Information Security Compliance Administrator
Location: East Brunswick
Posted on: February 28, 2019
Executes security controls to prevent hackers from infiltrating company information or jeopardizing e-commerce programs.Researches attempted efforts to compromise security protocols. Maintains security systems for routers and switches. Administers security policies to control access to systems. Maintains the company s firewall. Uses applicable encryption methods. Provides information to management regarding the negative impact on the business caused by theft, destruction, alteration or denial of access to information.Leading contributor individually and as a team member, providing direction and mentoring to others. Work is non-routine and very complex, involving the application of advanced technical/business skills in area of specialization. Prefer 8 years relevant experience and BA/BS degree.*Oracle is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans status or any other characteristic protected by law.*Job PurposeResponsible for maintaining, monitoring and supporting FedRAMP certification supporting US government agencies and their subcontractors. The Information Security Compliance Administrator is expected to champion the upkeep of certification throughout the business, working with others to ensure documentation is kept up-to-date and processes and policies are appropriate and well utilised.ResponsibilitiesManage and maintain compliance certifications including FedRAMPDeliver sound know-how and know-what to information security and business continuity projectsDesign, develop and maintain information security documentation, including maintaince of a Systems Security Plan (SSP) for FedRAMPManagement of document reviews and approval workflowsCollaboration with regional business units to ensure practical plans are in placeManage and monitor progress against commitments for completion of remediation activities and action items in a POA&MSupport, facilitate and engage with auditors and business teams during certification auditsMaintain business relationships with interested parties on information security requirementsOrganise integrate and build synergy on compliance programs for process and project maturity objectives to facilitate compliance to various statutory, regulatory, contractual, standard requirementsConduct risk assessments to assets, projects and processes in a SaaS and IaaS environmentUS Citizens with ability to obtain a US security clearanceRequired Skills & ExperienceWorking knowledge of corporate information security in an IT and ITES environmentWorking knowledge of production information system in a global SaaS environmentKnowledge of standards and requirements with application securityWorking experience with SIEM technologies and reportingKnowledge and expertise in disciplines/ business functions and projects of risk, information security, business continuity, quality and environment managementKnowledge and expertise of GRC processesExperience transitioning security documentation to operational teamsImplementation and audit certifications including ISO 27001, SSAE 16/18 SOC 2, FedRAMP, HIPPA or PCI-DSSExperience with Risk Management frameworksDesired Skills and ExperienceUnderstanding of the NIST 800-53 controls and/or FedRAMPDepartment of Defence Security Requirements Guide (SRG)Familiarity with web related technologies (Web applications, Web Services, Service Oriented Architectures) and of network/web related protocolsUnderstanding of security systems, including firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, content filtering, etc.Fundamental Understanding of the OWASP (Open Web Application Security Project) top 10Required CompetenciesCore:Accountability - Holds self and others accountable for high-quality and timely outcomes by determining objectives and prioritising work effectively. Complies with established control systems and rules accepting responsibility for mistakes and giving credit to others for their contributions and achievements.Building a vibrant Aconex culture - Defines organisational culture by practising espoused values and behaviours promoting inclusion and equity for all Aconex staff and associatesClient focus - Makes clients and their needs a primary point of action, developing and sustaining productive client relationshipsInnovation - Generates creative solutions, trying different and novel ways to deal with opportunities and problemsIntegrity - Maintains social, ethical and organisational norms, adhering to and promoting codes of conduct and ethical principlesRole:Continuous learning Identifies new areas for development creating and taking advantage of learning opportunities.Problem solving Identifies issues and their root causes and implement solutions.Quality orientation Accomplishes tasks by considering all areas involved, paying attention to detail, process and outcomes, monitoring issues for extended periods as required.Technical knowledge Applies knowledge and experience of technical/professional field appropriately.Decision making - Identifies issues and opportunities, taking action consistent with available data and anticipating likely outcomes.Collaboration - Works effectively and cooperatively, establishing and maintain good working relationships.Communicating with Impact - Expresses thoughts, feelings and ideas in a clear, succinct and compelling manner, adjusting language to engage the audience effectivelyInformation monitoring Sets up ongoing procedures to facilitate the collection and review of external information relevant to Aconex and the activities in it.Risk mitigation Identifies opportunities for improvements, evaluating and mitigating risk to Aconex.Facilitating Change Encourages innovative approaches to addressing opportunities and problems, planning and driving the implementation and acceptance of change.**Job:** **Information Technology***Organization:** **Oracle***Title:** *Information Security Compliance Administrator***Location:** *United States***Requisition ID:** *190005CZ*
Keywords: Oracle, East Brunswick , Information Security Compliance Administrator, Accounting, Auditing , East Brunswick, New Jersey
Didn't find what you're looking for? Search again!