We are looking for a Chief Security Officer (CSO) with NV2 or PV level clearance to lead the internal security practice in Australia. You will perform a key role in delivering security to meet our Federal Government Security requirements. Among other responsibilities this includes managing security guarding / guarding supplier service delivery and performance, security incident response, maintaining audit readiness, systems, process and procedure implementation, and site selection/assessment.

The CSO must be an experienced team player, possess strong communication and collaboration skills, have the ability to determine and prioritise work streams, and possess the skills to effectively manage and develop people along with a demanding workload in the execution of multiple concurrent projects across geographic and organisational boundaries.

Responsibilities:
 

• Is the “cognizant security authority” for Oracle Australia Senior Leadership Team (SLT) that will ensure compliance with among others: Principle Security Policy Framework (PSPF), Defence Security Principles Framework (DSPF), Defence Industry Security Program (DISP), Australian Government Security Vetting Agency (AGSVA), and Security Construction and Equipment Committee (SCEC) requirements and represent those to the customers/auditors.
• Internal subject matter expert (SME) to SLT on Australian Government requirements and how to implement them, interfacing with SCEC consultants, etc.
• Collaborate with the managers and supplier leads of cleared personnel sponsored by Oracle to monitor personnel for ongoing suitability and compliance.
• Responsible for compliance with all Australian Government requirements for being an employer of personnel holding Australian Government security clearances, including the immediate reporting of long-term leave, behavioural triggers, etc. that warrant notification to the Australian Government.
• Ensure and enforce sustainable processes to ensure only authorized personnel receive physical access to restricted environments.
• Develop, manage, and maintain physical security registers, plans, processes, and standard operating procedures that comply with relevant Australian Government (and/or other unique environment) security standards and requirements during the construction of facilities and after they have become operational.
• Develop and implement program specific security education and awareness for all Oracle Australia personnel to ensure compliance, confidentiality, and Operational Security (OpSec) in line with Australian Government requirements and best practices.
• Document and improve processes to make the program’s ecosystem more efficient, simplified, and productive.
• Conduct field site visits across Australia to assess the state and health of physical security, document issues needing improvement, and drive to resolution.
• Provide interpretation and guidance on Australian security clearances and security protocols to internal teams who do not understand or typically work with those kinds of boundaries in mind.
• Maintain confidentiality, Operational Security (OpSec), and privacy without exception.
• Collaborate across all Oracle internal Lines of Business (LOB) as required.
• Oversee assigned projects to ensure they are delivered in accordance with established requirements, deadlines, and applicable law and company policy.
• Support a variety of physical security programs and initiatives as required.
• Empower a culture of safety, security, and compliance in all aspects of our Australian operations.
• Establish and enhance strong working relationships and engagement with our Engineering Groups (EGs), and Landlord partners (including contributing to MBRs, QBRs)
• Flexibility to work non-business hours that may include weekends and/or holidays during security events/incidents.
• deliver results through teamwork, role model our Oracle values with a passion for diversity and inclusion.
• Function as a security subject matter expert who can stand on their own to deliver work and represent Oracle SLT, as well as lead ad hoc teams to success through delegation.
• Manage a team focused on enabling a trustworthy physical and ICT environment that protects customer data, intellectual property, people, and the critical infrastructure facilities in which they reside or operate.
• Conduct and support security threat/risk assessments and site selection activities (using established processes and methodologies) at new and existing sites to ensure evolving threats and conditions remain appropriately addressed by the security program as deployed/operated.
• Receive escalations/notifications of security and business impacting incidents/events and appropriately triage and assess, ensuring that leadership is made initially and continuously aware when appropriate, and that the appropriate personnel are managing the incident response effectively.
• Ensure and enforce sustainable processes to ensure only authorized personnel receive physical access to restricted environments.
• Partner and collaborate closely with peer leaders and stakeholders, focused on maintaining a One Oracle, one team environment.
• Continuously improve the efficiency and maturity of the overall security program.
• Engage with internal and external customers as appropriate to evangelize and represent Oracle’s security programs.
• Maintain confidentiality, discretion, and protect Oracle information without question.
   

