- Senior
- Ufficio in Bangalore
Responsibilities, authorities and accountabilities
In this role, you will:
- Lead the implementation and management of Oracle Applications Security solutions, ensuring alignment with industry best practices and Baker Hughes compliance standards. Collaborate effectively with infrastructure teams, vendors, managers, and stakeholders to deliver secure and scalable solutions.
- Partner with rest of Oracle SecOps to manage Oracle E-Business Suite (EBS) Identity and Access Management (IAM), ensuring secure user provisioning, role-based access control, and compliance with internal and external audit requirements.
- Partner with the BH Application Security team to enhance the SAST scanning process across Oracle ERPs, introducing automation to streamline and optimize security workflows.
- Lead the Enterprise Vulnerability Management (EVM) program and coordinate penetration testing for Oracle OCI-hosted applications. Work closely with Oracle Managed Cloud Security, Oracle Apps platform owners, and BH Security to manage findings and drive remediation efforts.
- Serve as the primary liaison between BH CSRC and Oracle for all matters related to Oracle Cloud OCI Security, ensuring clear communication and effective issue resolution. Define the strategic direction and Cybersecurity required initiatives in OCI space, ensuring robust protection and alignment with organizational goals.
- Partner with rest Oracle Platform owners and Solution architect on Security Architecture for all OCI hosted applications.
- Continuously identify opportunities for process improvement and increased operational efficiency. Demonstrate initiative and foster collaboration to ensure comprehensive task execution and stakeholder engagement.
Required Qualifications
- Bachelor's Degree. A minimum 8 years of professional experience.
- Proven experience with Oracle ERP platforms and Oracle Cloud Infrastructure (OCI), vulnerability management platforms, and penetration testing coordination.
- Hands-on experience with SAST/DAST tools
Desired Characteristics
- Relevant certifications (e.g., CISSP, CISM, Oracle Security, Cloud Security) are highly desirable.
- Strong understanding of cybersecurity frameworks, compliance standards (e.g., NIST, ISO 27001), and enterprise risk management.