Technical Program Manager

Job Description

Oracle's Global Physical Security (GPS) team protects our people, facilities, data centers, and our customer operations worldwide. We design and operate resilient, scalable, and privacy-aware physical security solutions in close partnership with Real Estate & Facilities, Oracle Cloud Infrastructure, Data Center Engineering, Legal / Privacy, Procurement, and Regional Security Operations.

GPS is seeking a Technical Program Manager to lead a risk-driven, enterprise-scale vulnerability management program across cyber-physical security technologies. You will own strategy and execution for discovery, assessment, prioritization, and remediation of vulnerabilities impacting access control, video management, SOC platforms, security networks, servers / endpoints, cloud services, and integrations. The role emphasizes risk-based decisioning, automation, cross-functional influence, and audit-ready governance aligned to Oracle's security, privacy, and compliance standards.

Responsibilities

Daily Responsibilities

Lead incident triage, severity assignment, war-room facilitation, and time-boxed decision making; coordinate workarounds / rollbacks and guide post-incident reviews with clear actions and owners.

Manage the end-to-end change lifecycle : RFC quality checks, risk assessments, scheduling, validation, and enforcement of change freezes / blackouts for high-risk periods.

Provide clear, concise updates to executives, operations teams, and engineers; establish and maintain a single source of truth for status, timelines, and next steps.

Apply risk-based decisioning tailored to business impact, asset criticality, exposure, and blast radius.

Maintain audit-ready evidence and artifacts (incident timelines, approvals, tickets, test results, and exceptions).

Project Participation

Embed incident-readiness and change-governance requirements into site builds, data center expansions, retrofits, and technology upgrades for access control, VMS, SOC platforms, and security networks.

Champion pre-change testing strategies (lab validation, canary / gradual rollouts, rollback plans).

Coordinate cross-functional readiness (runbooks, spares, monitoring, alerting, on-call coverage) prior to go-live.

Governance, risk, and compliance

Operate within Oracle policies and align to frameworks such as ISO 27001 / 22301 and NIST; ensure segregation of duties, approvals, and traceability.

Define severity, priority, and risk criteria; manage change and emergency change processes; document exceptions and risk acceptances.

Partner with Legal / Privacy to ensure changes and incident handling respect privacy-by-design principles for video, access logs, and visitor data.

Operations enablement

Standardize incident runbooks and communications templates; automate approvals for low-risk standard changes to reduce toil and cycle time.

Build dashboards and metrics to spot trends, bottlenecks, and systemic risks; drive corrective actions and problem management.

Coach regional teams in mode-switching between crisis response and governance discipline; support knowledge base and SOP development.

Technology evaluation

Assess and tune ITSM, monitoring / observability, on-call / paging, and collaboration tools for reliability, signal quality, and secure data handling.

Evaluate integrations and automations (APIs, webhooks) that streamline RFC intake, risk scoring, owner routing, and verification.

Ensure telemetry and logging support rapid incident detection and post-incident analysis while meeting privacy and retention requirements.

When recommending third-party tools, verify alignment with Oracle's security, privacy, and procurement guidelines.

Stakeholder engagement

Influence without authority across GPS, OCI, Data Center Engineering, Regional Security Operations, IT / Network, vendors / integrators, and compliance teams.

Facilitate clear decision-making among diverse stakeholders; escalate effectively and ensure roles and responsibilities are understood.

Communicate status and risk in business terms to leadership and operational teams.

Minimum Qualifications

5+ years in change, incident, or service management roles within large, complex, or 24x7 environments.

Solid grasp of infrastructure, networks, operating systems, cloud (IaaS / PaaS / SaaS), containers / K8s, and application stacks sufficient to challenge plans and validate risk.

Demonstrated experience running war rooms, conducting post-incident reviews, and managing change processes.

Proven ability to apply risk-based decisioning and tailor responses to business impact and criticality.

Strong written and verbal communication; executive-ready status reporting and stakeholder management.

Experience with ITSM platforms, monitoring / observability, and on-call / paging tools; evidence and audit discipline.