Qualifications

Ability to meet Oracle, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to, the following specialized security screenings: Oracle Background Check.

Basic
 

• This position requires an Australian Security clearance at the NV2 or TSPV Level.
• Must have 5+ years’ experience successfully managing security operations programs for/or supporting the Australian Government (SCEC, ASD, AGSVA).
• Must have prior experience as a Security Officer managing Australian Government personnel clearances.
• Diploma in security or related discipline, or equivalent experience preferred.
• Ability to be on-call 24x7x365 and to travel periodically as planned or unplanned within or outside of assigned region.
• Must be an Australian citizen (pre-requisite for the required security clearance).
• Must have and maintain the ability to travel within and occasionally outside of Australia, in both planned and unplanned scenarios.
• Proficient in the use of Oracle office products for business.
• Excellent working knowledge of PSPF, DSPF and ASIO Technical Notes.

 

Preferred

• Confident and skilled in preparing and delivering presentations and briefings to customers, senior leaders, and executives.
• Comprehensive understanding of the security discipline, focusing on operations.
• Highly organized, task oriented, self-starter that demonstrates a high degree of initiative and requires low supervision.
• Strong work and compliance ethic, and the ability to effectively prioritize and execute tasks in a dynamic and high-pressure environment.
• Thought leadership and subject matter expertise to deliver one or more large programs and services while increasing standardization, simplification, and automation.
• Ability to change plans, goals, actions, and priorities in response to an evolving business environment with awareness to operate as a champion for course corrections when necessary.
• Ability to develop, and maintain security related processes, procedures, program baselines, training, and improvement plans. Security management experience specifically involving facilities, and/or IT environments.

• Confident and skilled in preparing and delivering presentations and briefings to customers, senior leaders, and executives.
• Comprehensive understanding of the physical security discipline, focusing on operations.
• Highly organized, task oriented, self-starter that demonstrates a high degree of initiative and requires low supervision.
• Strong work and compliance ethic, and the ability to effectively prioritize and execute tasks in a dynamic and high-pressure environment.
• Thought leadership and subject matter expertise to deliver one or more large programs and services while increasing standardisation, simplification, and automation.
• Ability to change plans, goals, actions, and priorities in response to an evolving business environment with awareness to operate as a champion for course corrections when necessary.
• Ability to develop, and maintain security related processes, procedures, program baselines, training, and improvement plans. Security management experience specifically involving facilities, and/or IT environments.

Ensures Oracle compliance with all US Government security regulations and mandates.

Provide 24/7 responsiveness in support of Oracle’s U.S. Government business. Responsible for regional/ enterprise scope; must implement government security policies and procedures across multiple programs and multiple locations. Process personnel security clearances and periodic reinvestigations. Monitor classified information systems and controlled areas. Serve as and oversee Document Control classification management specialists providing classification guidance to employees and subcontractors. Maintain Sensitive Compartment Information Facilities (SCIFs), Special Access Program Facilities (SAPFs), and DOD Controlled and Closed Areas, as appropriate; and respond to after-hour alarms and emergency conditions at a SCIF/SAPF or DOD location. Monitor all external activities and government legislation affecting the organization. Provide recommendations regarding "best practice" business security standards and solutions and guidance to maintain a secure environment for the protection of personnel, property, and information. Act as liaison between company and both government and industry partners. Provide leadership and expertise for the development of government security processes. Leads regional/enterprise processes and initiatives.

Provide leadership and expertise in the enhancement of existing and/or development of new products/services/processes, frequently operating at the leading edge of the industry and government policy changes. Recommends and justifies major changes to existing products/services/processes. BA/BS degree or equivalent experience relevant to functional area.