Oracle IT Compliance Manager in Austin, Texas

IT Compliance Manager

Preferred Qualifications

Position Summary

We're currently looking for an IT Compliance Manager to focus on the NetSuite platform.

Responsibilities:

  • Perform gap and readiness assessments for compliance obligations focused on security (i.e. PCI-DSS, ISO 27001, SOC 1, SOC 2, etc):

  • Agree objective, goals, and scope of the project with senior management. Obtain management support and commitment of resources for the assessment

  • Build audit programs, including audit plan, process, scope, procedures, questionnaires and schedules

  • Assess adequacy of existing policies, processes, and controls against the requirements of the compliance obligation

  • Work with management to draft and implement remediation plans to mitigate identified issues and risks, and improve processes and controls

  • If working with staff, review staff output, provide guidance on project next steps, and supervise and guide staff in working with internal customers

  • Perform periodic audits of IT projects, applications, operations and environments for adherence to corporate security policies and guidelines.

  • Serve as subject matter expert for security compliance obligations and liaise with executive and senior management, operational and application teams and Internal and External Audit to identify areas of concern, develop the relevant solutions, provide management response, track progress and drive actions to completion.

  • Assist in performing on-going periodic information security risk assessments and business impact analysis to ensure key business risks are properly identified and mitigated by management.

  • Enforce compliance with policies in conjunction with internal audit, developing, managing and monitoring security over business processes.

  • Maintain controls documentation with SMEs and ensure compliance with Internal and External Audit.

  • Provide guidance and advice to the organization with current information on related regulatory issues and compliance technologies.

  • Experience in data privacy an advantage but not required

Qualifications

  • Highly independent, with high ethical standards and integrity

  • Experience in program or project management

  • Experience and working knowledge of security related technology (e.g. Identity Management tools, Firewalls, etc.)

  • Working knowledge of ERP systems (e.g. NetSuite, PeopleSoft FDM and Oracle eBusiness)

  • 5-7 years’ experience in performing IT Audit/ IT Compliance assessments/ Gap assessments, ideally for PCI-DSS, ISO 27001, SSAE 16/ISAE 3402/SOC 1, SOC 2 or NIST 800.

  • In-depth knowledge and experience of PCI-DSS, ISO 27001, SSAE 16/ISAE 3402/SOC 1, or SOC 2 highly essential. Knowledge of NIST 800 an advantage

  • Experience with privacy requirements, such as Model Clauses, GDPR, and related security and privacy policies, processes, and regulations an advantage.

  • Effective communication and presentation skills

  • Experience dealing with all levels of management and across different teams, including managing conflicts

  • Exposure to cloud environment security standards and implementation an advantage

The job description above is the most relevant for this position. Disregard information below

Detailed Description and Job Requirements

Executes security controls to prevent hackers from infiltrating company information or jeopardizing e-commerce programs.

Researches attempted efforts to compromise security protocols. Maintains security systems for routers and switches. Administers security policies to control access to systems. Maintains the company

  • s firewall. Uses applicable encryption methods. Provides information to management regarding the negative impact on the business caused by theft, destruction, alteration or denial of access to information.

Job duties are varied and complex; independent judgment needed. May have project lead role. Prefer 5 years relevant experience and BA/BS degree.

Oracle is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans status or any other characteristic protected by law.

Job: Information Technology

Location: US-NC,North Car-Durham

Other Locations: US-TX,Texas-Austin

Job Type: Regular Employee Hire

Organization: Oracle