Archiv zpráv a událostí

Provides advanced level skills and knowledge in the design and review of secure networks, applications, systems, infrastructure, environments and security systems, ensuring  requirements are in line with Corporate information security policies and processes, as well as Line of Business (including Cloud) security standards. 

Key responsibilities:

• Provides advanced level skills and knowledge in the design and review of secure networks, applications, systems, infrastructure, environments and security systems, ensuring  requirements are in line with Corporate information security policies and processes, as well as Line of Business (including Cloud) security standards. 
• Evaluates existing and proposed technical architectures for security risk, provides advanced technical advice to support the design and development of secure architectures and identifies security controls to mitigate those risks.
• Provides technical leadership regarding security protocols related to all aspects of enterprise and cloud computing.
• Evaluations of security architecture may include design assessment, risk assessment, threat modeling and code review.
• Designs automated toolsets for implementing security controls, and monitoring the security of networks, systems and applications.
• Identifies and prioritizes security design issues and vulnerabilities. 
• Conducts security research regarding threats, troubleshoots issues and manages upgrades on security platforms.
• Provides advanced level advice on data security issues, compliance, and privacy requirements.
• May train and mentor other staff.

Key requirements:

• Experience in an information security role supporting security programs and security engineering/architecture in complex enterprise environments. Hands on experience with enterprise security architecture, engineering and implementation required
• Knowledge of compliance program security controls, like ISO 27001, SOC 2, HITRUST, and FedRAMP, as applied to cloud SaaS, PaaS and IaaS operations
• Familiarity with SDLC principles and scripting & programming languages (such as Terraform, Python, and Ruby)
• Strong knowledge of:
• Cloud architecture and security principles
• Risk Management Frameworks
• *nix and Windows system administration
• Experience with:
• Containers security
• Identity management principles and technology
• Preferred but not required qualifications include:
• Bachelor-level university degree in a relevant field from an accredited university, or equivalent. 
• Strong knowledge of web technologies, middleware, database, OS, firewalls, network communication protocols and methods
• Knowledge of database security principles
• Knowledge of encryption technologies and architectures
• Expert level experience in evaluating and assessing security threats across a variety of environments and industries. Expert level understanding of secure networking principles, routers, switches and load balancers
  

For more info please contact me: Petra.Ruzickova@oracle.com