Senior Manager, Network Audit and Compliance

Oracle-posted 2 months ago
$105,000 - $223,400/Yr
Full-time • Manager
Remote • Bellevue, WA
Professional, Scientific, and Technical Services
Resume
Match Score
Upload and Match ResumeTrack Jobs with Teal

As the Network Audit and Compliance Manager, you will lead a team of highly skilled network engineers, program managers, and security champions maintaining standard operating procedures and demonstrating network controls. The audit and compliance manager ensures the group adheres to established policies & regulations ensuring readiness for multiple industry standard audits and compliance evaluations. In a structured approach, your team will continuously assess and evaluate network systems and process readiness for HIPAA, NIST, PCI DSS, GDPR, SOC 1 & 2, ISO 27001, SOX, as well as other internal & external audits. The Networking Audit and Compliance Manager serves as the organizational leader & senior security champion ensuring preparedness for organizational audits, compliance reviews, vulnerability management, security controls and standard operating procedure (SOP) alignment. You will be responsible for the development, establishment, and communication of security policies, standards, guidelines, and the education and awareness of these requirements across our network organization. You will prepare for and perform internal audits, develop procedures, and assess potential risks to the network environments. Additionally, you will drive vulnerability remediation for network assets including triage and workflow management across the networking organization. The role advises Senior Leadership, LOB & OCI's Security teams.

  • Manage the compliance program: Implement and oversee the networking compliance program that promotes awareness and enforces adherence to all prescribed compliance requirements.
  • Stay informed about changes in national and international laws, industry standards, and government directives that could impact the organization.
  • Establish and maintain networking policies: Develop, implement, review, and maintain network security policies, standards, and procedures based on Oracle Security and regulatory requirements.
  • Liaison with External Bodies: Interact with external auditors and regulatory bodies to defend the company's compliance systems and ensure proper documentation and adherence to requirements.
  • Create a compliance framework: Build and maintain a networking controls matrix aligned with multiple compliance frameworks to ensure continuous adherence across the organization.
  • Advise leadership: Report to and advise senior leadership of existing risks, vulnerabilities, issues, and the overall compliance posture of the production network environment.
  • Lead & participate in audits: Independently lead internal audits and assessments to check for adherence to regulations and identify areas for improvement.
  • Conduct risk assessments: Perform risk assessments of the network, cloud environment, networking tools, & networking infrastructure hosts to identify vulnerabilities and prioritize risk mitigation/remediation.
  • Develop and implement remediation plans to address issues identified in internal and external audits.
  • Develop and maintain automated reporting and visualizations providing evidence of compliance for auditors.
  • Ensure that all information system controls and monitoring systems are operating effectively.
  • Investigate instances of non-compliance or potential ethical violations and take appropriate action to address them.
  • Continuous monitoring and review of security logs and reports identifying issues and driving them to resolution across the networking group.
  • Monitor and review firewall configurations, logging, and change records for compliance to established security controls.
  • Review system user access records to ensure least privileged access is provided across networking systems.
  • Participate in network architecture & design reviews, recommending implementation of secure infrastructure standards and configurations.
  • Lead networking organizational disaster recovery plans and strategies.
  • Develop and deliver security and compliance awareness training programs to networking teams directly related to security policies and procedures.
  • Work closely with various internal departments and third-party vendors to resolve compliance issues.
  • Continuously monitor vendor vulnerability announcements, and assist with the network Life Cycle Management (LCM) program.
  • Lead and manage a small, geographically distributed team of Network Engineers, Program Managers, and Security Champions.
  • Guide employees, set clear goals and priorities, monitor progress, conduct performance evaluations.
  • Mentor, coach, guide, and direct team members providing consistent and constructive feedback.
  • Manage and conduct daily intake and scrum sessions. Prioritize and assign work items, tasks, and deliverables.
  • Perform planned change reviews, enforce compliance with change management procedures and processes.
  • U.S. Citizenship, Government background screening with ability to pass a federal background check (SF-85).
  • Bachelor's degree in Computer Science, Engineering, or related field or equivalent hands-on experience.
  • 7+ years of experience in enterprise-scale network operations or network program management.
  • 3+ years managing high-performing technical teams.
  • Demonstrated success leading network audit and compliance initiatives.
  • Expertise with IT General Controls (ITGC), SOX, PCI DSS, HIPAA, NIST, SOC 1 & 2, and other regulatory compliance frameworks.
  • Experience with a variety of IT and ISS tools and systems, Advanced Thread Protection, Cloud Computing, Cyber Risks, and Network Security.
  • Familiarity with Agile/Scrum project management practices.
  • Experience integrating and operationalizing network analytics tools (Grafana, Elastic, SNMP traps, syslogs, Apex, PowerBi).
  • Knowledge of networking vendor lifecycle programs including vulnerability announcements.
  • Demonstrated experience with incident response and vulnerability management.
  • Able and willing to operate in a 24x7x365 environment including support and participation in role specific on-call escalation support.
  • Medical, dental, and vision insurance, including expert medical opinion.
  • Short term disability and long term disability.
  • Life insurance and AD&D.
  • Supplemental life insurance (Employee/Spouse/Child).
  • Health care and dependent care Flexible Spending Accounts.
  • Pre-tax commuter and parking benefits.
  • 401(k) Savings and Investment Plan with company match.
  • Flexible Vacation is provided to all eligible employees assigned to a salaried position.
  • 11 paid holidays.
  • Paid sick leave: 72 hours of paid sick leave upon date of hire.
  • Paid parental leave.
  • Adoption assistance.
  • Employee Stock Purchase Plan.
  • Financial planning and group legal.
  • Voluntary benefits including auto, homeowner and pet insurance.
Track Jobs with Teal

Job Search Resources

Resume Builder
Audit Manager Resume Examples
Audit Manager Cover Letter Examples

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service