Primary responsibilities and functions include:

Serves as subject matter expert with regard to compliance operations within the Oracle Cloud Infrastructure, based on strong knowledge of US Government authorization processes. such as FISMA, FedRAMP and DoD Cloud Computing; Evaluates regulatory compliance requirements and engages with a variety of cross functional teams in support of threat and vulnerability management; Supports the maintenance of regulatory compliance authorizations, drafting and compiling documentation packages, engages in audits and conducts analysis of results on a continuous basis; Evaluates information security and associated risk exposures; provides reasonable assurance that risk management, control, and governance systems are functioning as intended and will enable the organization’s objectives and goals to be met; Performs analysis of vulnerability scan results to identify trends, assess severity, and prioritize remediation efforts based on risk Experienced in generating executive level and detailed reports and summaries of vulnerability scan findings and presenting them to stakeholders to inform risk based decision-making Primary contact for interfacing with government entities to present security posture or to understand and communicate with customers regarding their specific requirements; Maintain awareness of evolving trends and current state of relevant compliance programs to integrate process improvements in existing activities Reports risk management issues and internal controls deficiencies identified directly to the Governance, Risk and Compliance Program and provide recommendations for improving the organization’s operations, in terms of both efficient and effective performance.

Career Level - IC4