Oracle Security Analyst - Compliance Support in Ashburn, Virginia

Executes security controls to prevent hackers from infiltrating company information or jeopardizing e-commerce programs.

Researches attempted efforts to compromise security protocols. Maintains security systems for routers and switches. Administers security policies to control access to systems. Maintains the company*s firewall. Uses applicable encryption methods. Provides information to management regarding the negative impact on the business caused by theft, destruction, alteration or denial of access to information.

Job duties are varied and complex; independent judgment needed. May have project lead role. Prefer 5 years relevant experience and BA/BS degree.

Oracle is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans status or any other characteristic protected by law.

Security Analyst Compliance Support

The Oracle SaaS Compliance team is responsible for securing privacy and compliance for the enterprise-grade software services on behalf of Oracle s 25,000 customers.

-Responsible for managing the portfolio of enterprise grade certifications processing over 60 billion transactions per day.

-Develops and executes multi-year strategies designed to maintain and expand the certification posture of Oracle s SaaS services.

-Partners closely with peers, developers, and customers to ensure our SaaS products continue to comply with ISO 27001, ISO 27017, ISO 27018, IRAP, CSA Star, GDPR and similar.

We are looking for a Security Analyst Compliance Support person to assist in prioritization and executing compliance workloads. The primary focus of this role will be to support the continual improvement of Oracle Cloud s certified Information Security Management System and working closely with the compliance team.


-Enhance the documentation for the Information Security Management System (ISMS)

-Maintain confluence pages that support the ISMS

-Engage with compliance team to ensure the control narratives are fully populated and maintained.

-Review internal Oracle policy and ensure documentation aligns accordingly

-Communication and reporting (strategy and execution).

-Plan, schedule, and monitor compliance efforts from inception through delivery.

-Template creation to streamline workload.

oRisk Treatment Plan (RTP)

oStatement of Applicability (SOA)

oCorrective and Preventive Action plans (CAPA)

oAssessment of control design and operating effectiveness

oInternal Audit and Management Review reports

-Assessment of control design and effectiveness

-Follow up on the ISMS continual improvement process, track maturity and roadmap


-Compliance/Audit experience 3-4 years;

-Understanding of compliance frameworks which may include ISO 27001, ISO 27017, ISO 27018, CSA Star;

-Experience of working with or as part of an Internal Audit function;

-Excellent experience of stakeholder engagement;

-Well-developed communication and interpersonal skills;

-A positive attitude towards work and able to keep motivated with little or no supervision;

-Background in Information Security with good working knowledge of Information Security principles;

-Experience in developing and documenting Information Security Policies, Standards and Processes.

Job: *Information Technology

Organization: *Oracle

Title: Security Analyst - Compliance Support

Location: CA,California-Redwood City

Requisition ID: 190006V4

Other Locations: United States, US-WA,Washington-Seattle