Data Security Expert

Contract: 12 Months Contract extendable (Ongoing project)

General Responsibilities:

• Develop and enforce robust data security policies, standards, and best practices.
• Design secure data architectures and frameworks to safeguard sensitive information across databases, applications, and networks.
• Perform risk assessments and vulnerability analyses to identify potential threats and system weaknesses.
• Collaborate with Cloud, IT, DevOps, and compliance teams to seamlessly integrate security controls into existing workflows and systems.

Technical Responsibilities:

• Expertise in securing cloud platforms like AWS, Azure, or Google Cloud.
• Proficiency with cloud-native security tools, such as AWS KMS, Azure Security Center, or GCP Cloud Armor.
• Conduct detailed risk assessments and vulnerability analyses to detect potential security gaps.
• Utilize scripting languages (e.g., Python, PowerShell, Bash) for automating security processes.
• Familiarity with DevSecOps practices and tools, including Jenkins, Ansible, or Terraform.
• Ensure adherence to industry standards and regulations such as GDPR, CCPA, HIPAA, PCI DSS, and ISO 27001.
• Implement advanced data protection techniques, including encryption, tokenization, and data masking, to enhance security and achieve compliance.
• Monitor, analyze, and promptly respond to data security incidents and breaches.
• Configure, manage, and maintain security tools like DLP (Data Loss Prevention), SIEM (Security Information and Event Management), firewalls, and endpoint protection systems.
• Conduct regular security audits, penetration testing, and system hardening procedures.
• Document security policies, incidents, and remediation actions comprehensively.
• Provide senior management with regular reports on security metrics, incidents, and compliance statuses.
• Possess strong knowledge of data encryption, hashing, tokenization, and secure data transmission methodologies.

Salt is acting as an Employment Business in relation to this vacancy.