The Data Services Dedicated Database team deliver database, data caching, security solutions and guidance for consumption by businesses within Citi. 

The Database Security Senior Engineer will be responsible for the database security support of all databases currently supported by the Dedicated Database team (including Oracle, SQL Server, MongoDB, Postgres, Couchbase, Redis, Sybase and DB2 LUW). Responsibilities will include evaluating, certifying, deploying and supporting new security solutions and tools as well as providing general database security guidance. 

This involves supporting the Citi development and application support community as well as other Citi security and risk teams.

This is a senior level position responsible for leading a variety of engineering activities including the design, acquisition and deployment of hardware, software and network infrastructure in coordination with the Technology team. The overall objective of this role is to lead efforts to ensure quality standards are being met within existing and planned framework.

Responsibilities:

• Serve as a technology subject matter expert for internal and external stakeholders and provide direction for all firm mandated controls and compliance initiatives, all projects within the group and in creating a technology domain roadmap
• Ensure that all integration of functions meet business goals
• Define necessary system enhancements to deploy new products and process enhancements
• Recommend product customization for system integration
• Identify problem causality, business impact and root causes
• Exhibit knowledge of how own specialty area contributes to the business and apply knowledge of competitors, products and services
• Advise or mentor junior team members
• Impact the engineering function by influencing decisions through advice, counsel or facilitating services
• Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency.

Qualifications:

• Sound security engineering principles as background to understanding the workings of the systems and controls that are in place.
• Strong IT/Technical skills (understanding of software, hardware, networks etc,)

Education:

• Bachelor’s degree/University degree or equivalent experience

Key Responsibilities:

• Evaluate and assess existing and new database security products
• Ensure that all security products meet or exceed Citi internal and regulatory requirements.
• Design, develop, test, customize and troubleshoot Database security systems and solutions to ensure protection of IT assets, business functions and requirements.
• Familiarization with information security concepts and products.
• Work with all disciplines and product owners to integrate database security solutions with existing Citi and future Citi computing environments.
• Produce documentation of processes and procedures for the usage of the toolset.
• Follow the Technology Development Life Cycle in the development of all security tools
• Continuous process improvement
• Focus on providing customer solutions rather than just product certification

• Database security
• Database administration or development
• Database security products, e.g. Guardium, Imperva and Thales
• Database tokenization, redaction and encryption
• Traditional database products such as Oracle, SQL, Sybase and DB2 LUW
• NoSQL products, especially MongoDB, Neo4, Couchbase and Cassandra
• Caching products such as Redis, Couchbase and GemFire
• Public cloud infrastructures and public cloud database solutions
• Linux operating system, especially Red Hat
• OpenShift or other containerization frameworks
• Automation tools such as Ansible and Chef
• Agile methodologies such as scrum and kanban using JIRA
• Product certification including security assessment and solution documentation