, cloud, SaaS products like Guidewire, Client, Duck creek, etc.) Responsible for collaborating with the project team members to provide regular updates required in for weekly status report, and weekly project log consisting of issues, risks, action items, and progress against planned activities for a given week. Experience Required: 8+ years of industry experience in addressing regulatory and compliance requirements 4+ years of hands-on experience designing and implementing data security policies, controls and governance 2+ years of experience working with cloud service providers (AWS, Azure, GCP) and corresponding cloud-native security services Data security/protection conceptual knowledge and experience in implementation of data security capabilities such as encryption, tokenization, data masking, RBAC, ABAC, auditing & monitoring in any of the industry leading tools such as Immuta, Protegrity, Microfocus Voltage, Vormetric, Imperva, SecuPi, Privacera, Thales, etc. Specific experience in designing, configuring, and implementing solutions using data privacy/security tools preferably Protegrity or Voltage or Thales. Deep understanding of cloud service architecture with emphasis on security in the cloud dministration of the Data Security/Privacy/Governance tools, configuring policies, upgrading, and patching, etc. Knowledge and experience supporting IAM, security operations and threat response Extensive experience implementing security solutions for on-prem and cloud platforms ble to communicate clearly and concisely, both orally and in writing to business and technology stakeholders bility to multitask and work effective with little supervision; ability to co-ordinate with onsite resources deliverables/activities; Ability to work with client and manage their expectations & priorities Bachelors degree or equivalent in Computer Science, Information Systems, Cybersecurity, or related field Primary Skills: Encryption, Tokenization, RBAC, ABAC, DLP