Senior Technical Specialist

Job Summary

Seeking an experienced Oracle Cloud Infrastructure (OCI) Security Consultant with 10+ years of experience in cloud security, identity management, and secure cloud architecture. The role involves designing, implementing, and managing OCI security frameworks, including IAM, network security, and compliance controls, ensuring secure and scalable cloud environments.

The consultant will act as a security SME and architect, partnering with business, infrastructure, and application teams to implement best-practice security controls, mitigate risks, and enable secure cloud adoption aligned with regulatory and organizational requirements

Key Responsibilities

Security Architecture & Implementation:

Design and implement secure OCI architecture covering compute, networking, storage, and identity services.
Define and enforce cloud security standards, policies, and governance models.
Harden cloud environments based on CIS benchmarks and security best practices.

Identity & Access Management (IAM)

Design and implement OCI IAM structure (tenancy, compartments, users, groups, policies).
Configure role-based access controls, federation, and dynamic groups.
Enforce least privilege and zero-trust access models.

Monitoring, Threat Detection & Incident Response

Configure and manage OCI security services (Cloud Guard, Logging, Security Zones).
Monitor system logs, detect anomalies, and respond to security incidents.
Ensure audit readiness through continuous monitoring and reporting.

Compliance & Risk Management:

Ensure adherence to security frameworks (ISO 27001, SOC2, HIPAA, etc.). thefountaingroup.com
Perform risk assessments, vulnerability management, and remediation planning. thefountaingroup.com
Support audits and regulatory compliance initiatives

Skill Requirements

Core OCI Security Skills:

Strong expertise in Oracle Cloud Infrastructure (OCI) security architecture
Hands-on experience with:

IAM (Identity Domains, Policies, Compartments)
VCN, Subnets, NSGs, Security Lists
OCI security services (Cloud Guard, Security Zones, Vault)

Identity & Access Management:

Advanced knowledge of:

Authentication & Authorization models:

Role-based access control (RBAC) and policy design
Federation (SAML, external Id Ps), MFA, dynamic groups

Security & Compliance:

Data security (encryption at rest & in transit)
Vulnerability management, threat detection, and incident response
Compliance frameworks (ISO, SOC, regulatory standards)

Other Requirements

null