Senior Development Security Analyst (REMOTE) - United States
Develops and performs programs and processes to reduce information security risk and strengthen Oracle’s security posture.
- Consult and guide individual products/services SPOCs with secure design, secure implementation, and release processes.
- Run security incidents and provide appropriate responses to customer inquiries about our security practices and security posture of our products and services.
- Oversee certifications and audits across all GIU - such as PCI, SOC, GDPR, etc.
- Participate in preparing and publishing scorecards for all major products and services to highlight compliance with Oracle Software Security Assurance standards and policies.
Supports the strengthening of Oracle’s security posture, focusing on one or more of the following: risk management; regulatory compliance; threat and vulnerability management; incident management and response; security policy development and enforcement; privacy; information security education, training and awareness (ISETA); digital forensics and similar focus areas
Risk Management:
Brings advanced level skills to assess the information security risk associated with existing and proposed business operational programs, systems, applications, practices and procedures in very complex, business-critical environments. May conduct and document very complex information security risk assessments. May assist in the creation and implementation of security solutions and programs.
Regulatory Compliance:
Brings advanced level skills to manage programs to establish, document and track compliance to industry and government standards and regulations, e.g. ISO-27001, PCI-DSS, HIPAA, FedRAMP, GDPR, etc. Researches and interprets current and pending governmental laws and regulations, industry standards and customer and vendor contracts to communicate compliance requirements to the business. Participates in industry forums monitoring developments in regulatory compliance.
Threat and Vulnerability Management:
Brings advanced level skills to research, evaluate, track, and manage information security threats and vulnerabilities in situations where in-depth analysis of ambiguous information is required.
Incident …
Hey, this job isn't fresh anymore!
Search Fresh JobsJob Profile
Regions Countries Benefits/Perks401(k) Savings and Investment Plan Commuter and parking benefits Comprehensive benefits package Dental Equity Flexible Spending Accounts Flexible work arrangements Generous Paid Parental Leave Health care and dependent care Flexible Spending Accounts Life Insurance Life insurance and AD&D Medical Medical, dental, and vision insurance Medical, dental, and vision insurance, including expert medical opinion Paid Time Off Short term disability and long term Short term disability and long term disability Supplemental life insurance
SkillsDigital Forensics Incident Management Oracle Privacy Regulatory Compliance Research Risk Management Security Incident Response
Tasks- Mentor and train team members
FedRAMP GDPR HIPAA ISO 27001 PCI PCI DSS
TimezonesAmerica/Anchorage America/Chicago America/Denver America/Los_Angeles America/New_York Pacific/Honolulu UTC-10 UTC-5 UTC-6 UTC-7 UTC-8 UTC-9