Principal Security Engineer
Oracle•Nashville, TN
1d
About The Position
We're looking for hands-on security engineers with expertise and passion in solving difficult security problems in distributed systems, multi-tenant services and large-scale infrastructures. If this is you, Oracle Cloud Security can help you design and build innovative new systems from the ground up, implement and configure security solutions to prevent security issues, and work with best in class security products. Things you’ll do: Prototype, design, and implement security solutions for new and challenging problems Drive and champion security tool development (e.g. scanning tools) Champion and consult on secure development lifecycle practices Design and build security verification mechanisms Define security configuration and implementation best practices
Requirements
- Bachelor’s or Master’s degree in Computer Science or related field
- 5+ years of experience in security engineering or related field or equivalent experience
- Experience building automated security solutions
- Strong security experience, particularly with focus in one of the following areas: Defensive Security Offensive Security Service architecture and Design Patterns
- Strong collaboration and communication skills
Nice To Haves
- Experience working in a large cloud or Internet software company
- Expertise in bridging security engineering requirements into software developers life cycle.
- Experience scaling operational activities via Python, Bash, and other tools
- Expertise in designing databases schemas in (NoSQL / SQL) and working with relational data.
- Experience with statistical/mathematical predictive modeling
- Experience with machine learning / artificial intelligence
- Experience collaborating with software development teams, data scientists, business and other technical roles
- Experience with Python, R, or Java development
Responsibilities
- Responsible for advanced planning, design and build of security systems, applications, environments and architectures; oversees the implementation of security systems, applications, environments and architectures and ensures compliance with information security standards and corporate security policies and procedures.
- Provides technical advice and direction to support the design and development of secure architectures.
- May participate in an incident management team, bringing advanced-level skills to respond to security events in line with Oracle incident response playbooks.
- Investigates purported intrusions and breaches, and oversees root cause analysis.
- Coordinates incidents with other business units and may act as Incident Commander of serious incidents.
- Develops new methods, and playbooks, as well as sophisticated scripts, applications, and tools, and trains others in their use.
- May participate in an incident management team, responding to security events in line with Oracle incident response playbooks.
- Investigates purported intrusions and breaches, and oversees root cause analysis.
- Coordinates incidents with other business units and may act as incident commander of serious incidents.
- Participates in developing new methods, playbooks throughout Oracle.
- Evaluates existing and proposed technical architectures for security risk, provides technical advice to support the design and development of secure architectures and recommends security controls to mitigate those risks.
- Evaluations of internal security architecture may include design assessment, risk assessment, and threat modeling.
- Brings advanced-level skills to research, evaluate, track, and manage information security threats and vulnerabilities in situations where in-depth analysis of ambiguous information is required, and where computer programming/scripting knowledge is required.
- Work with Senior management to develop and implement a multi-year security roadmap
- Focus on operational and strategic level tasks, and provide counsel and guidance to the junior level security operations engineers in the department.
Benefits
- Medical, dental, and vision insurance, including expert medical opinion
- Short term disability and long term disability
- Life insurance and AD&D
- Supplemental life insurance (Employee/Spouse/Child)
- Health care and dependent care Flexible Spending Accounts
- Pre-tax commuter and parking benefits
- 401(k) Savings and Investment Plan with company match
- Paid time off: Flexible Vacation is provided to all eligible employees assigned to a salaried (non-overtime eligible) position. Accrued Vacation is provided to all other employees eligible for vacation benefits. For employees working at least 35 hours per week, the vacation accrual rate is 13 days annually for the first three years of employment and 18 days annually for subsequent years of employment. Vacation accrual is prorated for employees working between 20 and 34 hours per week. Employees working fewer than 20 hours per week are not eligible for vacation.
- 11 paid holidays
- Paid sick leave: 72 hours of paid sick leave upon date of hire. Refreshes each calendar year. Unused balance will carry over each year up to a maximum cap of 112 hours.
- Paid parental leave
- Adoption assistance
- Employee Stock Purchase Plan
- Financial planning and group legal
- Voluntary benefits including auto, homeowner and pet insurance
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
Upload and Match Resume
What This Job Offers
Job Type
Full-time
Career Level
Senior
