Oracle · 8 hours ago
Sr Principal Hardware Security Engineer
Santa Clara, CA
Full-time
Onsite
Senior Level, Lead/Staff
$120K/yr - $252K/yrOracle is a world leader in cloud solutions, committed to innovation and integrity. They are seeking a Senior Principal Hardware Security Engineer to own security architecture within a hardware design organization, develop security lifecycle programs, and lead security projects across teams.
Data GovernanceData ManagementEnterprise SoftwareInformation TechnologySaaSSoftware
Responsibilities
Singular point-of-contact owning responsibility for every dimension of security related to Oracle-engineered hardware
Serve as security subject matter expert for key custom hardware security components such as root-of-trust (RoT) hardware, for both peer customer organizations and the wider hardware organization
Lead key hardware-focused security projects in conjunction with Oracle firmware and Oracle cloud teams
Establish, maintain, and report out on the operational status on the implementation of security related features within the hardware organization, across teams
Define, promote, and improve processes to build security into Oracle hardware designs
Enable the hardware organization to develop deeper security expertise relevant to their roles
Identify gaps in security features, processes, tools, and education; create and execute plans to address them
Work closely with the wider OHD and SCO (Supply Chain Operations) virtual security team, the Chief Security Architect, and key internal and external partners on hardware matters
Manage and review security aspects of third party components from the industry supply chain
Establish and/or participate (as needed) in PSIRT (Product Security Incident Response Team) relationships with key Oracle hardware suppliers and partners
Work with Oracle manufacturing teams to ensure that Oracle hardware is secure by default
Work directly with hardware design and development teams on architecture, implementation, deployment, and troubleshooting of server hardware security designs and architectures
Develop, implement, own, and run the day-to-day execution of a security review program and process that is 'baked-in' to the hardware design process, and conduct security reviews on system schematics and layouts as necessary along the development process, intercepting with reviews and security focused recommendations as early as feasible
Work closely and collaborate with other security points of contact inside and outside of the business unit, who cover areas of responsibility including BMC software stacks, system firmware, custom security hardware & firmware, cloud infrastructure security features, and more, as well as inter- and intra-org security architects
Develop and deliver informational & educational content on security topics, with a focus on hardware security and enabling hardware designers & developers at all levels within the org to think security in a practical way in their daily roles
Own and operate a long-term educational outreach program within the Hardware Design & Development organization that continues to raise the level of security awareness of all team members, as well as equips them with self-driven security analysis and skills relevant to their role. Coordinate with team leads, management, external training and educational service vendors, etc
Qualification
Required
Experience with the architecture, design, and implementation of modern server platforms consisting of multiple architectures and vendors, including, but not limited to, x86 (with both Intel and AMD parts) and ARM server architectures
Hands-on experience in an adversarial hardware security domain as applied to servers/systems, CPU architecture, modern compute infrastructure management subsystems, embedded systems, etc
Experience with understanding, analyzing, and communicating hardware security vulnerabilities, attacks, and research to hardware design communities and audiences, consisting of varied roles and responsibilities (e.g., architects, senior designers, junior design staff, technicians, etc.)
Hands-on experience with hardware design (architecture, schematic capture, board layout, interacting with suppliers & contract manufacturers, etc.)
Preferred
Reverse engineering experience in an applied security context, especially as applied to hardware level security
Experience and demonstrated low-level knowledge of non-volatile memory technologies 'low-level' system component interfaces, including, but not limited to, e.g.: NAND flash, NOR flash, SPI, I2C (incl. SMBus, PMBus), LPC, eSPI, etc
Experience with hardware level diagnostics and debugging, including early stage bring-up and power-on, platform firmware debugging, CPU complex/memory complex debugging and introspection, JTAG, etc. Comfortable with the use of hardware debuggers
Experience with platform level security technologies, including but not limited to secure boot (e.g., UEFI Secure Boot, Intel Boot Guard, measured boot, verified boot, etc.); platform firmware security architectures, roots of trust, and 'T minus 1' designs (e.g., Cerberus, Nitro, Titan, OpenTitan, Intel PFR, etc.); Trusted Execution Environments (TEE; e.g., SGX, TrustZone, SEV, etc.); TPM, remote attestation (e.g., TXT, SKINIT); memory encryption (e.g., Total Memory Encryption [TME], Secure Memory Encryption [SME])
Experience in security assessment of firmware, ideally paired with experience of developing and debugging firmware
FPGA implementation experience. Use of FPGAs in a hardware design context, and/or RTL/gateware implementation
Benefits
Medical, dental, and vision insurance, including expert medical opinion
Short term disability and long term disability
Life insurance and AD&D
Supplemental life insurance (Employee/Spouse/Child)
Health care and dependent care Flexible Spending Accounts
Pre-tax commuter and parking benefits
401(k) Savings and Investment Plan with company match
Paid time off: Flexible Vacation is provided to all eligible employees assigned to a salaried (non-overtime eligible) position. Accrued Vacation is provided to all other employees eligible for vacation benefits. For employees working at least 35 hours per week, the vacation accrual rate is 13 days annually for the first three years of employment and 18 days annually for subsequent years of employment. Vacation accrual is prorated for employees working between 20 and 34 hours per week. Employees working fewer than 20 hours per week are not eligible for vacation.
11 paid holidays
Paid sick leave: 72 hours of paid sick leave upon date of hire. Refreshes each calendar year. Unused balance will carry over each year up to a maximum cap of 112 hours.
Paid parental leave
Adoption assistance
Employee Stock Purchase Plan
Financial planning and group legal
Voluntary benefits including auto, homeowner and pet insurance
Company
Oracle
Oracle is an integrated cloud application and platform services that sells a range of enterprise information technology solutions.
Founded in 1977
10001+ employees
H1B Sponsorship
Oracle has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (1271)
2024 (846)
2023 (995)
2022 (1192)
2021 (985)
2020 (755)
Funding
Current Stage
Public CompanyTotal Funding
$25.75BKey Investors
Sequoia Capital
2025-09-24Post Ipo Debt· $18B
2025-02-03Post Ipo Debt· $7.75B
1986-03-12IPO
Leadership Team
Esteban Rubens
Healthcare Field CTO
G
Gerard Warrens
Field CTO, Business Strategy and Transformative Technologies
Recent News
The Motley Fool
2026-01-01
2025-12-31
2025-12-30
Company data provided by crunchbase