Principal TPM for Cloud Compliance

Description

Oracle Cloud Infrastructure (OCI) is building the next generation cloud to support demanding hyperscale and AI/ML workloads. The Cloud Compliance & Assurance org are the keepers of customer trust at OCI. We ensure that Oracle Cloud IaaS PaaS and SaaS services meet the high compliance standards that our customers expect.

We are looking for a driven curious and collaborative technical professional with a track record of raising the bar on the security and compliance of complex cloud and AI/ML services.

You will work with subject matter experts across Oracle to help define the security compliance and operational standards we should follow. You will work with engineering teams and ensure that our infrastructure and IaaS PaaS and SaaS services meet these standards. You will be expected to have deep expertise in cloud services AI/ML compliance cloud compliance and/or security. By leveraging this unique cross-section of skills you will guide engineering teams to build the right controls in their services. You will assess the infrastructure and services to make sure that our standards have been met and can be proved in external attestation.

Within the Cloud Compliance & Assurance org you will be part of the team thats responsible for Compliance Architecture Standards and Continuous Compliance. We partner with SMEs across Oracle to develop and maintain standards that engineering teams must meet and the architecture guidance they can follow to meet these standards. We provide guidance to the engineering teams and assess their products and services. You will contribute across all these workstreams and devise ways for us to accomplish our mission at cloud scale. Our org is critical to OCIs success and as a member of the team you will play a key role in enabling Oracle open new multibillion dollar markets.

Responsibilities

Responsibilities

Desired Skills and Experience

• Bachelors degree or equivalent ideally in a technical field.
• 10 years related technical experience.
• 5 years program management experience.
• Ability to prioritize manage and deliver on multiple projects simultaneously.
• Highly motivated and able to work against aggressive schedules and shifting business priorities.
• Strong bias for action and iterative delivery style.
• Superior communication skills (interpersonal verbal written presentation).
• Positive attitude team player self-starter.
• Knowledge of cloud architecture and services.
  • Cloud delivery models - IaaS PaaS and SaaS; hybrid and multi-cloud.
  • Shared responsibility models and architectures for various cloud delivery models.
  • Typical cloud service building blocks and best practices in building complex systems with them.
• Knowledge of cloud compliance.
  • Familiarity with standards and regulatory requirements such as ISO 42001 PCI-DSS FedRAMP HIPAA GDPR and or others.
  • Building Continuous Compliance in the cloud through verifiable controls and automation.
• Security best practices.
  • DevSecOps Secure SDLC AI/ML security cloud controls and common cloud vulnerabilities.
  • Building a culture of security and shifting security left.
  • Important security concepts cryptography identity AuthZ AuthN logging and alerting data protection etc.

Typical Activities

• Develop update and enforce security and compliance policies procedures and standards to align with evolving regulatory landscapes and industry best practices.
• Partner closely with engineering product security release management and compliance teams to ensure that security and compliance are integrated into the product development lifecycle.
• Develop and provide guidance on controls for AI/ML systems and ensure compliance with AI-specific frameworks like ISO 42001 or others.
• Create and present reports on compliance status risk posture and remediation efforts to senior leadership and stakeholders.
• Collaborate with audit management teams to ensure smooth and successful service audits.
• Develop and maintain clear documentation and guidance resources that helps Engineering teams.
• Devise processes and automation to deliver continuous compliance at cloud scale.

Qualifications
Disclaimer:

Certain US customer or client-facing roles may be required to comply with applicable requirements such as immunization and occupational health mandates.

Range and benefit information provided in this posting are specific to the stated locations only

US: Hiring Range in USD from: $97500 to $199500 per annum. May be eligible for bonus and equity.

Oracle maintains broad salary ranges for its roles in order to account for variations in knowledge skills experience market conditions and locations as well as reflect Oracles differing products industries and lines of business.
Candidates are typically placed into the range based on the preceding factors as well as internal peer equity.

Oracle US offers a comprehensive benefits package which includes the following:
1. Medical dental and vision insurance including expert medical opinion
2. Short term disability and long term disability
3. Life insurance and AD&D
4. Supplemental life insurance (Employee/Spouse/Child)
5. Health care and dependent care Flexible Spending Accounts
6. Pre-tax commuter and parking benefits
7. 401(k) Savings and Investment Plan with company match
8. Paid time off: Flexible Vacation is provided to all eligible employees assigned to a salaried (non-overtime eligible) position. Accrued Vacation is provided to all other employees eligible for vacation benefits. For employees working at least 35 hours per week the vacation accrual rate is 13 days annually for the first three years of employment and 18 days annually for subsequent years of employment. Vacation accrual is prorated for employees working between 20 and 34 hours per week. Employees working fewer than 20 hours per week are not eligible for vacation.
9. 11 paid holidays
10. Paid sick leave: 72 hours of paid sick leave upon date of hire. Refreshes each calendar year. Unused balance will carry over each year up to a maximum cap of 112 hours.
11. Paid parental leave
12. Adoption assistance
13. Employee Stock Purchase Plan
14. Financial planning and group legal
15. Voluntary benefits including auto homeowner and pet insurance

The role will generally accept applications for at least three calendar days from the posting date or as long as the job remains posted.

Career Level - IC4