Senior Information Security Compliance Administrator
Bucharest, Romania
8 zile în urmă
Senior Information Security Compliance Administrator-1900018Z

Preferred Qualifications


Responsible for monitoring and supporting includingISO 27001, SSAE 18 SOC 2, FedRAMP, HIPPA or PCI-DSS. The Information Security Compliance Administratoris expected to champion the upkeep of certification throughout the business,working with others to ensure documentation is kept up-to-date and processesand policies are appropriate and well utilized.


Support and Monitor compliancecertifications including FedRAMP

Reporting on ISMS performance

Deliver sound know-how andknow-what to the Construction and Engineering Global Business Unit (CEBGU) informationsecurity and business continuity projects

Design, develop and maintaininformation security documentation

Management of document reviews andapproval workflows

Collaboration with regionalbusiness units to ensure practical plans are in place

Manage and monitor progressagainst commitments for completion of remediation activities and action items

Support, facilitate and engagewith business teams during certification audits

Maintain business relationshipswith interested parties on information security requirements

Organize, integrate and buildsynergy on compliance programs for process and project maturity objectives to facilitatecompliance to various statutory, regulatory, contractual, standard requirements

RequiredSkills & Experience

Working knowledge of corporate information security in an IT andITES environment

Working knowledge of production information system in a globalSaaS environment

Knowledge of standards and requirements with applicationsecurity

Knowledge of SIEM technologies and reporting

Knowledge and expertise in disciplines/ business functions andprojects of risk, information security, business continuity, quality andenvironment management

Knowledge and expertise of GRC processes

Experience transitioning security documentation to operationalteams

Implementation and audit certifications including ISO 27001,SSAE 18 SOC 2, FedRAMP, HIPPA or PCI-DSS

Experience with Risk Management frameworks

Desired Skills and Experience

Familiarity with web related technologies (Web applications, WebServices, Service Oriented Architectures) and of network/web related protocols

Understanding of security systems, including firewalls,intrusion detection systems, anti-virus software, authentication systems, logmanagement, content filtering, etc.

Fundamental Understanding of the OWASP(Open Web Application Security Project) top10



Accountability - Holds self and others accountable forhigh-quality and timely outcomes by determining objectives and prioritisingwork effectively. Complies with established control systems and rules acceptingresponsibility for mistakes and giving credit to others for their contributionsand achievements.

Building a vibrant CEGBU culture - Defines organizational cultureby practising espoused values and behaviours promoting inclusion and equity forall CEGBU staff and associates

Client focus - Makes clients and their needs a primary point ofaction, developing and sustaining productive client relationships

Innovation - Generates creative solutions, trying different andnovel ways to deal with opportunities and problems

Integrity - Maintains social, ethical and organizational norms,adhering to and promoting codes of conduct and ethical principles


Continuous learning – Identifies new areas for developmentcreating and taking advantage of learning opportunities.

Problem solving – Identifies issues and their root causes andimplement solutions.

Quality orientation – Accomplishes tasks by considering allareas involved, paying attention to detail, process and outcomes, monitoringissues for extended periods as required.

Technical knowledge – Applies knowledge and experience oftechnical/professional field appropriately.

Decision making - Identifies issues and opportunities, takingaction consistent with available data and anticipating likely outcomes.

Collaboration - Works effectively and cooperatively,establishing and maintain good working relationships.

Communicating with Impact - Expresses thoughts, feelings andideas in a clear, succinct and compelling manner, adjusting language to engagethe audience effectively

Information monitoring – Sets up ongoing procedures tofacilitate the collection and review of external information relevant to CEGBU andthe activities in it.

Risk mitigation – Identifies opportunities for improvements, evaluatingand mitigating risk to CEGBU.

Facilitating Change – Encourages innovative approaches toaddressing opportunities and problems, planning and driving the implementationand acceptance of change.

Detailed Description and Job Requirements

Executes security controls to prevent hackers from infiltrating company information or jeopardizing e-commerce programs.

Researches attempted efforts to compromise security protocols. Maintains security systems for routers and switches. Administers security policies to control access to systems. Maintains the company*s firewall. Uses applicable encryption methods. Provides information to management regarding the negative impact on the business caused by theft, destruction, alteration or denial of access to information.

Job duties are varied and complex; independent judgment needed. May have project lead role. Prefer 5 years relevant experience and BA/BS degree.

As part of Oracle's employment process candidates will be required to complete a pre-employment screening process, prior to an offer being made. This will involve identity and employment verification, salaryverification, professional references, education verification and professional qualifications and memberships (if applicable).


:Information Technology
Adaugați la favorite
Eliminați de la favorite
Email-ul meu
Făcând clic pe "Continuați", sunteți de acord că nevoo colectează și procesează datele personale pe care le-ați furnizat în acest formular pentru a crea un cont nevoo și pentru a vă abona la alertele noastre prin e-mail, în conformitate cu Politica de confidențialitate . Puteți să vă retrageți consimțământul în orice moment, urmând și pașii .