We are seeking a seasoned Senior MS SQL Database Security Administrator to lead the security strategy, configuration, and monitoring of Microsoft SQL Server environments. This role is responsible for ensuring the confidentiality, integrity, and availability of sensitive data across production and non-production databases, while aligning with regulatory and organizational security standards.
Key Responsibilities:
Database Security Management
- Implement and manage security controls across all MS SQL Server instances.
- Configure and maintain encryption, auditing, and access controls.
- Enforce least privilege access and role-based permissions for database users and applications.
Monitoring & Threat Detection
- Integrate SQL Server logs with SIEM platforms (e.g., Splunk) for real-time monitoring and alerting.
- Detect and respond to anomalous activity, unauthorized access, and potential data exfiltration.
- Conduct regular reviews of login activity, failed login attempts, and permission changes.
Vulnerability Management & Hardening
- Harden database configurations based on CIS Benchmarks and Microsoft best practices.
- Collaborate with infrastructure and application teams to remediate findings.
Compliance & Audit Support
- Ensure database security aligns with regulatory frameworks (e.g., FFIEC, GLBA, SOX, PCI-DSS).
- Maintain documentation and evidence for internal and external audits.
- Support data classification and retention policies within SQL environments.
Automation & Optimization
- Automate security tasks using PowerShell, T-SQL, or other scripting tools.
- Develop and maintain security dashboards and reports for leadership and auditors.
- Optimize performance of security-related processes without impacting database operations.
Collaboration & Leadership
- Work closely with DBAs, InfoSec, and DevOps teams to embed security into database lifecycle.
- Mentor junior team members and contribute to security architecture discussions.
- Stay current with emerging threats, Microsoft SQL Server features, and security technologies.
Qualifications:
Education & Experience
- Bachelor's degree in Computer Science, Information Security, or related field.
- Years of experience in SQL Server administration, with focus on database security.
Technical Skills
- Deep expertise in MS SQL Server security features (TDE, auditing, Always Encrypted, etc.).
- Strong knowledge of Active Directory integration and Kerberos authentication.
- Experience with SIEM integration, vulnerability scanning tools (e.g., Qualys), and compliance reporting.
- Proficiency in PowerShell, T-SQL, and scripting for automation.
Certifications (Preferred)
- Microsoft Certified: Azure Database Administrator Associate
- Certified Information Systems Security Professional (CISSP)
- GIAC Certified Database Security Professional (GDBA)
Soft Skills
- Strong analytical and problem-solving skills.
- Excellent communication and documentation abilities.
- Ability to work independently and collaboratively in a fast-paced environment.
