• Own SOC 2 - keep Drata green and audits clean. • Lead ISO 27001 implementation, then ISO 42001. • Run the customer security questionnaire process. • Drata-driven AWS remediation.

Role Description - Cloud Security Operations: - Implement and monitor OCI security measures (network security, encryption, secrets management). - Oversee compliance, governance, and incident response processes. - Utilize tools like Visual Builder Studio and CI/CD pipelines for secure deployments. - Risk & Compliance: - Conduct Oracle Cloud Security assessments and design implementations. - Ensure adherence to ERP security best practices and regulatory requirements. - Collaborate with audit teams to maintain compliance posture. - Application Security: - Manage Oracle application security consoles. - Create custom security profiles and data roles. - Support secure integration of business processes with Oracle Cloud applications. Qualifications - Experience: 3–8 years in Oracle Cloud Security or related IT security roles. - Technical Knowledge: - Strong understanding of OCI security features and best practices. - Familiarity with encryption, key management (OCI Vault), and secure networking. - Hands-on experience with Visual Builder Studio, CI/CD, and cloud monitoring tools. - Business Acumen: Ability to align security controls with ERP processes and organizational risk management strategies. - Soft Skills: Analytical thinking, problem-solving, and clear communication with both technical and non-technical stakeholders. Requirements - Secure cloud architecture designs. - Custom IAM roles and policies. - Compliance and audit reports. - Incident response playbooks. - Continuous monitoring dashboards for cloud security posture. Challenges & Risks - Evolving Threat Landscape: Engineers must stay updated on new vulnerabilities in cloud environments. - Complex Role Customization: Misconfigured roles can lead to privilege escalation risks. - Compliance Pressure: Ensuring adherence to global standards (GDPR, ISO, SOC2) requires constant vigilance. - Integration Issues: Balancing security with usability in ERP workflows can be difficult.

• Conduct end-to-end security assessments of blockchain-based systems, spanning cryptographic primitive design, protocol architecture, smart contract implementation, and deployed infrastructure. • Own threat modeling and security architecture reviews across all product phases. • Identify real-world vulnerabilities through rigorous hands-on code reviews, adversarial testing, and the development of proof-of-concept exploits for native services, EVM-compatible contracts, cross-chain bridges, and consensus-layer components. • Partner directly with core engineering teams to translate complex cryptographic and protocol-level risks into prioritized, actionable remediation workflows. • Define and enforce security gates prior to production deployment. • Build, scale, and improve security tooling, fuzzing infrastructure, and CI/CD security automation to maximize security coverage efficiently. • Track emerging blockchain and Web3 attack patterns, map them to the internal codebase, and drive proactive mitigation strategies.

• Extensive experience in pre-sales designing and proposing secure platform solutions • Hands on experience in architectural administration, proving designs in simulated and production environments. • Building technical security solutions, proving their viability and providing technological justifications • Ability to design complete network, cloud and security solutions providing strong technical Roadmaps • Knowledge in the following architectural technologies: Secure Networking, Secure Wireless, Private/Public Cloud, SD WAN, SASE, Zero trust, AI, Automation, Sec Ops, Operational Technology, Forensics & IR response • Strong presentation and white boarding skills • Strong communication and written skills, including responding to technical RFPs. • Proactively identify technical opportunities within the field to increase pipeline growth and team prosperity • Leading proof of concept valuations, technical workshops and events • Become a passionate industry leader that can articulate a compelling vision • Model a high standard of performance, professionalism, and integrity in all interactions • Facilitate effective communication and teamwork across departments or teams