Oracle Principal Information Security Analyst (Penetration Tester) in Orlando, Florida

Design, develop, troubleshoot and debug software programs for databases, applications, tools, networks etc.

As a member of the software engineering division, you will take an active role in the definition and evolution of standard practices and procedures. You will be responsible for defining and developing software for tasks associated with the developing, designing and debugging of software applications or operating systems.

Work is non-routine and very complex, involving the application of advanced technical/business skills in area of specialization. Leading contributor individually and as a team member, providing direction and mentoring to others. BS or MS degree or equivalent experience relevant to functional area. 7 years of software engineering or related experience.

Oracle is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans status or any other characteristic protected by law.

Are you interested inassuring the security of Oracle s current and nextgeneration Cloud services? Does the prospect of conducting penetration testsacross the entire estate of a global corporation excite you? Do you want tojoin a growing team within an evolving security/ risk landscape?

/_UNITED STATES clearance is needed for this role: Secret Clearance_/

Our team is tasked with delivering a global penetration testing programthat covers every line of business within Oracle. As Oracle grows with newacquisitions, so we are growing and adapting to cover new estates and technologieswithin our program. Our goal is to ensure that Oracle is well positioned toface current and emerging threats to itself and its hosted customer data fromany source.

We are looking for experienced hackers and pentesters with theenthusiasm and motivation to develop themselves further and join us in pushingour global team s capabilities to a new level. A track record of self-educationand an ability to adapt comfortably to change is necessary, and will besupported by a formal training plan. The successful candidate will findthemselves in a very supportive team of equal peers and will contribute fullyto our pentesting platforms, tooling and evolving comprehensive methodologies.

This is an exciting opportunity to join a motivated team delivering aglobal penetration testing program.


Perform application-layer penetration testing againstCorporate and customer software applications and webservices deployed globally

Conduct network and server layer penetration testingagainst Corporate Internet-facing and internal systems

Document technical issues identified during securityassessments and incidents, and author formal reports

Participate in Red Team exercises directed againstOracle Lines Of Business world-wide

Follow up on implementation of corrective actions fromassessments and incidents

Research security threats and attack vectors

Manage network forensics and incident response whenassigned

Assist other GIS staff on specific projects andincidents as required

Perform special security projects on an ad-hoc basis

Perform other duties as assigned



Candidatemust hold or be prepared to gain US Security Clearance

Universitydegree from an accredited college, university, or equivalent

Professional certification: minimum OSCP/ CREST CRT or equivalent, CREST CCT Inf/App or equivalent preferred

Experience inInformation Security and technical aspects thereof, CISSP certificationpreferred

Priorexperience with systems development, systems administration, or networkadministration, 5 years minimum preferred

Previous hands-on experience in penetration testing and vulnerabilityassessment required, 5 years minimum preferred

Previous experience of automated web application testing, infrastructuretesting, and manual exploitation testing required, 5 years minimum preferred

Scripting/ programming experience (BASH, PowerShell, Python, C,Assembler) is an advantage

Knowledgeof web technologies and network communication methods

Familiaritywith general application and network security concepts

Knowledge of InformationSecurity standards and access controls such as ISO27001/2 and PCI DSS

Strong organizationalskills and detail-oriented, able to handle concurrent assignments

Strong presentation, writtenand verbal communication skills in English

Strong negotiationskills

Self-starter andself-sufficient, doesn t need to be micro-managed

Excellent team player,willing to share knowledge and skills with peers

Job: *Product Development

Organization: *Oracle

Title: Principal Information Security Analyst (Penetration Tester)

Location: United States

Requisition ID: 18001EDT