Preferred Qualifications

Certifications : ITIL, PMP, CISM, or equivalent.

Experience in physical security ecosystems (access control, VMS, SOC platforms, badge / visitor systems) and converged cyber-physical environments.

Background in problem management, resilience engineering, and business continuity.

Familiarity with change risk models, error budgets / SLOs, and automated change gating.

Key Competencies

Balance speed with control; switch seamlessly between crisis leadership and governance discipline.

Clear, concise communicator to executives, customers, and engineers; establishes a single source of truth.

Mastery of incident management (triage, severity, war-room, workaround / rollback, PIRs) and change management (RFC quality, risk assessment, CAB, scheduling, validation, freeze / blackout).

Data-driven; leverages dashboards to identify trends and systemic risks.

Makes time-boxed decisions; conducts retrospectives and drives learning.

Empathy and resilience; supports team well-being during sustained on-call periods; strong collaboration across global teams.

Work Model and Travel

• Strong ability to work independently and with teams across global time zones.

Notes

Adherence to Oracle's security, privacy, and compliance standards is mandatory.

When proposing or integrating third-party tools or services, ensure alignment with Oracle's internal security, privacy, and procurement guidelines.

#LI-CG2

Disclaimer

Certain US customer or client-facing roles may be required to comply with applicable requirements, such as immunization and occupational health mandates.

Range and benefit information provided in this posting are specific to the stated locations only

US : Hiring Range in USD from : $106,300 to $223,400 per annum. May be eligible for bonus and equity.

Oracle maintains broad salary ranges for its roles in order to account for variations in knowledge, skills, experience, market conditions and locations, as well as reflect Oracle's differing products, industries and lines of business.

Candidates are typically placed into the range based on the preceding factors as well as internal peer equity.

Oracle US offers a comprehensive benefits package which includes the following

Medical, dental, and vision insurance, including expert medical opinion

Short term disability and long term disability

Life insurance and AD&D

Supplemental life insurance (Employee / Spouse / Child)

Health care and dependent care Flexible Spending Accounts

Pre-tax commuter and parking benefits

401(k) Savings and Investment Plan with company match

Paid time off : Flexible Vacation is provided to all eligible employees assigned to a salaried (non-overtime eligible) position. Accrued Vacation is provided to all other employees eligible for vacation benefits. For employees working at least 35 hours per week, the vacation accrual rate is 13 days annually for the first three years of employment and 18 days annually for subsequent years of employment. Vacation accrual is prorated for employees working between 20 and 34 hours per week. Employees working fewer than 20 hours per week are not eligible for vacation.

11 paid holidays

Paid sick leave : 72 hours of paid sick leave upon date of hire. Refreshes each calendar year. Unused balance will carry over each year up to a maximum cap of 112 hours.

Paid parental leave

Adoption assistance

Employee Stock Purchase Plan

Financial planning and group legal

Voluntary benefits including auto, homeowner and pet insurance

The role will generally accept applications for at least three calendar days from the posting date or as long as the job remains posted.

Career Level - IC4

About Us

As a world leader in cloud solutions, Oracle uses tomorrow's technology to tackle today's challenges. We've partnered with industry-leaders in almost every sector-and continue to thrive after 40+ years of change by operating with integrity.

We know that true innovation starts when everyone is empowered to contribute. That's why we're committed to growing an inclusive workforce that promotes opportunities for all.

Oracle careers open the door to global opportunities where work-life balance flourishes. We offer competitive benefits based on parity and consistency and support our people with flexible medical, life insurance, and retirement options. We also encourage employees to give back to their communities through our volunteer programs.

We're committed to including people with disabilities at all stages of the employment process. If you require accessibility assistance or accommodation for a disability at any point, let us know by emailing accommodation-request_mb@oracle.com or by calling +1 888 404 2494 in the United States.

Oracle is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans' status, or any other characteristic protected by law. Oracle will consider for employment qualified applicants with arrest and conviction records pursuant to applicable law.