Job DescriptionCome join the fastest growing Cloud organization with world-class engineering and laser focus on excellence.Oracle’s extensive enterprise customer base is looking for rock-solid cloud solutions that provide the same reliability and effectiveness that they have come to expect from Oracle. Oracle Cloud Infrastructure (OCI) provides highly cost effective and high performance IaaS & PaaS Cloud solutions to its customer and they come to expect industry-leading security and compliance programs, creating a stable and highly-effective foundation for their workloads and an infrastructure that meets their security and compliance needs.We are looking for a Regulatory Compliance Principal Specialist who is looking to grow their career in Cloud. You will be responsible for the support and implementation of scalable audit programs to support Oracle Cloud Infrastructure’s growth in regulated markets within the US and internationally.In this role you will create and coordinating documentation, tools, and processes for pre-audit readiness, audit testing, monitoring, and remediation activities. Start with supporting audits and grow to lead them.Career Level - IC4ResponsibilitiesFunctions include:Plan, manage, lead, and execute multiple audit programs within OCI with third-party auditors, specifically PCI assessments which include a review of control design with a focus on payment card compliance and security (PCI-DSS)Drive project scheduling, tracking, and communications up to the Director level independentlyReview audit evidence from the businesses within OCI and analyze for auditor consumptionCommunicate within the team autonomously and drive communication across partner teamsCollaborate with subject matter experts to refine operating processes to increase the value and scale of our audit programs and decrease the operational impact to OCIEvaluate the effectiveness of controls and corresponding evidence in alignment with PCI DSS framework requirementsConduct interactions with third party auditors (QSA) that exhibit control understanding and confidenceEffectively communicate audit engagement status to executive leadershipAbility to communicate in remote working environments over video, phone, email, and other toolsProvide clear expectations and direction to security and engineering teams within OCI on audit requirements and drive compliance gap remediation effortsProvide high quality, professional day-to-day execution of audit engagementsBuild, manage, and enhance the efficiency of audit programs as the business scalesThe ideal candidate will have the following skills:8+ years audit program management experience with either a “Big 4” accounting firm, or a mid-level accounting firm.4+ years of above experience in the IT or Cloud industry is preferredKnowledge of industry and regulatory frameworks is preferable, such as, SOC 1 & SOC 2, HIPAA, PCI, ISO Series, C5, CSA STAR, and HITRUSTProven experience in security, risk, and compliance, specifically PCI DSS.Hands-on practical experience delivering enterprise-level cybersecurity solutions and controls, specifically for PCI-compliant productsPractical cloud native experience with strong understanding of cloud computing architectureDemonstrates ability to identify problem areas in a program and build projects to correct, enhance, reduce the impact of those issuesProven ability to combine business acumen, technical acumen and process expertise to define client (internal/external) engagement and program executionProven ability to influence & gain buy-in at multiple levels, across divisions, functions and cultures; comfort working with executive level managementDemonstrated ability to achieve results through cross-functional, virtual teamsPossess ability to explain complex auditing topics to audiences with no auditing experienceAbility to prioritize, manage, and deliver on multiple projects simultaneously and partner with management in support of key initiatives and projectsStrong bias toward action, flexible, resourceful, and able to operate effectively within a dynamic, fast-paced environmentSuperior communication skills (interpersonal, verbal, presentation written, email, tickets, etc.)JIRA and Confluence experience strongly preferredDisplay a demonstrated ability to think broadly and strategicallyMaturity, judgment, negotiation/influence skills, analytical skills, and leadership skillsTeam leadership expertiseAttention to detail, proven analytical and problem-solving skillsBachelor’s degree or equivalent experiencePMP, PgMP, CISA, CISM, CISSP, CIPP, desiredPCI Professional Certification, PCI Security Standards Council Certifications, Qualified Security Assessor (QSA) preferredDisclaimer:Certain US customer or client-facing roles may be required to comply with applicable requirements, such as immunization and occupational health mandates.Range and benefit information provided in this posting are specific to the stated locations onlyUS: Hiring Range: from $87,000 to $178,200 per annum. May be eligible for bonus and equity.Oracle maintains broad salary ranges for its roles in order to account for variations in knowledge, skills, experience, market conditions and locations, as well as reflect Oracle’s differing products, industries and lines of business.Candidates are typically placed into the range based on the preceding factors as well as internal peer equity.Oracle US offers a comprehensive benefits package which includes the following:Medical, dental, and vision insurance, including expert medical opinionShort term disability and long term disabilityLife insurance and AD&DSupplemental life insurance (Employee/Spouse/Child)Health care and dependent care Flexible Spending AccountsPre-tax commuter and parking benefits401(k) Savings and Investment Plan with company matchPaid time off: Flexible Vacation is provided to all eligible employees assigned to a salaried (non-overtime eligible) position. Accrued Vacation is provided to all other employees eligible for vacation benefits. For employees working at least 35 hours per week, the vacation accrual rate is 13 days annually for the first three years of employment and 18 days annually for subsequent years of employment. Vacation accrual is prorated for employees working between 20 and 34 hours per week. Employees working fewer than 20 hours per week are not eligible for vacation.11 paid holidaysPaid sick leave: 72 hours of paid sick leave upon date of hire. Refreshes each calendar year. Unused balance will carry over each year up to a maximum cap of 112 hours.Paid parental leaveAdoption assistanceEmployee Stock Purchase PlanFinancial planning and group legalVoluntary benefits including auto, homeowner and pet insuranceThe role will generally accept applications for at least three calendar days from the posting date or as long as the job remains posted.About UsAs a world leader in cloud solutions, Oracle uses tomorrow’s technology to tackle today’s problems. True innovation starts with diverse perspectives and various abilities and backgrounds.When everyone’s voice is heard, we’re inspired to go beyond what’s been done before. It’s why we’re committed to expanding our inclusive workforce that promotes diverse insights and perspectives.We’ve partnered with industry-leaders in almost every sector—and continue to thrive after 40+ years of change by operating with integrity.Oracle careers open the door to global opportunities where work-life balance flourishes. We offer a highly competitive suite of employee benefits designed on the principles of parity and consistency. We put our people first with flexible medical, life insurance and retirement options. We also encourage employees to give back to their communities through our volunteer programs.We’re committed to including people with disabilities at all stages of the employment process. If you require accessibility assistance or accommodation for a disability at any point, let us know by calling +1 888 404 2494, option one.Disclaimer:Oracle is an Equal Employment Opportunity Employer*. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans’ status, or any other characteristic protected by law. Oracle will consider for employment qualified applicants with arrest and conviction records pursuant to applicable law.* Which includes being a United States Affirmative Action Employer
