Oracle
Location
Hyderabad | India
Job description
Overview Oracle Global Service Center (GSC) is a unit within oracle that establishes long-term relationships with many of Oracle's customers through annuity-based service contracts and project-based one-time services. It is an offshore Hub that will cater to the needs of all Service entities across Oracle globally. GSC team sells from a broad IT-services portfolio in both the fixed price and T&M basis. GSC services are typically requested by large Oracle customers that require the utmost attention to real mission-critical applications and processes. GSC covers the majority of large-scale Oracle customers.
Oracle Global Service Center provides unmatched, tailored support that ensures organization’s Oracle technology investments deliver the cutting-edge innovation and performance your business requires to compete, all while coexisting within your IT environment. We ensure that our customers get the maximum value from their investment in Oracle Products and Services. This consolidation exercise and the associated scale brings in many benefits to Oracle as well: As a Center for Innovation, make quicker progress on Tooling & Automation As a Center of Expertise, efficiently build scalable solutions Effective offshore hiring through centralized intake and growth plans Reduced attrition through better growth opportunities for our team This change will mean increased work diversity, improved growth opportunities and an enriched learning environment. Description What You’ll Do Are you a creative person who loves a challenge? Solve the complex puzzles you’ve been dreaming of as our Consulting Security Lead. If you have a passion for innovation in tech, we want you on our team! Thrive in this crucial role. Whether you’re onsite or sharing your expertise via the cloud, you’ll deliver top-class support and inspire customer loyalty. As a Consulting Security Lead, you will: Responsible for Oracle Software and Security Assurance (OSSA] compliance of any design, configurations, data migrations, integrations or custom coded modules/reports driven by Oracle Consultants as part of service delivery Follow and completes programs and processes to reduce information security risk and strengthen security posture Supports the strengthening of project security posture, focusing on one or more of the following: risk management; regulatory compliance; threat and vulnerability management; security policy enforcement; privacy; security education and similar focus areas Risk Management: Assesses the information security risk associated with respect to consulting service delivery and solution deployment. May assist in formulation of mitigation options Security Planning: Ensure project security activities and assurance review are planned in all the projects in the Division Design Review: Help PM and other security staffs to perform security design review of solution in scope and provide recommendations Regulatory Compliance: Ensure projects are in compliance to industry and government standards and regulations, e.g. ISO-27001, PCI-DSS, HIPAA, FedRAMP, GDPR, etc Threat and Vulnerability Management: May evaluate and track information security threats and vulnerabilities related to solution delivered to the customers Other areas of focus may include duties managing Security Education, Training and Awareness programs, compile’s information and reports to management Works with Global Product Security (GPS), Security Program Management (SPM) to evaluate compliance with Oracle Software and Security Assurance (OSSA) for Consulting standards Responsible for ensuring that all activity is aligned with all security assurance procedures Single point of contact and update status to divisional/regional management and SPM Coordinate changes to bid preparation to include required Security Assurance labor hours Mentor and train consulting security specialist, bid and project teams on the security assurance requirements Coordinate Security Assurance communications, i.e. keep division management & GPS up to date on rollout progress Required Skills/Experience What You’ll Bring You have that rare combination—a sharp technical brain and a head for business. You’ll use this to help customers achieve real-world success with our products. We also look for: Minimum of 11 years’ experience in information systems, development, consulting or related fields, 4+ years of which must be from at least one of the following: Information security risk management; information security program management; Industry/Government security compliance program management (ISO-27001, GDPR, HIPAA, FedRamp, etc.); threat and vulnerability management; security policy development and enforcement; privacy, information security education, training and awareness (ISETA), information security solutions development, etc. required Bachelor-level university degree in a relevant field from an accredited university or equivalent CISSP, CSSP, CSSLP, CISM, CISA, CIPP, CCSK, CEH or other equivalent certification. Any one of these is required Experience managing security incidents and vulnerabilities through their lifecycle Knowledge of secure software design principles and the software development life cycle Experience with at least 1 or more of the vulnerability scanning and testing tool (Qualys, Burp Suite, Appspider etc.)Job tags
Salary
