As a Data Security Engineer, your primary responsibility will be to design and implement advanced data security measures to protect the organization’s critical information assets. You will work closely with cross-functional teams to ensure data integrity, confidentiality, and availability while also responding to emerging threats in a constantly evolving security landscape.

As a key player in the organization’s cybersecurity strategy, you will oversee the encryption and protection of sensitive data both in transit and at rest, ensuring compliance with industry regulations and internal standards. You will be a driving force behind implementing modern security technologies and solutions, working with innovative tools like HashiCorp Vault, Boundary, Terraform, and more to secure the enterprise’s data assets.

Key Responsibilities

1. Encryption & Data Protection. As a Data Security Engineer, you will design, implement, and manage robust encryption protocols and data protection methods to safeguard sensitive data across all environments. This includes securing data both at rest and in transit using industry-standard encryption techniques and ensuring compliance with data protection regulations.
2. Access Control. You will configure and manage authentication systems and role-based access controls (RBAC), and implement least privilege principles to ensure that only authorized individuals and systems can access sensitive data. Access control mechanisms will be critical in maintaining the security of our enterprise systems.
3. Security Audits & Compliance. Regular audits are essential to ensure that security measures are effective and in line with industry regulations. You will conduct periodic security assessments to identify vulnerabilities and potential risks, working closely with compliance teams to address any findings. You will help maintain certifications and compliance standards by ensuring that all security measures adhere to both internal and external security policies.
4. Security Awareness & Training. Security is everyone’s responsibility. You will help cultivate a security-conscious culture by conducting training and awareness programs across the organization and educating employees about data security best practices and policies. You will empower colleagues to be more vigilant and proactive in identifying and preventing security risks.
5. Emerging Threats & Technologies. The cybersecurity landscape is always evolving, and staying up-to-date on the latest threats and security technologies is key to maintaining a strong security posture. You will evaluate and integrate new security tools, conduct threat intelligence analysis, and ensure that the organization is equipped to handle emerging security challenges.
6. Collaboration with IT Teams. Data security isn’t an isolated effort. You will work closely with other IT teams, including network operations, system administrators, and developers, to integrate security measures throughout the infrastructure. By collaborating with these teams, you’ll ensure that security is embedded throughout the lifecycle of systems and applications.
7. Incident Response. In the event of a security breach or incident, you will play an integral role in managing the response process. You will develop and implement incident response procedures to quickly identify, contain, and mitigate any security threats. Ensuring minimal disruption to business operations is key in these critical situations.
8. Tools & Technologies Utilization. You will be working with cutting-edge security tools such as HashiCorp Vault, Boundary, Terraform, and Vault Radar. These technologies enable centralized secrets management, secure remote access, and automated detection of unmanaged secrets, which are pivotal to an effective data security strategy. In addition, you will utilize Vault Secrets Operator to manage secrets within Kubernetes environments, ensuring secure and seamless access.

Technical Skills & Experience

1. Education. A Bachelor’s degree in Computer Science, Information Technology, Computer Engineering, Electronics, or a related field. Practical experience can also serve as a substitute for formal educational qualifications.
2. Experience. A minimum of 8 years of experience in data security or a related field, with a proven track record of implementing security solutions across enterprise environments.

Technical Expertise

1. HashiCorp Vault/Boundary/Terraform/Vault Radar/Vault Operator. Expertise in managing secrets, ensuring secure data storage and access, and implementing infrastructure as code for efficient security management.
2. CI/CD. Proficiency with Jenkins and Groovy Scripting for automating security tasks within the CI/CD pipeline.
3. Search & Analytics Tools. Experience with Elastic Search to enhance security monitoring and threat detection.
4. VCS. Familiarity with version control systems, particularly Git/GitHub, for managing and securing code.
5. Automation. Experience with Ansible Automation Platform for security automation.
6. Operating Systems. Proficient in Linux and Windows operating systems, with a strong understanding of their security configurations.
7. Cloud Services. Knowledge of cloud platforms such as Azure and AWS, particularly in securing cloud-native environments.
8. Container Services. Familiarity with RHOCP and Kubernetes for securing containerized applications and workloads.
9. Programming Knowledge. Proficiency in Java, Python, Spring Boot, and Weblogic for securing application code.

Security Expertise

• Strong understanding of core information security principles and practices, with expertise in encryption algorithms, network protocols, and security best practices.
• Experience in threat analysis, vulnerability management, and incident response.
• Ability to clearly communicate complex security concepts to both technical and non-technical stakeholders.

Soft Skills

• Analytical thinking and problem-solving skills to diagnose and resolve security issues effectively.
• Strong communication skills to articulate security concepts in a way that is understandable for various audiences.
• Team player with the ability to collaborate across departments and contribute to collective security efforts.

Why Work with CSC?

At CSC, we are committed to fostering an environment of innovation and growth. As a leading global provider of business, legal, and financial services, we have been at the forefront of enabling businesses to thrive in an increasingly digital world for over 120 years. Here, you will have the opportunity to work on challenging, high-impact projects with some of the best minds in the industry.

1. Work-Life Balance. We offer flexible schedules and hybrid working models to ensure that you maintain a healthy work-life balance while contributing to important security initiatives.
2. Career Growth. CSC is a growth-oriented company that invests in the professional development of its employees. We p