Jobs for Veterans, Veteran Job Board |

Post Jobs

Job Information

Oracle Vulnerability Management Engineer in Marlborough, Massachusetts

Executes security controls to prevent hackers from infiltrating company information or jeopardizing e-commerce programs.

Researches attempted efforts to compromise security protocols. Maintains security systems for routers and switches. Administers security policies to control access to systems. Maintains the company s firewall. Uses applicable encryption methods. Provides information to management regarding the negative impact on the business caused by theft, destruction, alteration or denial of access to information.

Provide leadership and expertise in evaluating and developing complex business problems, frequently operating at the leading edge of technology. Recommends and justifies major changes to existing automated systems. BS or MS degree or equivalent experience relevant to functional area. Eight or more years of related experience recommended.

Oracle is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans status or any other characteristic protected by law.

GISVulnerability Management Job Description

VulnerabilityManagement Engineer

IC4/IC5 level


Thevulnerability management engineer will be responsible for designing,implementing and maintaining a technical vulnerability assessment solution thatallows Oracle to evaluate exposure to reported vulnerabilities and performtechnical validation to ensure that mitigation, patching and other remediationof security vulnerabilities have been performed in accordance with Oraclesecurity policy and standards.

Thevulnerability management engineer will develop and maintain strong workingrelationships with teams that are responsible for vulnerability management andpatching; state requirements for remediation and mitigation of vulnerabilitiesand use automated technical means to validate that appropriate measures havebeen implemented to address exposure.

The candidatemust possess a comprehensive understanding of the kinds of vulnerabilities thatcan impact cloud, production environments and endpoints.


Developtechnical infrastructure to perform vulnerability assessments of Oracleinformation systems, networks and applications, implementing automation whereverpossible.

Performvulnerability assessments, review vulnerability scan results and reportfindings in a consistent, standardized and prioritized manner basedupon criticality and risk.

Providesignificant input in defining the corporate vulnerability management framework,policy and standards.

Createprocesses to support the vulnerability management workflow that encompassesidentifying, classifying, evaluating and remediating security vulnerabilities.

Researchtechnical details of vulnerabilities and write advisories and reports thatprovide vulnerability analysis and remediation advice that can be understood byengineers and all levels of management.

Trackinformation from technology vendors and other sources in relation totechnical vulnerabilities of operating systems, applicationsand network devices.

Maintainexpert proficiency in understanding emerging threats and vulnerabilities, aswell as broader trends in information security.

Beconfident communicating with cross-functional teams and with all levels ofmanagement, stakeholders and operational teams.

Drivecontinual improvement and innovationto ensure the continued effectiveness of the vulnerabilitymanagement program.


BSor MS, or equivalent work experience relevant to vulnerability management with5 years in a technical security role.

Proficientin understanding security vulnerabilities, performing vulnerabilityassessments, threat hunting, analysis, reverse engineering malware andremediation techniques.

Experiencewith using vulnerability management and scanning tools such as QualysGuard,Nessus, BurpSuite and Nexpose

Applicationdevelopment experience and scripting skills, such as Perl, Ruby, Python, Shell scripting.

Expertisein cloud architecture and understanding specific threats and issues thatspecifically exist in cloud environments.

Expertknowledge of operating systems, especially Linux and Windows

Goodunderstanding of web technologies, middleware, databases and networkcommunication protocols.

Proficiencywith writing detailed, high quality summary reports for executives andtechnical analysis reports for engineers.

Knowledgeof security frameworks and regulatory standards such as CVSS, CIS CriticalSecurity Controls, NIST, PCI, HIPAA, etc.

CISSP,CISA, CISM, GIAC, or other security certifications are preferred.


Solidorganizational skills


Attentionto detail

Abilityto multitask

Self-driven,analytical and results oriented

Makesaccurate decisions in complicated, stressful situations with proven soundjudgment

Workwith a minimum direct supervision

Excellentteam player

Strongwritten and verbal communication skills

Job: *Information Technology

Organization: *Oracle

Title: Vulnerability Management Engineer

Location: United States

Requisition ID: 19000P05