Oracle Principal Security Engineer -- SaaS/Cloud Security in Cambridge, Massachusetts
Design, develop, troubleshoot and debug software programs for databases, applications, tools, networks etc.
As a member of the software engineering division, you will take an active role in the definition and evolution of standard practices and procedures. You will be responsible for defining and developing software for tasks associated with the developing, designing and debugging of software applications or operating systems.
Work is non-routine and very complex, involving the application of advanced technical/business skills in area of specialization. Leading contributor individually and as a team member, providing direction and mentoring to others. BS or MS degree or equivalent experience relevant to functional area. 7 years of software engineering or related experience.
Oracle is an Affirmative Action-Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability, protected veterans status, age, or any other characteristic protected by law.
This is a technical security engineering and operations role within Oracle SaaS Cloud Security (SCS). This position will be a part of the Life Cycle Management and Service Delivery Team. Focus will be on managing and monitoring security infrastructure and performing system administration related tasks for security systems. Candidate should have knowledge in information security, advanced systems administration and a thorough understanding of operating systems and configuration management tools/systems.
This is primarily an operational role with a focus on security systems and services administration. The role responsibilities include builds, maintenance and support of our configuration management system for application hosts. Beyond configuration management systems knowledge, a good understanding of both Linux and Windows operating system functionality, scripting and patching is important.
This role will work as part of a team managing security operating policies, procedures and other documentation. Will assist with compliance of internal and external audits. Running multiple time sensitive projects and communication with other internal security staff will be key.
Required Knowledge, Skills, Abilities, and Background
- Experience installing and managing SIEM solutions.
o Enterprise SIEM solutions (McAfee Nitro, SPLUNK, ELK is a plus)
o Experience creating custom rules/reports/dashboards or views, etc
Work directly with system owners to implement security controls and configure new tools
Enhance existing security tools and processes which provide the organization value by reducing risk
Development and execution of Standard Operating Procedures, Event Handlers, and Job Aids required for successful task completion
Perform effective troubleshooting to ensure tool efficiency, provide root cause analysis, and develop plans for remediation
Ability to work independently and engage individuals and teams located across multiple geographies and or cultures.
Excellent written and verbal communication skills, analytical ability, strong judgment and leadership skills, and the ability to work effectively with IT management and staff
Essential Duties and Responsibilities
The primary role will be to participate on a Lifecycle Management team to implement and configure security systems and onboard internal customers to the security services, primarily the SIEM. Other services may include IDS, AV, FIM.
This rolemayalso provide secondary support for the security organization:
o Gather evidence for internal and external audits
o Create/escalate requests for vulnerability fixes.
o Identify and recommend process improvements.
o Assist investigative tasks as part of specific incidents.
Preferred Knowledge, Skills, Abilities, and Background
- Engineering/Development experience
/ /Technical understanding and demonstrable experience of cloud engineering specifically in the development of applications and solutions that provide security controls.
• Hands-on experience/knowledge in the following or similar areas:
Automation development experience
Programming in Ruby, Java, Python, or Go
Build, change, and version infrastructure safely and efficiently using Terraform or like technology
Automation deployment and configuration management tools
(Chef, Ansible, and/or Puppet, etc.)
Oracle Linux, Redhat, or Windows platforms
SQL schema design experience with MySQL, Oracle, or Postgres
TCP/IP (ipv4 and ipv6) networking and related protocols
- Experience with the following
o Enterprise vulnerability management solutions.
o Enterprise scale IDS solutions.
o Enterprise Endpoint/AV solutions
Desirable certifications include: CISSP; CCSP; SANS GIAC GCED; GCIH; GCFA; GIAC GOLD
You thrive on collaboration.You make the people around you better. You love to collaborate with peers, engineers, operations, product managers, executives, and designers and inspire them to do their best.
*You are passionate and experienced as a security leader. *You engage with your peers, the industry and experts to stay current on research, threats, and innovation to drive the right directions and strategies from a security infrastructure perspective.
You are customer focused. Our success is based on customer satisfaction (internal and external) and how we build customer empathy in our culture, in our execution and our results.
You make people successful. It is not about the “I”, it is about the “team” and making your peers and the organization successful. As leaders we focus on making our team members as productive and empowered as possible to ensure optimized execution and results.
You are open and transparent. We are a team that is open, honest and shares openly with ourselves and our customers to build trust.
*You seek learning and feedback. *You are self-critical, you proactively seek out feedback. We lead by example and share feedback and learnings in a safe and productive way that focuses on improvements, root cause analysis and never blame as the desired result.
You make things happen. You own and are accountable for delivering the execution to the overall strategy and missions of the organization.
And finally, you want to be part of creating dramatic and impactful change at a company that is committed to driving security innovation and world class engineering in the SaaS Cloud Security space.
Position posted in Bellevue, Washington office. Remote work from home in United States is an option as well.
Job: *Product Development
Title: Principal Security Engineer -- SaaS/Cloud Security
Location: United States
Requisition ID: 20000TOM
- Oracle Jobs