Oracle Regulatory Compliance Specialist- Reston OR Seattle only in Charleston, South Carolina
Assists and supports the organization in complying with, as well as the ongoing preparation, testing and monitoring of conformance to, the requirements of government regulations and/or regulatory agencies.
Performs evaluation of internal operations, controls, communications, risk assessments and maintenance of documentation as related to regulatory compliance and recommends appropriate changes. Conducts and facilitates internal and external audits to identify, evaluate, disclose and appropriately remedy risks and deficiencies. Coordinates the preparation of and may prepare document packages for regulatory submissions from all areas of company as well as for internal and external audits and inspections. May serve as point of contact for interactions with regulatory agencies for defined matters. Respond to security related requests and RFPs . Update and maintain internal and externally facing security documentation. Coordinate and facilitate 3rd party audit activities. Maintain and track required security training for the GBUS. Maintain and update security and compliance reporting. Facilitate vendor security assessments as needed. Manage security and compliance related projects for the GBUs.
Job duties are varied and complex utilizing independent judgment. Ability to travel. 5 plus years experience. BA/BS or advanced degree preferred. CISA, CISM, CISSP, CIPP desired. Experience with IT auditing and controls, preferable with SOX, SSAE 16 - SOC 1 & SOC 2, PCI compliance, NIST, DIACAP, FedRAMP, ISO 27001 & ISO 27002. Have an understanding of security standards and risk management. Excellent written and verbal communication skills. Ability to adjust and adapt to changing priorities in a dynamic environment. Technical acumen and the ability to understand and interpret technical specifications. Technical knowledge of Oracle Applications and Database and/or infrastructure components. Project Management Skills.
Oracle is an Affirmative Action-Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability, protected veterans status, age, or any other characteristic protected by law.
Primary responsibilities of this role will include:
Supports the maintenance of FedRAMP, DISA/DoD SRG and agency authorizations, drafting and compiling documentation packages, engages in audits and conducts analysis of results on a continuous basis;
Evaluates regulatory compliance requirements and engages with a variety of cross functional teams;
Key team member of engineering design and development of government cloud based systems;
Evaluates and provides reasonable assurance that risk management, control, and governance systems are functioning as intended and will enable the organization’s objectives and goals to be met;
Reports risk management issues and internal controls deficiencies identified directly to the Governance, Risk and Compliance Program and provide recommendations for improving the organization’s operations, in terms of both efficient and effective performance;
Evaluates information security and associated risk exposures;
A background in engaging in day-to-day FISMA/FedRAMP compliance operations, supporting continuous monitoring, assessment & authorization for U.S Federal Government and/or Department of Defense systems.
A strong working knowledge of FISMA, FedRAMP, NIST, and FIPS standards.
Strong working knowledge of DoD Cloud Computing SRG, RMF for DoD IT, and similar skills and experience.
Strong working knowledge of Cloud IT processes and Cloud IT infrastructure
5 years relevant experience
CISSP, CISA, CISM, OSCP, CEH or other DOD Directives 8570.1 Level 2 and Level 3 certifications
Experience using or analyzing results from vulnerability management tools such as Nessus, Qualys, Fortify or similar.
/As part of Oracle’s employment process candidates will be required to complete a pre-employment screening process, after a conditional offer has been extended./
Oracle is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans status or any other characteristic protected by law.
Job: *Business Operations
Title: Regulatory Compliance Specialist- Reston OR Seattle only
Location: United States
Requisition ID: 20000RUP
Other Locations: US-VA,Virginia-Reston, US-WA,Washington-Seattle