Senior Principal Program Manager – Chief of Staff to the CISO, Oracle Health & Global Industry Units (GIUs)

Description

Oracle Health is seeking a forward thinking and operationally strong Senior Principal Program Manager to serve as Chief of Staffto theChief Information Security Officer (CISO) for Oracle Health and Global Industry Units (GIUs). This position is a high-impact role within a complex and fast-moving environment where technology cybersecurity compliance and healthcare operations intersect.

As Chief of Staff you will act as an extension of the CISO enabling focus on strategic priorities by leading core business operations program execution and stakeholder engagement. Youll provide oversight across key initiatives own the rhythm of the business represent the CISO in cross-functional forums and drive clarity accountability and execution excellence across the security organization.

Key Responsibilities:

• Strategic Planning & Alignment
  • Partner with the CISO to define monitor and drive strategic objectives OKRs and high-priority initiatives across the security portfolio.
  • Connect dots across workstreams to ensure alignment between security strategy and Oracle Healths broader business goals.
• Business Operations & Program Leadership
  • Own and optimize key business operations such as workforce planning budget coordination procurement executive reporting and RoB cadences.
  • Drive effective execution of complex cross-functional programsespecially in the healthcare security spacebalancing near-term delivery with long-term vision.
  • Ensure accountability and progress tracking across core cybersecurity initiatives.
• Healthcare & Regulatory Acumen
  • Bring strong experience in healthcare operations and technology to bear on security programs understanding the nuances of integrating EMRs clinical workflows and regulated environments.
  • Help ensure alignment with compliance privacy and audit requirements relevant to healthcare and other GIUs.
• Executive Communications & Representation
  • Prepare briefing materials executive presentations and high-impact communications for the CISO.
  • Represent the CISO in key meetings when necessary helping to drive decisions resolve blockers and steward key relationships.
• Process Optimization & Performance Measurement
  • Establish value-based KPIs and reporting mechanisms to track business and security performance.
  • Lead continuous improvement efforts identifying and resolving inefficiencies in how the security organization operates.
• Cross-Functional Engagement & Influence
  • Foster strong relationships across Oracle Health OCI and the broader Oracle enterpriseincluding product legal compliance privacy HR and business unit partners.
  • Help align efforts across federated security teams and ensure Oracle Health security remains integrated and scalable.

Ideal Candidate Profile:

• 810 years of experience in program management business operations or cybersecurity leadershippreferably with direct exposure to healthcare or highly regulated industries.
• Proven ability to lead through influence manage multiple stakeholders and drive clarity in ambiguity.
• Comfortable representing senior leaders driving change and making decisions on behalf of executives.
• Exceptional communication executive presence and strategic thinking.
• Proficiency in metrics development performance tracking and data-driven decision-making.
• Experience working across global matrixed organizations and complex technology landscapes.

Why This Role Matters:

Qualifications
Minimum of 12 years related experience in an information security role supporting security programs and security engineering/architecture in complex enterprise environments. Hands on experience with enterprise security architecture engineering and implementation required.
Knowledge of compliance program security controls like ISO 27001 SOC 2 HITRUST and FedRAMP as applied to cloud SaaS PaaS and IaaS operations.
Familiarity with SDLC principles and scripting & programming languages (such as Terraform Python and Ruby).
Expert level knowledge of: Cloud architecture and security principles. Risk Management Frameworks. *nix and Windows system administration. Experience with logging and log analysis.
Preferred but not required qualifications include:
Bachelor-level university degree in a relevant field from an accredited university or equivalent.
Expert level knowledge of web technologies middleware database OS firewalls network communication protocols and methods.
Knowledge of database security principles.
Strong knowledge of encryption technologies and architectures.
Experience with identity management principles and technology.
Experience developing security architecture strategies that align to enterprise architecture strategy and the companys business strategy.
Current CISSP CISM or the equivalent.