Our Partners thrive The H-E-B Way. As a Data Security Engineer, you would have a...
HEART FOR PEOPLE ... you have a passion for mentorship and guidance, and love for the direct person-to-person interactions that create strong bonds between teams
HEAD FOR BUSINESS ... you have an ownership mentality and a consistent track record of timely delivery of high-quality software
PASSION FOR RESULTS ... the ability to guide the discussion, remove roadblocks, and provide guardrails for your team as they identify challenges and propose solutions
ROLE
Data Security Engineers design and implement best-of-class solutions to improve the security posture of H-E-B technical controls and processes for Data Protection. Data Security Engineers are the Champions of Data Protection at H-E-B and will provide consultative services and work with internal business team members and external vendors to collect requirements, design specifications, and create solutions that improve and are aligned with H-E-B's security strategy.

• Works with data governance and retention (Retention policies, data governance reports and dashboards, information holds).
• Works with Data Loss Prevention (DLP policies, data classification, sensitive information types).
• Works to ensure effective and measurable device control, encryption, and file integrity controls.
• Collaborate with Security, Engineering and Data teams to incorporate strong security controls, apply security best practices in our development life cycle, and mitigate risks and security vulnerabilities.
• Promote and drive the implementation of a data security architecture that supports Engineering's goals and deliverables, through strategy, design, requirements, and code.
• Reviews audit logs, alerts and reports relevant to data protection scenarios and assesses for improvements.
• Works with H-E-B teams to educate and ensure understanding of H-E-B's technical implementation of data security controls and solutions, and ensure gaps, dependencies and defects are identified and addressed.
• Works with H-E-B teams and external security solution vendors to scope, configure and validate solutions to support H-E-B's data protection posture.
• Establishes plans and protocols to protect data and information systems against unauthorized access, modification, and/or destruction.
• Champions data protection amongst H-E-B partners, sharing and promoting security awareness and safe operating procedures.
• Researches and remains up to date with emerging threats and solutions relevant to data protection and its implementations. Maintains current knowledge of industry trends and standards in information security.
• Mentors team members.
• Develops and documents standards and best practices.
• Designs, develops, and documents network security architecture patterns as code.
• Participates in meetings with the Data Governance Team, and other departmental meetings, as needed.

REQUIRED

• Minimum of five (5) years of development and support experience with system and security solutions in medium to large enterprises.
• Familiarity with File Integrity and DLP technologies.
• Working experience with production Big Data, Data Factories, Data Warehouses and the application of security classifications and controls in those environments.
• Experience in IT systems and data security policies, standards, industry trends, and techniques.
• Experience working with hybrid cloud infrastructures.
• Demonstrated experience designing, developing, configuring, implementing, and managing technical implementations and changes at enterprise scale with diverse solutions from multiple vendors.
• Experience with PKI, digital certificates, secrets management and vaulting, and platform/OS security.
• Able to handle highly confidential information in a strictly professional manner.
• Demonstrate a logical and structured approach to time management and task prioritization.
• Demonstrate a high level of communication skills, verbal and written.
• Familiarity with Agile and other project management methodologies.
• Ability to work well under pressure and have great organizational and interpersonal skills.
• Demonstrated experience working IT, Security, and R&D teams to achieve a coordinated privacy and security practice.

RECOMMENDED

• A Bachelor's degree in Computer Science or Software Engineering.
• Experience working in a highly regulated industry, ensuring compliance with GDPR, CCPA, HIPAA and other regulatory requirements.
• One or more professional security certifications such as CISSP, CISM, GCIH, CASP, AWS Security, or equivalent.
• Certified Data Management Professional (CDMP)
• Three (3) or more years' experience in Information Security, IT Risk Management, or IT Compliance.
• Strong experience with GCP and Azure cloud security and preferably hands-on experience with AWS.
• Experience with DataBricks, PostgreSQL, Kafka, and other RDBMs
• Proficiency in languages such as Golang, Node.js, Python, Java.
• Knowledge of containerization, CI/CD pipeline, and orchestration with Kubernetes

*** Position locations open to San Antonio, Dallas, and Austin, TX areas
ISSEC3232