Be an early applicantLess than 25 applicants

Company

Oracle · 7 hours ago

Principal Security Pentester - OASE

United States

Full-time

Remote

Lead/Staff

$109K/yr - $223K/yr

Maximize your interview chances

Data GovernanceData Management

H1B Sponsor Likely

Insider Connection @Oracle

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Responsible for advanced planning, design and build of security systems, applications, environments and architectures; oversees the implementation of security systems, applications, environments and architectures and ensures compliance with information security standards and corporate security policies and procedures.

Provides technical advice and direction to support the design and development of secure architectures.

May participate in an incident management team, bringing advanced-level skills to respond to security events in line with Oracle incident response playbooks. Investigates purported intrusions and breaches, and oversees root cause analysis. Coordinates incidents with other business units and may act as Incident Commander of serious incidents. Develops new methods, and playbooks, as well as sophisticated scripts, applications, and tools, and trains others in their use.

May participate in an incident management team, responding to security events in line with Oracle incident response playbooks. Investigates purported intrusions and breaches, and oversees root cause analysis. Coordinates incidents with other business units and may act as incident commander of serious incidents. Participates in developing new methods, playbooks throughout Oracle.

Evaluates existing and proposed technical architectures for security risk, provides technical advice to support the design and development of secure architectures and recommends security controls to mitigate those risks. Evaluations of internal security architecture may include design assessment, risk assessment, and threat modeling.

Brings advanced-level skills to research, evaluate, track, and manage information security threats and vulnerabilities in situations where in-depth analysis of ambiguous information is required, and where computer programming/scripting knowledge is required.

Work with Senior management to develop and implement a multi-year security roadmap

Focus on operational and strategic level tasks, and provide counsel and guidance to the junior level security operations engineers in the department.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Oracle Cloud Infrastructure (OCI)Penetration TestingSecurity EngineeringVulnerability DiscoveryAWSAzureGCPLinux/Unix AdministrationNetworking FundamentalsProgramming PythonProgramming JavaProgramming BashContainers DockerContainers KubernetesCI/CD Tools AnsibleCI/CD Tools PuppetCI/CD Tools ChefOracle DatabaseAgile MethodologiesIssue Tracking JiraIssue Tracking ConfluenceMySQLKali LinuxBurpSuitePostmanNmapNessusWireshark

Required

Oracle Cloud Infrastructure (OCI) and/or AWS, Azure, or GCP compute, storage, and network operational experience.

Methodical approaches to fixing and solving complex technical problems.

Issue tracking and teamwork (Jira and Confluence).

Producing documentation in support of developed work (KBs, run books, help guides).

Linux/Unix system administration including system level knowledge of Linux on OCI Gen 2, creating and completing scripts.

Networking and TCP/IP fundamentals.

Applying agile methodologies.

Working with remote, global teams as well as individuals.

Ability to effectively assess and communicate risks and appropriate levels of urgency to management and engineering staff as well as team environment.

Working independently and in a self-directed manner.

Preferred

proven experience in Security engineering / application / penetration (Red/Black-box) / vulnerabilities.

Strong application/product/software security background.

Vulnerability discovery across Cloud services.

Extensive research or experience with multiple classes of security bugs.

Emergent threat testing.

Understand internet networking services, such as DNS, HTTP, etc.

Programming and scripting languages (Python, Java, bash are our preferred).

Using Ci/CD scripting tools such as Ansible, Puppet, or Chef.

Containers and orchestration (Docker, Kubernetes).

Oracle Database, MySQL or other RDBMS.

Used Kali Linux, BurpSuite, Postman, Nmap.Nessus, Wireshark.

Benefits

Medical, dental, and vision insurance, including expert medical opinion

Short term disability and long term disability

Life insurance and AD&D

Supplemental life insurance (Employee/Spouse/Child)

Health care and dependent care Flexible Spending Accounts

Pre-tax commuter and parking benefits

401(k) Savings and Investment Plan with company match

Paid time off: Flexible Vacation is provided to all eligible employees assigned to a salaried (non-overtime eligible) position.

11 paid holidays

Paid sick leave: 72 hours of paid sick leave upon date of hire.

Paid parental leave

Adoption assistance

Employee Stock Purchase Plan

Financial planning and group legal

Voluntary benefits including auto, homeowner and pet insurance

Company

Oracle

Glassdoor

3.8

Oracle is an integrated cloud application and platform services that sells a range of enterprise information technology solutions.

Founded in 1977

Austin, Texas, USA

10,001+ employees

https://www.oracle.com/

H1B Sponsorship

Oracle has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2023 (794)

2022 (1124)

2021 (1049)

2020 (764)