Job Description
29-Apr-2025
Principal Security GRC Analyst - Modernization and Oracle Cloud Infrastructure (OCI)
US Remote
10271BR
Company Summary
As the recognized global standard for project-based businesses, Deltek delivers software and information solutions to help organizations achieve their purpose. Our market leadership stems from the work of our diverse employees who are united by a passion for learning, growing and making a difference. At Deltek, we take immense pride in creating a balanced, values-driven environment, where every employee feels included and empowered to do their best work. Our employees put our core values into action daily, creating a one-of-a-kind culture that has been recognized globally. Thanks to our incredible team, Deltek has been named one of America's Best Midsize Employers by Forbes, a Best Place to Work by Glassdoor, a Top Workplace by The Washington Post and a Best Place to Work in Asia by World HRD Congress.
Business Summary
Deltek's Global Information Security team has a passion for simplifying the delivery of information security in a complex industry. As part of our dynamic team, you will help deliver creative security services to continuously improve the first-rate protection of Deltek's Information Assets. Join us as we create innovative solutions to further security as a differentiator for Deltek.
Position Responsibilities
Position Overview:
Deltek is seeking a Principal Security GRC Analyst with deep expertise in Oracle Cloud Infrastructure (OCI) to join our Governance, Risk, and Compliance (GRC) team. This role is central to supporting our modernization initiatives by ensuring that our Oracle Cloud environments meet rigorous audit, compliance, and security standards. You'll play a key role in driving cloud security assurance, managing risk, and leading audits specific to OCI-based systems.
Key Responsibilities:
Lead GRC activities specific to Oracle Cloud Infrastructure (OCI), ensuring alignment with internal security policies and external compliance frameworks.
Conduct and manage audits, assessments, and control testing of OCI environments, focusing on NIST 800-53, FedRAMP, SOC 2, ISO 27001, and other relevant standards.
Collaborate with OCI architects, engineers, and DevOps teams to design and implement secure and compliant cloud solutions.
Provide subject matter expertise on OCI-native security controls, configurations, monitoring, and governance capabilities.
Draft and maintain system security plans, risk assessments, and control procedures tailored to OCI.
Identify and remediate compliance gaps within OCI, while developing risk mitigation plans and continuous improvement strategies.
Serve as the lead liaison for audits involving OCI workloads internally, external, or customer led.
Champion GRC modernization initiatives related to Oracle Cloud transformation projects and multi-cloud security posture.
Good understanding and knowledge of AWS cloud and GovCloud.
Qualifications
Required Qualifications:
Expert-level knowledge and hands-on experience with Oracle Cloud Infrastructure (OCI) security architecture, tools, and governance models.
Demonstrated success managing cloud SaaS applications through audit and certification processes within OCI. Experience implementing, assessing, or auditing security controls within OCI in relation to frameworks such as SOC 2, ISO 27001, NIST 800-53, and FedRAMP.
Strong understanding of OCI-specific services (e.g., Identity and Access Management, Vault, Logging, Security Zones, Cloud Guard).
Minimum 3 years of experience working in a GRC, security audit, or risk management capacity with emphasis on cloud compliance.
Proven ability to manage complex compliance projects across technical and non-technical teams.
US Citizenship required.
Preferred Qualifications:
Security certifications such as OCI Certified Architect/Professional, CISSP, CISA, CCAK, or CCSK.
Experience with hybrid or multi-cloud environments (e.g., AWS, Azure) is a plus.
Familiarity with government compliance programs (e.g., FedRAMP, CMMC, NIST 800-171).
Experience supporting product development teams with secure-by-design principles in an Oracle cloud environment.
Core Competencies:
Self-starter with excellent time management and organizational skills.
Advanced analytical and critical thinking skills, particularly in the context of cloud security risk.
Ability to translate complex cloud compliance requirements into actionable technical and operational tasks.
Exceptional verbal and written communication skills for both technical and executive-level audiences
Compensation Information
The U.S. salary range for this position is $81500.00 - $142750.00. This range is subject to change as Deltek takes a number of factors into consideration when determining individual base pay, such as location, job-related knowledge, skills and experience. Certain roles are eligible for additional rewards, including incentive compensation and equity.
Benefits and perks listed here may vary depending on the nature of employment with Deltek. Employees have access to healthcare benefits, a 401(k) plan and company match, paid vacation time and holidays, well-living programs, short-term and long-term disability coverage, basic life insurance and tuition reimbursement.
Travel Requirements
10%
Compliance Requirements
Certain roles may have additional privacy, security and compliance requirements to the extent they support Costpoint GCCM or similar product offerings.
EEO Statement
Deltek, Inc. is an Equal Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, or protected veteran status.
E-Verify Statement
Deltek, Inc., utilizes the E-Verify program with every potential new hire. This makes it possible for us to make certain that every employee who works for Deltek is eligible to work in the United States. To learn more about E-Verify you can call 1-800-255-7688 or visit their website by clicking the logo below. E-Verify is a registered trademark of the United States Department of Homeland Security.
Applicant Privacy Notice
Deltek is committed to the protection and promotion of your privacy. In connection with your application for employment with us at Deltek, it is necessary for us to collect, store and use information about you ("Personal Data") to administer and evaluate your application. We are the "controller" of the Personal Data you provide us and will process any such Personal Data in accordance with applicable law and the statements contained in this Employment Candidate Privacy Notice. Additionally, we have not sold and do not sell Personal Data you provide to us through the job application process. Deltek
Job Tags
Holiday work, Temporary work, Remote job,