Manages the ongoing preparation, testing, and monitoring of compliance with information security standards and government regulations and regulatory agencies as it relates to the design, development, and deployment of products and services.
Internal Responsibilities
The Senior Manager, Risk Management and Regulatory Compliance, will coordinate closely with operations teams which may include Global Business Units, Corporate Security, and with Oracle Legal. Responsibilities include developing and maintaining comprehensive information security, and/or quality management, and regulatory oversight program, including standards for product and service design aligned with Oracle Software Security Assurance and Security Architecture Review, and/or quality management system standards. Will be responsible for managing information security risks and managing compliance team. Will educate through training members on information security and industry regulatory standards applicable to their products and services. Work with respective teams which may include GBU development, operations, and service, to incorporate applicable industry regulatory standards, Oracle security and/or quality policies and customer-contractual obligations into processes and standards. Work with Corporate Security and Business Assessment and Audit, and/or Quality System Internal Audit to evaluate product and service line security and regulatory compliance on an ongoing basis. Work with Legal to evaluate changes in applicable laws and regulations and impact on products and services. Work with Corporate Development and Legal to evaluate potential acquisitions for regulatory issues. Administrate industry and regulatory certifications, including managing certification vendors (e.g., PCI, HIPAA, HITECH, ISO).
External Responsibilities
The Senior Manager, Risk Management and Regulatory Compliance, will coordinate closely with operations teams which may include Global Business Units, Corporate Security, and with Oracle Legal. Responsibilities include developing and maintaining comprehensive information security, and/or quality management, and regulatory oversight program, including standards for product and service design aligned with Oracle Software Security Assurance and Security Architecture Review, and/or quality management system standards. Will be responsible for managing information security risks and managing compliance team. Will educate through training members on information security and industry regulatory standards applicable to their products and services. Work with respective teams which may include GBU development, operations, and service, to incorporate applicable industry regulatory standards, Oracle security and/or quality policies and customer-contractual obligations into processes and standards. Work with Corporate Security and Business Assessment and Audit, and/or Quality System Internal Audit to evaluate product and service line security and regulatory compliance on an ongoing basis. Work with Legal to evaluate changes in applicable laws and regulations and impact on products and services. Work with Corporate Development and Legal to evaluate potential acquisitions for regulatory issues. Administrate industry and regulatory certifications, including managing certification vendors (e.g., PCI, HIPAA, HITECH, ISO).