Oracle IT Security Analyst 4 in Austin, Texas
IT Security Analyst 4
Cloud Security Analyst
Oracle Public Cloud is experiencing significant growth resulting in rapid expansion of the underlying infrastructure to support that growth. Providing security and compliance assurance for that infrastructure is critical. Oracle Cloud Operations plays a critical role in effectively and securely delivering best-of-breed cloud solutions to Oracle customers, spanning dozens of SaaS, PaaS, and IaaS products that generate more than 40 billion platform transactions daily.
Detailed Description and Job Requirements
We are looking for a Security Analyst to help us push the boundaries of what can be accomplished in both current and next generation of Oracle Cloud Services. The ideal candidate will have proven experience managing the engagement between compliance / regulatory teams and technical teams, translating technical and business language with ease. The Security Analyst role will drive critical change through our security organization across various products to strengthen our security posture within Oracle. As a member of our highly collaborative and motivated team, you will work with business stakeholders, project managers, and technical staff to deliver effectively against commitments.
Collaborate with senior and operational staff to gather and provide technical evidence of audit requests
Establish simple, repeatable evidence collection processes to help reduce churn within Cloud Security Operations.
Manage internal review and audit of our own internal security processes, procedures, and configurations to validate that we are complying with our own standards.
Manage vulnerability remediation for Cloud Security Operations.
Participate in identity / entitlement workflow approval and auditing processes. [JL1]
Work with compliance teams to translate regulatory requirements into existing security processes and technologies, pushing back on recommendations that are infeasible.
Simplify technical complexity associated with our rigorous controls, and use knowledge of technology capabilities / limitations to educate others.
Support automation of the evidence gathering process within our team.
Demonstrate flexibility and resilience in response to changing or ambiguous situations, directing changes through appropriate review and approval mechanisms.
Challenges and opportunities are plentiful in this role as you apply your knowledge in helping to secure the next generation of Oracle Cloud capabilities.
BS or MS degree or equivalent experience relevant to functional area with 2 years of related experience.
Regulatory & Compliance Qualifications
Understanding of and experience with government regulations including FedRAMP, US DoD, UK HMG, and AU IRAP.
Knowledge of and experience with PCI, HIPAA, and SSAE18 regulations.
Knowledge of industry methodologies around and experience with risk assessment, risk management, and risk mitigation.
Experience translating regulatory requirements into existing security processes and technologies.
Proven ability to identify gaps that may exist between regulations and technical controls and confidence to recommend and manage a course of action.
Knowledge of how technology works, appreciates its limitations, and has proven experience translating between technical and non-technical constituents.
Understands applications development, database and data management, and infrastructure capabilities and constraints.
Previous experience with Windows and Oracle Linux
Previous experience with various security systems such as SIEM, IDS, Vulnerability Scanners, Penetration Testing Servers , Taps, Proxy
Previous Network Operations, Business Analysis, Systems Administration and/or Software Development experience a plus
Leadership & Soft Skill Qualifications
Consistent sense of urgency and determination to meet commitments
Solid organizational skills, attention to detail, and multitasking capabilities.
Outstanding proactive communication skills: written, verbal, presentations.
Strong interpersonal and consulting skills to establish and maintain internal and external partnerships globally, negotiating risk against other business factors.
Self-driven, analytical, and results oriented with proven sound judgment.
Positive influence to lead through frequent ambiguity / uncertainty / change.
Business savvy including the ability to see and convey the big picture.
CISA certification is preferred.
Knowledge of industry security concepts / frameworks and additional regulatory standards such as ISO-27000 series, NIST, etc. is preferred.
Auditing experience is preferred and experience in government auditing is a bonus
CISSP or other infrastructure / security certifications are preferred.
Detailed Description and Job Requirements
Executes security controls to prevent hackers from infiltrating company information or jeopardizing e-commerce programs.
Researches attempted efforts to compromise security protocols. Maintains security systems for routers and switches. Administers security policies to control access to systems. Maintains the company’s firewall. Uses applicable encryption methods. Provides information to management regarding the negative impact on the business caused by theft, destruction, alteration or denial of access to information.
Leading contributor individually and as a team member, providing direction and mentoring to others. Work is non-routine and very complex, involving the application of advanced technical/business skills in area of specialization. Prefer 8 years relevant experience and BA/BS degree.
Oracle is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans status or any other characteristic protected by law.
Job: Information Technology
Location: US-CA,California-Redwood City
Other Locations: US-CO,Colorado-Denver, US-MT,Montana-Bozeman, US-MA,Mass-Cambridge, US-CA,California-Pleasanton, US-CA,California-Santa Clara, US-TX,Texas-Austin, US-WA,Washington-Bellevue
Job Type: Regular Employee Hire