Security and Privacy Compliance Manager

Solo para miembros registrados
Valladolid
EUR 60.000 - 90.000
Descripción del empleo

Are you a creative person who loves a challenge? Solve the complex puzzles you’ve been dreaming of as our Security and Privacy Compliance Manager. If you have a passion for innovation in tech, we want you on our team! Thrive in this crucial role!

Oracle is a technology leader that’s changing how the world does business, and we’re looking for experienced people to join our growing global compliance team. This role will provide opportunities to work on audit, risk management, consulting, and governance, collaborating with compliance professionals from diverse backgrounds.

This position supports the Security and Privacy Compliance Department by establishing and maintaining compliance programs such as SSAE 18 (SOC 1), SOC 2, PCI DSS, ISO 27K, and related security policies and processes. The role involves researching compliance requirements, performing or managing assessments, and documenting findings for management reports. Candidates should have extensive experience in compliance, audit, project management, security, privacy, and software development lifecycle methodologies. Effective coordination and communication with prospects, customers, process owners, auditors, and management at all levels are essential.

Responsibilities :

  • Perform security and privacy compliance assessments
  • Manage security and privacy compliance projects
  • Design remediation plans with process owners
  • Assist in building compliance programs
  • Consult on business process re-engineering
  • Review work of senior and junior analysts

Qualifications :

The ideal candidate will have experience in IT compliance, audit, SDLC, and security standards in a SaaS or cloud environment.

  • Possess at least a Bachelor's or College Degree in Finance, Accountancy, Banking, or equivalent.
  • Have 5-8 years of experience in IT Audit, Security, Risk, or Privacy Compliance.
  • Hold at least one certification : CISA, CRISC, CISM, CISSP, CIPM, CIPP, CIPT; CPA considered.
  • Hands-on knowledge of SOX ITGC, SSAE 18 (SOC 1), or ISO 27K.
  • Experience with PCI DSS, HIPAA, Data Privacy, and related policies is advantageous.
  • Experience with security technologies such as Identity Management tools and Firewalls.
  • Understanding of ERP systems security and privacy standards, e.g., NetSuite, PeopleSoft, Oracle eBusiness.
  • Exposure to cloud environments is a plus.

J-18808-Ljbffr