Lead Data Security Engineer-Database Activity Monitoring

Who We Are

Join a team that puts its People First! Since 1889, First American (NYSE: FAF) has held an unwavering belief in its people. They are passionate about what they do, and we are equally passionate about fostering an environment where all feel welcome, supported, and empowered to be innovative and reach their full potential. Our inclusive, people-first culture has earned our company numerous accolades, including being named to the Fortune 100 Best Companies to Work For® list for ten consecutive years. We have also earned awards as a best place to work for women, diversity and LGBTQ+ employees, and have been included on more than 50 regional best places to work lists. First American will always strive to be a great place to work, for all. For more information, please visit www.careers.firstam.com.

What We Do

The Lead Security Engineer - DAM, will be responsible for designing, implementing, and leading the Database Activity Monitoring (DAM) function to ensure the security, integrity, and compliance of enterprise data assets. This role will focus on operationalizing DAM solutions, integrating them with broader security architecture, and enabling visibility into database activities across the organization. The engineer will collaborate with IT teams, business units, vendors, and auditors to ensure effective monitoring, alerting, and response mechanisms are in place for database environments. This role requires deep expertise in DAM technologies, database security controls, and regulatory compliance frameworks. The engineer will work closely with Security Architects to align DAM strategies with enterprise security architecture and risk management priorities.

What You'll Do

• Lead the design, deployment, and management of Database Activity Monitoring (DAM) solutions across diverse database platforms (e.g., SQL Server, MySQL, PostgreSQL).
• Define and implement policies for monitoring, alerting, and auditing of database activities to detect unauthorized access, data exfiltration, and policy violations.
• Collaborate with Security Architects to integrate DAM into the broader security architecture and ensure alignment with enterprise risk management strategies.
• Develop and maintain use cases, rules, and dashboards for DAM tools to support threat detection, compliance reporting, and forensic investigations.
• Partner with database administrators, application owners, and compliance teams to ensure DAM coverage and effectiveness across critical systems.
• Conduct technical risk assessments and security exposure analyses for database environments.
• Evaluate and recommend DAM technologies and vendors; lead proof-of-concept and implementation efforts.
• Automate DAM-related processes for alert triage, incident response, and reporting.
• Participate in security incident investigations involving database systems and contribute to root cause analysis and remediation planning.
• Provide technical leadership and mentorship to security analysts and engineers supporting DAM operations.
• Develop and maintain documentation, operational guidelines, and metrics for DAM program effectiveness.
• Support internal and external audits by providing evidence of DAM controls and activity logs.
• Participate in broader security initiatives including vulnerability management, encryption, identity management, and network security as needed.

What You'll Bring

Knowledge and Skills/Technology Used

• Hands-on experience with DAM platforms such as IBM Guardium, Imperva SecureSphere, SecuPI, or native database auditing tools.
• Strong understanding of database architectures, access controls, and query languages (SQL).
• Familiarity with data classification, data loss prevention (DLP), and compliance frameworks (e.g., SOX, HIPAA, PCI-DSS, GDPR).
• Experience with SIEM integration, log management, and incident response workflows.
• Working knowledge of UNIX/Linux, Windows Server, and network protocols relevant to database communications.
• Experience with encryption technologies, identity and access management (IAM), and privileged access controls.
• Generally requires a BS Degree in Computer Science, Information Security, Information Technology, or related field, or equivalent work experience.
• Minimum 8 years of information security experience, with at least 3 years focused on database security or DAM.
• Experience leading security engineering initiatives and managing cross-functional technical teams.

Salary Range: $126,100.00 - $168,100.00

This hiring range is a reasonable estimate of the base pay range for this position at the time of posting.  Pay is based on a number of factors which may include job-related knowledge, skills, experience, business requirements and geographic location.

Disclaimer
The above statements are intended to describe the general nature and level of work being performed by people assigned to this classification. They are not to be construed as an exhaustive list of all responsibilities, duties, and skills required of personnel so classified. All personnel may be required to perform duties outside of their normal work hours and/or responsibilities from time to time, as needed.

What We Offer

By choice, we don’t simply accept individuality – we embrace it, we support it, and we thrive on it! Our People First Culture celebrates diversity, equity and inclusion not simply because it’s the right thing to do, but also because it’s the key to our success. We are proud to foster an authentic and inclusive workplace For All. You are free and encouraged to bring your entire, unique self to work. First American is an equal opportunity employer in every sense of the term.

Based on eligibility, First American offers a comprehensive benefits package including medical, dental, vision, 401k, PTO/paid sick leave and other great benefits like an employee stock purchase plan.