Infrastructure Operations Database Support Engineer, VP

Who We are Looking For: 
This role will be member of the Global Infrastructure Operations Continuous Service Improvement (CSI) team as part of 24*7*365 Production Management organization.  An organization that delivers highly secure, reliable, efficient infrastructure technology operations services that are focused on the needs of all State Street business. Responsible for delivering continuous improvement across various infrastructure operations towers by supporting the ITIL framework to improve processes, which ultimately improve our business.
We are seeking a highly skilled and experienced individual to join our team as a Database Vulnerability Lead. In this role, you will be responsible for overseeing the identification, assessment, and remediation of vulnerabilities within our organization's database systems. Your expertise will be critical in ensuring the security and integrity of our databases, which are fundamental to our operations.

What you will be responsible for:
The right person for this role will have a strong track record of program management experience, the demonstrated ability to deliver multiple high priority projects simultaneously, the ability to drive alignment across teams with competing priorities and be a strong advocate for risk management.
• Lead the database vulnerability management program, focusing on identifying, assessing, and remediating vulnerabilities across various database platforms, including but not limited to Oracle, Exadata, MS SQL Server, Sybase, Netezza, MySQL, Snowflake, and PostgreSQL.
• Conduct regular vulnerability assessments, Analyze vulnerability scan results and identify, prioritize vulnerabilities based on severity, potential impact, and risk to the organization's data assets.
• Collaborate with database administrators, system administrators, and IT security teams to develop and implement remediation plans for identified vulnerabilities.
• Work closely with software development teams to address vulnerabilities in database-driven applications and ensure secure coding practices.
• Implement and maintain database security best practices to mitigate the risk of exploitation.
• Monitor database patch management processes and ensure timely deployment of security patches and updates to address known vulnerabilities.
• Stay current on emerging threats, vulnerabilities, and best practices related to database security through industry sources, vendor advisories, and professional networks.
• Document processes, procedures, and findings related to database vulnerability management activities and contribute to the development of security policies and standards.
• Individual will play a direct role in vendor management,  overseeing the scheduling and implementation of the patching activities across all platforms.
• Support and Drive remediation of cyber risks identified by Global Cyber Security, Corporate Audit, Technology Risk Management and Regulators.
• Participate in engineering and technical solutioning to strengthen controls and improve effectiveness of the Patching & Compliance Program.
• Participate in the continuous improvement of the existing and the development of new automation solutions to enhance effectiveness of the program.
• Ensure the Patching & Compliance Program satisfies all Internal & External Regulatory and Compliance standards
• Support Regulatory and Audit inquiries providing insight to the Patching & Compliance Program and detailed evidence when requested.
• Provide Information Technology risk management and compliance support to ensure effective identification, measurement, control and management of the relevant risks
• Identify and manage IT risk by maintaining effective internal controls and escalating as appropriate any deficiencies to management and/or applicable technology governance boards.
• Drive Continuous Service Improvement by looking at lesson learns and gap analysis and implement improvement plans to document, update and improve daily operation procedures
• Develop reports using data that is hosted in multiple sources/tools (e.g., spreadsheets, dashboards) and communicate clearly to leadership and other cyber security teams
• Engage with Application engineering leads and SRE/IT teams to coordinate vulnerability remediation from technical and policy compliance perspectives
• Perform ad-hoc data remediation, clean-ups, and reporting using large complex data sets for high-priority security remediation's

What we value
• Extensive experience in database administration, database security, or a related role, with a focus on vulnerability management.
• In-depth knowledge of database management systems, including their architecture, security features, and common vulnerabilities.
• Ability to effectively coordinate and communicate between technical teams and business stakeholders with varying technical proficiencies
• Proficiency in database vulnerability assessment tools and techniques, such as database scanners, SQL injection testing, and privilege escalation testing.
• Strong understanding of database security controls, including access control mechanisms, encryption, auditing, and authentication mechanisms.
• Experience with database patch management processes and tools, such as Oracle Enterprise Manager, Microsoft SQL Server Management Studio, or similar.
• Excellent analytical and problem-solving skills, with the ability to prioritize and address vulnerabilities effectively.
• Strong communication and collaboration skills, with the ability to work effectively with cross-functional teams.
• Relevant certifications, such as Oracle Certified Professional (OCP), Microsoft Certified: Azure Database Administrator Associate, or Certified Information Systems Security Professional (CISSP), are a plus.
• Ability to work independently and manage multiple projects simultaneously in a fast-paced environment.

Education & Preferred Qualifications
• Bachelor's degree in computer science, information technology, or a related field.
• 15+ years as L3 Production Support Engineer
• Oracle, RAC, Dataguard, Exadata, OEM, GoldenGate, Replication, ZFS, Exadata, UNIX, AIX, Linux
• Experience wth AWS/Azure Postgres, Databricks, Snowflake a plus
• Certification Database Administration – Oracle, Exadata, Azure, AWS, Goldengate
• ITIL

This role offers an exciting opportunity to lead the database vulnerability management efforts within our organization and contribute to the overall security posture of our data assets. If you are passionate about database security and have the skills and experience required, we encourage you to apply and join our team.

Salary Range:

The range quoted above applies to the role in the primary location specified. If the candidate would ultimately work outside of the primary location above, the applicable range could differ.

Job Application Disclosure:

It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.

State Street's Speak Up Line