Consulting Security Lead
Oracle
- Bangalore, Karnataka
- Permanent
- Full-time
- Five+ years technical and/or code development background sufficient to allow the CSL to knowledgeably communicate with and monitor the training and compliance activities of division CSS personnel and project code developers
- Project or program management experience
- Four+ years in roles that provided significant exposure to IT security standards and/or compliance activities
- Good knowledge of cloud technology and security with exposure to Oracle products
- Excellent communication and people management skills
- Excellent cross-LOB collaboration skills
- Provides Security Assurance/OSSA program oversight & leadership within the division/region
- The CSL is responsible for leading the security compliance effort within their division/region
- Motivating the organization to adhere to security assurance practices.
- The CSL works with Global Product Security (GPS), Security Program Management (SPM) to evaluate compliance with OSSA for Consulting standards
- The CSL is responsible for ensuring that all activity is compliant with all security assurance procedures
- Arranges for selection, training, management, and assignment to projects of Consulting Security Specialists (CSS) along with PM
- Single point of contact and update status to divisional/regional management and SPM
- Coordinate changes to bid preparation to include required Security Assurance labor hours
- Mentor and train consulting security specialist, bid and project teams on the security assurance requirements
- Coordinate Security Assurance communications:
- Messaging: keep security to-of-mind with the field
- Promote & support CSL/CSS community
- Spread the word in other professional communities inside organization
- Keep division management & GPS up to date on rollout progress
- CISSP, CSSP, CSSLP, CISM, CISA, CIPP, CCSK, CEH or other equivalent certification. Any one of these is mandatory
- Experience managing security incidents and vulnerabilities through their life cycle.
- Knowledge of secure software design principles and the software development life cycle.
- Experience with at least 1 or more of the vulnerability scanning and testing tool (Qualys, Burp Suite, Appspider etc.).
- Which includes being a United States Affirmative Action Employer