Vacature

Database Security Engineer

Antwerpen

Solliciteer

The objective of this role is to strengthen and safeguard the security of critical database platforms, both on-premises and in the cloud. The Database Security Engineer is responsible for designing, implementing, and continuously improving security measures related to access management, encryption, logging, monitoring, and secure-by-design data processes.

Responsibilities

Database Hardening & Platform Security

  • Harden database platforms (SQL, NoSQL, and cloud-native databases)
  • Implement security standards and best practices for configuration, patch management, and lifecycle management
  • Perform risk assessments and translate findings into concrete technical security measures

Access Control & Identity Security

  • Strengthen access management, including RBAC, least-privilege principles, and privileged access models
  • Integrate identity and access management processes with IAM platforms and cloud security controls
  • Establish secure processes for service accounts, secrets, and key management

Encryption, Logging & Monitoring

  • Implement and optimize encryption mechanisms (data at rest, data in transit, and key management)
  • Deploy centralized logging and auditing capabilities for database activities
  • Integrate database telemetry with SIEM/SOC platforms for detection, alerting, and forensic investigations

Secure-by-Design Data Processes

  • Embed security into platform and data processes, including CI/CD, provisioning, backup, and recovery
  • Advise on secure data flows, data classification, and data minimization
  • Support platform teams and DBAs in securely onboarding new databases and workloads

Collaboration & Stakeholder Management

  • Work closely with DBAs, platform teams, security teams, and cloud architects
  • Act as the subject matter expert and trusted advisor for data owners and application teams
  • Clearly communicate risks, business impact, and required mitigation measures to both technical and non-technical stakeholders

Required Knowledge & Experience

  • Extensive experience securing database environments in both on-premises and cloud platforms (Azure, AWS, GCP)
  • In-depth knowledge of SQL and NoSQL databases, database architecture, and data security principles
  • Experience with encryption, key management, auditing, monitoring, and incident response for database platforms
  • Strong background in Identity and Access Management (IAM), privileged access management, and secure-by-design engineering
  • Ability to analyze complex data processes and translate them into robust security solutions
  • Excellent communication skills, a proactive mindset, and the ability to drive security improvements across multidisciplinary teams

Expected Outcome

A demonstrably strengthened database security landscape in which access management, encryption, monitoring, and data processes have been structurally enhanced, ensuring that critical data is managed and protected according to secure-by-design principles.