DirecciónCustomer Success Services for Security (CSS-Security) mission is to increase Oracle’s Value Proposition in the Services market by providing a Security and Compliance COE that draws together the existing Oracle Tooling, Cloud Services and Oracle Professional Services to build a comprehensive thoughtful Security and Compliance Offering tailored to the customers' needs in the Hybrid cloud environment.
The ideal candidate will be able to provide seamless and personalized interactions with the customer’s security and IT teams and engaging to assess customer security needs in alignment with their security policy& regulatory requirements.
You will demonstrate a passion for Customer Success and a One Oracle Approach by sourcing expertise from Oracle including Global Security, Applications Development, and Cloud Engineering.
Candidates will have proven experience in IT / Security Governance Programs, solving business problems, and engaging with product development and other partner organizations to drive and integrate required solutions.
You will be responsible for advising and collaborating with customer CISOs and other security leaders. Your focus will be on helping customers operationalize security programs, providing executive-level guidance, and acting as a primary point of contact.
Responsibilities :
- This role will advise customer CISOs, and other security leaders, on how to securely operationalize the use of Oracle product and be the primary executive point of contact for named customers during their consulting engagements
- The ideal candidate is a former CISO (vendor or customer), VP / Director of Security, Senior Security Strategist, Senior Security Architect or equivalent role
- Drive Customer Success As a security advisor who understands Oracle security products and standards and aligns with customer policy and regulatory requirements.
As a transformational advisor who drives innovation to the customer’s security landscape in Cloud or On-Prem environments
- Partner with key business units to kick off engagements to assess customer requirements.
- Conduct workshops to evaluate customer security posture in Cloud / On-Prem and provide recommendations in a security roadmap document that aims to improve it.
- Tap into expertise from all sources throughout Oracle including global security, applications, development, and cloud engineering.
- Conduct workshops with both Technical and business users to define and showcase the value provided by Oracle Cloud Platform and CSS Services.
- Development and delivery of a customer-specific CSS Service Strategy as defined in the workshops.
- Support the ACS Pre-Sales team in incorporating the customer-specific CSS Service Strategy into Security Service Sales.
- Use deep customer understanding to deliver a competitive advantage.
- Demonstrate flexibility and resilience in response to changing or ambiguous situations.
What You'll Bring :
- BS degree or equivalent experience relevant to the functional area with of related experience
- CISSP, CCSK, GIAC, CISA or other security certification is required.
- 10+ years of strategic cybersecurity consultative experience serving as a trusted advisor with CISO’s and LoB executives on cybersecurity initiatives
- Experience positioning hybrid cloud security solutions and services
- Technical Qualifications : Cloud security architecture / design experience. Background in cloud applications, cloud platforms and / or experience providing cloud infrastructure platforms in sophisticated environments.
Experience with Oracle’s software / hardware / cloud products and services is a plus Experience with other cloud provider offerings / capabilities is a plus.
Leadership & Soft Skill Qualifications : Prior experience driving solutions to problems with technology, including aspects unique to securing the cloud (provider / consumer perspective).
Good interpersonal and consulting skills to establish and maintain internal and external partnerships globally, navigating risk against other business factors.
Positive influence to lead through frequent ambiguity / uncertainty / change. Business savvy including the ability to see and convey the big picture.
Additional Qualifications :
- Experience in risk assessment, risk management, and risk mitigation.
- Knowledge of industry security concepts / frameworks and regulatory standards such as ISO-27001, NIST, PCI, HIPAA, FedRamp, etc.
- Minimum of 8 years experience in information systems, business operations, or related fields, at least 5 years of which must be from at least one of the following : Information security risk management;
- information security program management; Industry / Government security compliance program management (ISO-27001, GDPR, HIPAA, FedRamp, ;
threat and vulnerability management; incident management and response; security policy development and enforcement; privacy, information security education, training and awareness (ISETA), information security solutions development, etc. required.
Strong knowledge of : Cloud architecture and security principles. Risk Management Frameworks. *nix and Windows system administration.
Experience with : Logging and log analysis. Identity management principles and technology.
Preferred but not required qualifications include : Bachelor-level university degree in a relevant field from an accredited university, or equivalent.
CISSP, CISM, CISA, CIPP or other equivalent certification. Comprehensive knowledge of security design for networks, databases, infrastructure, and cloud computing.
Experience writing security incident and vulnerability reports for leadership and other stakeholders. Ability to effectively communicate and influence secure product and network design in a collaborative environment.
Comprehensive knowledge of digital forensics. Strong knowledge of web technologies, middleware, database, OS, firewalls, network communication protocols and methods.
Knowledge of encryption technologies and architectures. Expert level experience in evaluating and assessing security threats across a variety of environments and industries.
Expert level understanding of secure networking principles, routers, switches and load balancers.
