Principal Security Engineer (Oracle Cloud Security)

The Oracle Cloud Security and Safety team is seeking dedicated security engineers looking to make their mark in a new security domain. The team is committed to bridging the gap between operations and security, empowering the engineering and operations teams within Oracle to operate their services without fear of security impacting mistakes or malicious behavior. Oracle Cloud Infrastructure is committed to constantly improving and securing our suite of massive scale, integrated cloud services in a broadly distributed, multi-tenant cloud environment. We are committed to providing the best in cloud products that meet the needs of our customers who are tackling some of the world’s biggest challenges.

We offer unique opportunities for smart, hands-on security engineers with the expertise and passion to solve difficult architecture, engineering, and process problems. Our customers run their businesses on our cloud, and our mission is to provide them with the most secure cloud services. Our ideal candidate is a security engineer with expertise and passion in finding and improving areas of weakness, while developing new standards in the security and safe operation of distributed systems, multi-tenant services and large-scale infrastructures. If this is you, joining Oracle Cloud Infrastructure (OCI) will enable you to design and build innovative new security models & systems from the ground up. These are exciting times in our space – we are growing fast and working on ambitious new initiatives. A security-focused engineer at any level can make significant technical and business impact

Responsibilities:

• Prototype, design, and implement security solutions for new and challenging problems
• Drive and champion security tool development (e.g. scanning tools)
• Consult software development teams in design and architecture of safe and secure systems through Threat Modeling and modeling exercises
• Champion and consult on secure development lifecycle practices
• Design and integrate verification and posture reporting mechanisms
• Define security configuration and implementation best practices

Qualifications:

• Bachelor’s or Master’s degree in Computer Science or related field
• 5+ years of experience in security engineering or related field or equivalent experience
• Experience building automated security solutions
• Strong security experience, particularly with focus in one of the following areas:
• Defensive Security
• Offensive Security
• Service architecture and Design Patterns
• Strong collaboration and communication skills

Preferred Skills

• Experience scaling operational activities via Python, Bash, and other tools
• DevOps or SRE experience operating large, distributed, continuously deployed services
• Experience operating large, distributed, continuously deployed services
• Expertise in designing databases schemas in (NoSQL / SQL).
• Knowledge on bridging security engineering requirements into the software development life cycle.
• Security training and mentoring experience
• Experience with statistical/mathematical predictive modeling
• Experience with machine learning / artificial intelligence
• Experience designing resilient systems that support quick recovery
• Experience with container orchestration and management
• History of collaborating and integrating processes with software development teams, data scientists, business and other technical roles
• Experience with Java or Python development