Data Security Presales Consultant Sr Solution Consultant

Delivering presentations and demonstrations to prospective and current clients.

Liaising with those developing products/services to gain an in-depth knowledge that you can relate to customers – and to let them in on user behaviors and/or any potential changes clients would like. Helping the sales team to reach targets. Conducting research into the industry – including competitor research. Encouraging clients to buy extras, upgrades etc.

Potentially considering new markets or clients to contact, based on your knowledge of both the products/services and their users.

The candidate applies should be have administration and implementation experience in Data Governance, Data Privacy PIA, DPIA, RoPA, Consent Management (OneTrust, BigID, Securiti.ai), Data Classifications, Thales, Fortanix, Key Factors or any vendors related to HSM, PKI, Data Masking solutions, Database Activity Monitoring. Candidate should have strong knowledge of Cryptography. Candidate should Consult with other members of project team and end users to identify PKI / cryptography requirements and develop requirements documentation.

The candidate applies should be subject matter expertise of Imperva Web Application Firewall (WAF) (application security) and Database Security (DAM/DBF) products in design and implementation of SecureSphere hardware appliances, virtual appliances and cloud deployments, MX management servers in HA, Gateways in Clustering, agent installation. Candidate should have knowledge of Use Cases and should recommend to customer with the same. Creating Audit and Security policy with SME knowledge and required customer use cases. Candidate should have knowledge different database platforms (MsSQL, MySQL, Oracle, Postgresql etc) and application knowledges. Candidate coordinates with architecture groups and as well as experience troubleshooting incidents.

Required Skills and Product Knowledge:

Expertise in Privacy Impact Assessments (PIA) and Data Protection Impact Assessments (DPIA).

Strong experience with Records of Processing Activities (RoPA), ensuring compliance with privacy laws and regulations.

Deep understanding and hands-on experience with Cookie Consent Management tools and frameworks for compliance with GDPR, ePrivacy Directive, and other privacy regulations.

Symmetric/Asymmetric Encryption & Digital Signatures.

Design and plan the production deployment, maintenance, development, upgrade, and support of all passive and active cryptography systems (PKI / HSMs).

Provide guidance to key stakeholders on PKI lifecycle, processes and procedures.

PKI Standards, FIPS-140-2/3, NIST Cryptography standards and frameworks.

PKI, Active Directory Certificate Services (AD CS), Linux Certificate Services (OpenSSL), Venafi, Entrust, Hashi Corp Vault, Thales HSMs.

Work with HSM team to upgrade firmware and perform maintenance.

Perform operations and administration support of HSM infrastructure.

Troubleshoot issues pertaining to HSMs and application configurations.

Work with multiple database protection functionalities including Native and Transparent Data Encryption as well as operating systems and file systems.

Monitor and troubleshoot PKI & HSM infrastructure services for problem and failures, providing support and resolutions.

Document design, installation, and Operations & Maintenance guides.

Strong knowledge of encryption solutions and methodologies.

Experience and deeper understanding Hardware Security Modules, Key Management systems and Data Protection Management.

Understanding on the security protocols such as TLS, SSH.

Understanding and experience with the cryptography fundamentals, Digital Certificates and PKI standards.

Knowledge and experience with any of the following technologies: PGP Encryption, Voltage Encryption, Certificate Services, X.509 Certificate management, Hardware Security Modules, Distributed Key Management System (DKMS), Enterprise Key Management Facilities (EKMF), Trusted.

From scratch design and implementation of Imperva DAM DBF & WAF.

Installation and configuration of SOM, MX management server (MX160), gateway appliances (x1020, x2520, x4520, x6520 etc).

Installation and configuration of MX management Server in HA active/passive scenario.

Installation and configuration of GW clustering scenarios.

Upgrading and Patching of SecureSphere for MX and Gateway appliances.

Understanding of TCP/IP, HTTP/S, TCP, DNS. SSL, TLS, reverse proxy, SQL, Firewalls etc.

Understanding of DDL, DML, DCL commands.

DAM policy addition and modification according to customer requests.

DAM policy review and optimization.

Data masking knowledge of Dynamic and Static.

Knowledge of common of OWASP Top Ten Web Application and API vulnerabilities, and the ability to explain them to non-technical or non-security-oriented team members.

Demonstrated knowledge of maintaining web and database security rules and policies

Hands on experience with Linux based OS and basic troubleshooting tools that come with it.

Ability to document security governance processes and work instructions.

A strong customer/client focus with ability to manage expectations appropriately and provide superior customer/client experience and build long-term relationships.

Experience in below skills and any Cybersecurity Certifications are added advantages:

Database admin experience in SQL, MSSQL, DB2, Oracle etc.

Web Penetration Testing.

Cloud experience is a plus (AWS, Azure, GCP).

CISSP, IAPP, Security+, CEH, CC, SSCP etc

Qualifications

Any other Cybersecurity products implementation skills.

Bachelors degree from any decent affiliated University.