Principal Network Developer

Oracle

11d

About The Position

The IES Application Security Edge Network team designs, builds, and operates the L4–L7 load balancing estate that underpins our SaaS and tenant environments across OCI, including US Government and Federal regions. You will architect, automate, and operate highly available load balancing services (LBaaS), web application delivery, and traffic management at scale—ensuring “Site UP” through reliability, performance, security, and cost efficiency. As part of a high-impact team of Network Development Engineers and Network Services Engineers, you’ll lead modernization and migration to next-gen OCI networking with a deep focus on application delivery, traffic engineering, and observability. Ideal Candidate You’re a data-driven problem solver who thrives on simplifying complex systems. You believe in automation first, security-by-design, and measurable outcomes. You’re pragmatic, curious, and customer-obsessed—with a passion for building resilient L4–L7 services at scale. Only Oracle brings together the data, infrastructure, applications, and expertise to power everything from industry innovations to life-saving care. And with AI embedded across our products and services, we help customers turn that promise into a better future for all. Discover your potential at a company leading the way in AI and cloud solutions that impact billions of lives. True innovation starts when everyone is empowered to contribute. That’s why we’re committed to growing a workforce that promotes opportunities for all with competitive benefits that support our people with flexible medical, life insurance, and retirement options. We also encourage employees to give back to their communities through our volunteer programs. We’re committed to including people with disabilities at all stages of the employment process. If you require accessibility assistance or accommodation for a disability at any point, let us know by emailing accommodation-request_mb@oracle.com [accommodation-request_mb@oracle.com] or by calling 1-888-404-2494 in the United States. Oracle is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans’ status, or any other characteristic protected by law. Oracle will consider for employment qualified applicants with arrest and conviction records pursuant to applicable law.

Responsibilities

Design, migrate, and support OCI-native and multi-cloud load balancing services (OCI LBaaS, API Gateway, WAF, DNS steering), including US Government and Federal environments.
Architect and deliver Virtual Cloud Network (VCN) integrations for global SaaS and GIU tenants, focusing on edge and internal application delivery, zero-downtime cutovers, and blue/green traffic shifting.
Engineer L4–L7 policies: TLS termination/offload, mTLS, SNI, cipher/hardening, HTTP/2/3, header and cookie-based routing, gRPC, URL rewriting, health checks, connection pooling, and keepalive tuning.
Implement and manage global and regional traffic distribution: anycast/GSLB/DNS-based traffic steering, failover policies, origin health, weighted routing, geolocation, and proximity policies.
Integrate WAF/bot mitigation, DDoS protections, and rate limiting with LB data paths; enforce security posture through least privilege, secrets management, and certificate lifecycle automation.
Lead CSSAP documentation and reviews for L4–L7 components; guide GIUs, Oracle Health, and AI teams to meet compliance, FedRAMP/FISMA-aligned controls, and audit requirements.
Build Infrastructure as Code (IaC) for LB services (Terraform/Shepherd), including reusable modules, versioned policies, and automated change validation and rollbacks.
Define SLOs/SLAs/OLAs for LB availability, latency, and error budgets; implement telemetry, KPIs, and OKRs across capacity, performance, and security.
Drive incident reduction via RCA/Problem Management; lead change and release reviews for LB and edge network components.
Partner with application and platform teams to translate system demands (throughput, RPS, connection concurrency, TLS handshakes) into scalable LB designs and capacity models.
Own certificate, key, and secret lifecycle for public and private endpoints; integrate with PKI/HSM as required.
Evaluate new LB features/releases and standardize patterns for Live Site adoption (e.g., HTTP/3/QUIC, advanced health algorithms, adaptive routing).
Lead automation and innovation workshops on LBaaS patterns, policy-as-code, and self-service enablement.