Overview

Develops and executes programs and processes to reduce information security risk and strengthen Oracle’s security posture. As a Principal Information Security Compliance Analyst in Nashville, TN, you will lead compliance initiatives, conduct risk assessments, and ensure adherence to global security standards. Collaborate with cross-functional teams to safeguard Oracle's data and systems against evolving threats.

Responsibilities

• Design and implement compliance programs aligned with regulations like GDPR, HIPAA, and SOX.
• Conduct comprehensive risk assessments and vulnerability analyses across Oracle's infrastructure.
• Develop policies, standards, and procedures to enhance information security posture.
• Lead audits, remediation efforts, and continuous monitoring of security controls.
• Collaborate with engineering, legal, and business teams to integrate security into operations.
• Prepare executive reports and presentations on compliance status and risk metrics.
• Respond to security incidents and drive post-incident improvements.
• Mentor junior analysts and contribute to security awareness training programs.

Qualifications

• Bachelor's degree in Computer Science, Cybersecurity, or related field; advanced degree preferred.
• 8+ years of experience in information security compliance or risk management.
• Expertise in compliance frameworks (NIST, ISO 27001, PCI-DSS) and regulatory requirements.
• Strong analytical skills with proficiency in risk assessment tools and methodologies.
• Experience with GRC platforms, SIEM systems, and security auditing processes.
• Excellent communication skills and ability to influence stakeholders at all levels.

Benefits

• Competitive salary and performance-based bonuses.
• Comprehensive health, dental, and vision insurance.
• 401(k) matching and employee stock purchase plan.
• Flexible remote work options and generous PTO.
• Professional development stipend and tuition reimbursement.