IT – Security Specialist V (Database Security & Governance)

<p><strong>IT – Security Specialist V (Database Security & Governance)</strong></p><p><strong>Work Environment</strong></p><ul><li>Hybrid structure — <strong>currently 2 days onsite, moving to 4 days onsite in 2026</strong></li><li><strong>Anchor Day:</strong> Thursday</li><li><strong>Primary Address:</strong> 66 Wellington St W, Toronto</li><li><strong>Satellite locations acceptable:</strong> Scarborough, Mississauga, Markham</li></ul><p><br></p><p><strong>Role Overview</strong></p><p>This role focuses on <strong>database security governance</strong> across large enterprise infrastructure environments. The specialist will enforce enterprise security frameworks and methodologies, evaluate exceptions, and ensure alignment with security policies and standards.</p><p><strong>Key Responsibilities</strong></p><ul><li>Oversee, monitor, and enforce enterprise technology control and information-security frameworks</li><li>Participate in cross-functional security initiatives, offering risk insights and guidance</li><li>Identify improvement opportunities across processes and control frameworks</li><li>Build and update <strong>TSS / STIG standard documentation</strong> and other process control documents</li><li>Review and validate <strong>database security control exception requests</strong></li><li>Partner with business teams to ensure <strong>remediation plans and deadlines are met</strong></li><li>Contribute to a strong risk-aware and security-first culture across stakeholders</li><li>Stay current with trends, analytics tools, and modern database security best practices</li></ul><p><strong>Must-Have Qualifications</strong></p><p>✓ <strong>10+ years in Information Technology</strong> — ideally within financial services or consulting</p><p>✓ Hands-on experience with <strong>database security administration or governance</strong></p><p>✓ Strong working knowledge of:</p><ul><li>Microsoft SQL Server</li><li>Azure PaaS DBs</li><li>Oracle</li><li><em>(bonus exposure to MongoDB, PostgreSQL, DB2, MySQL — not all required)</em></li><li>✓ Understanding of:</li><li><strong>NIST frameworks</strong></li><li>Configuration drift & vulnerability management</li><li><strong>Qualys</strong></li><li>✓ Excellent written and verbal communication skills</li><li>✓ Demonstrated ability to work independently with minimal supervision</li><li>✓ Proven strength in research, analysis, documentation, and problem-solving</li></ul><p><strong>Preferred / Nice-to-Have</strong></p><ul><li>Information Security certifications or accreditations</li><li>Previous experience managing database-security BAU in complex infrastructure environments</li></ul><p></p>