This company is engaged in a large programme to replace its current Enterprise Resource Planning (ERP) system and moving to an Oracle cloud based product set. With the scale and breadth of Oracle Cloud products being deployed, the programme is breaking new ground.
This role will work across business and IT functions working with other security representatives to provide advisory and delivery capability in the migration of the their existing Oracle E-Business Suite Enterprise Resource Planning system (Adelphi) into a hybrid-cloud based Oracle Fusion offering.
Outputs and deliverables from the role;
- Support the programme’s Information Asset Owner and Lead SIRA in the routine application and interpretation of NCSC cyber security and best practice information assurance policies and practices across the service.
- Work with the Lead SIRA and/or Risk Owner to plan the accreditation timeline and identify necessary deliverables required for the accreditation of the solution in line with Programme timescales
- Implement a repeatable and consistent risk assessment technique to identify emerging information risks throughout the scope of the Oracle Cloud solution.
- Identification of suitable risk treatment options in the context of the service and ensure these are traceable to risks
- Check and report on compliance with applicable security standards and regulations for the service. Prepare options for GDPR compliance activities
- Develop and maintain security evidence to support the effective and consistent application of the risk management process to meet the information assurance requirements by working with a variety of internal and external business partners across the end to end service.
- Develop and maintain the accreditation documentation pack so as to be reusable by other Government partners
- Work with a variety of internal and external business partners to draft requirements for pen-testing, IT Health Checks or audits for the solution and assist in remediating findings
- Undertake preliminary or fact finding enquiries into security incidents.
- Present security briefings to the Security Working Group and other board
Essential skills
- A background in designing and delivering well-documented end-to-end risk assurance processes across multiple process areas and suppliers to achieve accreditation of large IT implementations in Government
- Appreciation of security risk when operating and implementing in a cloud environment and understanding the impacts of implementing and operating on the cloud versus on premise
- How to perform Protective Monitoring (PM), understand PM reports and carry out incident management
- An understanding of the functional, application and technical architectural elements of Oracle Fusion.
Get the Recruitment Genius Advantage today. As the UK's largest online recruitment advertising company placing more candidates than anyone else.