Oracle Senior Security Software Engineer (JoinOCI-Edge) in Oakland, California

Design, develop, troubleshoot and debug software programs for databases, applications, tools, networks etc.

As a member of the software engineering division, you will assist in defining and developing software for tasks associated with the developing, debugging or designing of software applications or operating systems. Provide technical leadership to other software developers. Specify, design and implement modest changes to existing software architecture to meet changing needs.

Duties and tasks are varied and complex needing independent judgment. Fully competent in own area of expertise. May have project lead role and or supervise lower level personnel. BS or MS degree or equivalent experience relevant to functional area. 4 years of software engineering or related experience.

Oracle is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans status or any other characteristic protected by law.

-{PS..1}->

/The Oracle Cloud Infrastructure (OCI)team can provide you the opportunity to build and operate a suite of massivescale, integrated cloud services in a broadly distributed, multi-tenant cloudenvironment. OCI is committed to providing the best in cloud productsthat meet the needs of our customers who are tackling some of the world sbiggest challenges. /

/We offer unique opportunities for smart,hands-on engineers with the expertise and passion to solve difficult problemsin distributed highly available services and virtualized infrastructure. At every level, our engineers have a significant technical and businessimpact designing and building innovative new systems to power ourcustomer s business critical applications. /


Senior Security Software Engineer (JoinOCI-Edge)

/This position will work out of the Manchester, NH office with Cambridge,MA also being an option./

The Oracle Cloud Infrastructure(OCI) Edge Services security team is in search of a Security Software Engineerwho will lead security and compliance efforts for multiple EdgeServicesdevelopment teams. Reporting to the Manager of Software Development, the successfulcandidate will have a strong work ethic, deep understanding of technology atall layers of the stack, passion for secure development methodologies,vulnerability management, penetration testing, a diligent attention to detail,passion for learning, ability to work in a fast pace environment, and a greatsense of humor. This role should include the right blend of technical andnon-technical skills, and will be working across the entire OCI organization.

Are you waiting at all hours of theday and night for the next zero-day vulnerability on your twitter feed? Want tobe a part of building and securing the edge of Oracle s next generation cloud?This will be a tremendous opportunity for you work to with a bright and diversegroup of stakeholders at OCI.

At OCI we have big company benefits,and small tech company perks. Ever havea slide in your office? Free lunch onTuesdays? A dog friendly office?Cappuccino machine? At OCI, those arejust a few of the small tech company perks that complement traditional benefitsyou find at a large enterprise company.

Major Duties:

Build a security engineering program across multiple edge servicesproducts including CDN, WAF, and Certificate Services.

Develop security engineering processes to ensure security isconsidered throughout the development lifecycle.

Evangelize security engineering best practices across engineeringscrum teams.

Maintain strong knowledge of common security vulnerabilities, attackvectors, attack methods, and remediation techniques.

Perform assessments of application, operating systems and networkarchitectures for vulnerabilities and identify mitigations and securitycountermeasures.

Assist in information security investigations and responding toinformation security incidents.

Coding and scripting as needed to support security engineers (willingto be in the details).

Liaison with security team members to ensure technical securitycompliance requirements are met related to PCI-DSS, SOC 1, SOC 2, FedRAMP, andHIPAA.

Assist the information security team in responding to customer ssecurity architecture related inquiries.

Work within an Agile environment, you don t have to be a pro but bewilling to adapt and learn.

Participate in design discussions, add valuable input on nextgeneration services.

Evaluate various implementations to determine compliance with businessneeds and external specifications.

Establish and maintain productive relationships with peerorganizations.

Other duties as assigned.

Skills:

Holistic understanding of the Internet and hosting from the networklayer up through the application layer.

Scripting and coding experience with Go, Perl, Python or Java

Working knowledge of web, database, and operating system serversecurity configuration (Linux, Apache, MySQL, Cassandra)

Working knowledge of attack methods and mitigation strategiesincluding DDOS, Man in the Middle, Brute Force, SQL Injections, Cross-SiteScripting, Cross-Site Forgery Request, etc.

Deep understanding of Cyber threats including how malicious code worksand proliferates

Project management skills that enable you to lead multiple securityengineering and architecture projects at one time.

Player / Coach mentality that will enable you to successfully coachpeer team members in security techniques.

Identity and access management (I&AM) experience

Securing cloud based platforms such as Amazon AWS, Google, Azure

Experience with encryption and key management

SIEM Tools (e.g. ELK, Splunk)

Configuration management (e.g. Chef)

Security Tools: Nessus, Metasploit, Threat Stack, etc.

Strong communication (oral, written, presentation), interpersonal andconsultative skills are essential

A good sense of humor

Preferred Qualifications:

B.S. or M.S. in Computer Science,Computer Information Systems, Management Information Systems, and/or a relatedfield;

8 years of progressive experiencein systems administration, engineering, security engineering, penetrationtesting & ethical hacking or related field.

Cloud hosting experience (e.g.,Amazon Web Services, Oracle, Azure, Google)

Networking & DNS experience

CISSP, CISM or other securitycertifications preferred

Additional Skills:

Security in containerizedenvironments

Exposure to the following securitystandards/frameworks, rules and regulations, system trust principals: PCI-DSS,SOX-404, SSAE-16, SOC2, HIPAA, ISO 27001, FedRAMP.

Privacy Shield and EU privacyregulations

Government Security Clearance

/As part of Oracle semployment process candidates will be required to complete a pre-employmentscreening process, prior to an offer being made. This will involve identity andemployment verification, professional references, education verification andprofessional qualifications and memberships (if applicable)./

-{PS..2}->

Job: *Product Development

Organization: *Oracle

Title: Senior Security Software Engineer (JoinOCI-Edge)

Location: NH,New Hamp-Manchester

Requisition ID: 18001GTJ

Other Locations: United States, US-MA,Mass-Cambridge