Security Architect, Analytics Security & Compliance - Oracle (California)

Provides advanced level skills and knowledge in the design and review of secure networks, applications, systems, infrastructure, environments and security systems, ensuring requirements are in line with Corporate information security policies and processes, as well as Line of Business (including Cloud) security standards.

Provides advanced level skills and knowledge in the design and review of secure networks, applications, systems, infrastructure, environments and security systems, ensuring requirements are in line with Corporate information security policies and processes, as well as Line of Business (including Cloud) security standards. Evaluates existing and proposed technical architectures for security risk, provides advanced technical advice to support the design and development of secure architectures and identifies security controls to mitigate those risks. Provides technical leadership regarding security protocols related to all aspects of enterprise and cloud computing. Evaluations of security architecture may include design assessment, risk assessment, threat modeling and code review. Designs automated toolsets for implementing security controls, and monitoring the security of networks, systems and applications. Identifies and prioritizes security design issues and vulnerabilities. Conducts security research regarding threats, troubleshoots issues and manages upgrades on security platforms. Provides advanced level advice on data security issues, compliance, and privacy requirements. May train and mentor other staff.

Minimum of 8 years related experience in an information security role supporting security programs and security engineering/architecture in complex enterprise environments. Hands on experience with enterprise security architecture, engineering and implementation required. Knowledge of compliance program security controls, like ISO 27001, SOC 2, HITRUST, and FedRAMP, as applied to cloud SaaS, PaaS and IaaS operations. Familiarity with SDLC principles and scripting & programming languages (such as Terraform, Python, and Ruby). Strong knowledge of: Cloud architecture and security principles. Risk Management Frameworks. **nix and Windows system administration. Experience with: Logging and log analysis. Identity management principles and technology. Preferred but not required qualifications include: Bachelor-level university degree in a relevant field from an accredited university, or equivalent. Strong knowledge of web technologies, middleware, database, OS, firewalls, network communication protocols and methods. Knowledge of database security principles. Knowledge of encryption technologies and architectures. Expert level experience in evaluating and assessing security threats across a variety of environments and industries. Expert level understanding of secure networking principles, routers, switches and load balancers.

*This is a remote/office based position which may be performed anywhere in the United States except for within the state of Colorado.*

*Oracle is an Affirmative Action-Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability, protected veterans status, age, or any other characteristic protected by law.*

*Department Description:*Oracle Analytics organization plays a critical role in delivering and supporting best-of-breed cloud solutions to Oracle customers.

The Service Excellence team at Oracle Analytics Cloud (OAC) is on the verge of transforming the development paradigms at the 42 year old software giant. With the world moving towards the Cloud, Oracle is at the forefront with tremendous portfolio of Cloud offerings.

However, this transformation happens not just at the product level, but also the process of developing, deploying, and operating these products in the Cloud. Using a combination of cutting-edge technologies, continuous process improvements and innovative business transformation methodologies, a small group of us are blazing the trail on the Service Excellence philosophy.

*Brief Posting Description*: We are currently looking for a highly motivated architect with security knowledge to work in the Oracle Analytics Security team. This person would be involved in architecture, design, prototype and development of the security aspects of Oracle Analytics services releases.

You should be a security-minded leader who can work with a development teams as they design new capabilities to ensure that security requirements are clear and the design implements the necessary controls to increase security posture for the service. As architect you will require a firm grasp on security technologies, trends in cloud security practices, and ability to communicate complex technical security requirements clearly to the development team with whom they work. You are experienced and understand how to design test specifications for the feature they support during architecture design so that security requirements can be tested with automated tooling to insure against regressions.

*Qualifications and experience:*BS (Computer Sc., Electronics or Electrical Eng)

A minimum of 10 years of experience with at least 5 years in Cloud technologies is required. Experience in architecture, design, deployment and handling of standard security practices and security aspects of industry standard external audit compliance is required.

* Experience as a security leader for a cloud product or set of cloud services, Familiarity with PaaS and SaaS.

* Experience architecting security for products or services operating in a cloud environment(Azure, AWS, bonus OCI)

* Experience operating within and supporting a security assurance and assessment program

* Concepts of multi-tenancy, cloud security and virtualization

* Expertise in User, Group and Password Management, OAuth, Cloud SSO, Strong Authentication, Identity Provisioning, Identity Governance, Privileged Access and Identity services.

* Expertise in encryption and key management technologies, deployment methodologies, and security standards compliance (STIG, FedRAMP, PCI-DSS) / certification process.

* Expertise on operating systems and databases from a security perspective

* Network security experience for LAN/WAN technologies, TCP/IP Protocols, IP Routing, 802.11 standards and protocols. Security VPN/Firewalls and software-defined networking experience is an advantage

* Ability to design large, scalable systems for enterprise customers with focus on security

* Competency in programming with Java, PERL or Python and static security analysis using tools like Fortify etc.

* REST architecture, programming and security practices

* Working knowledge of relational databases and administration - Oracle product knowledge preferred, Exadata knowledge is desirable

*Responsibilities:*

Work on design and architecture for features on Cloud Platforms, which includes but may not be limited to the following:

* Work closely with senior developers and other architects as well as Product Management, IT and Operations teams for architecting, designing and developing Database Cloud products from perspective of security areas

* Ensure that security requirements are met by the architecture chosen during the design phase of new projects and features

* Work with internal security team including corporate security architecture leads and database security leads for service architecture, implementations and approvals

* Help establish new and update existing security standards and programming practices for internal service development & service security operational processes

* Work with development and operations for security issues review and resolution

* Development contributions to projects to deliver secure, scalable, extensible and differentiated Platform-as-a-Service on the Cloud

* Ability to lead architecture discussions and security assessments related to software services in a cloud environment

o Coordinate meetings between IT stakeholders and drive adoption of improved security solutions

o Identify gaps and weaknesses in proposed designs, identify compensating controls and approve remediation planning

o Advocate and architect new security requirements and solutions for next generation cloud capabilities and services

o Collaborate with other developers, engineers, architects, and compliance analysts to harden complex PaaS, offerings

* Experience working with regulated environments covered by PCI, HIPAA, and FedRAMP

o Working knowledge of PCI control and requirements

o Working knowledge of HIPAA controls and requirements

o Working knowledge of FedRAMP controls and requirements

Duties and tasks are varied and complex, requiring independent judgment. Fully competent in own area of expertise. May have project lead role and/or supervise lower level personnel. BS or MS degree or equivalent experience relevant to functional area. 15 years of software engineering or related experience.

*Oracle is an Affirmative Action-Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability, protected veterans status, age, or any other characteristic protected by law.*

**Job:** **Information Security Engineering*

**Organization:** **Oracle*

**Title:** *Security Architect, Analytics Security & Compliance*

**Location:** *United States*

**Requisition ID:** *200011P1*



* This article was originally published here

Job Listing

Show more

Popular posts from this blog

Product Manager - Facebook (California)

Senior Assessment Specialist - English Language Arts - Pearson (California)

Food Service Foreman - Army & Air Force Exchange Service (California)

Retail Security Officer - $500 sign on bonus - Allied Universal (California)

Studio Attendant / Housekeeping - Solage Calistoga (California)