Apply on Employer Site

Oracle · 1 day ago

Security Analyst 4

Burlington, MA

Full-time

Onsite

Senior Level, Lead/Staff

$97K/yr - $223K/yr

7+ years exp

Oracle is a world leader in cloud solutions, and they are seeking a highly driven hardware/firmware security expert to join their OCI Hardware team. The role focuses on managing and participating in various aspects of Oracle's hardware security assurance and vulnerability management, along with conducting technical security reviews and collaborating with internal and external teams.

Data GovernanceData ManagementEnterprise SoftwareInformation TechnologySaaSSoftware

H1B Sponsor Likely

Responsibilities

Monitor vendor embargoed advisories (Intel, AMD, NVIDIA, ARM, etc.), VINCE, and other sources for hardware and firmware vulnerabilities

Perform risk analysis and threat modeling to triage applicability and risk of vulnerabilities to Oracle hardware products and platforms

Drive and track mitigation of vulnerabilities across various OCI teams and stakeholders through rollout

Communicate risk and mitigation plan to internal teams, leadership, and customers through legally approved messaging

Familiarity with python in order to run internal tools that aid with vul mgmt

Helping engineering teams plan for security reviews of the HW/FW technologies which are being considered for use

Ensuring that teams create the required materials for

Inbound HW/FW security reviews

Inbound third party software security reviews

Product release security reviews

Performing these security reviews

Tracking the progress of individual reviews and producing reports

Identifying and driving improvements to the processes

Working with the Hardware Chief Security Architect and virtual security team and key internal partners

Working with Oracle's 3rd party ecosystem to communicate Oracle's hardware security requirements and assess present adoption and future compliance

Acting as a technical security resource for Oracle's 3rd party ecosystem

Developing tools as-needed to support the process

Opportunities to work on code level assessment partnering with the Core Firmware Engineering team

Opportunities to be involved with Architectural Risk Analysis and threat analysis

Qualification

Security analysisFirmware/software developmentRisk analysisPythonC/C++Linux ProgrammingJavaIndependenceCommunicationProblem solvingAdaptability

Required

B.S. in Computer Science, Computer Engineering, or related field

7+ years in the field of software engineering and/or security

Experience in security analysis/assessments and the ability to audit security or forensic reports

Expertise across secure firmware/software development lifecycle e.g. component security reviews, static and dynamic analysis tools

Highly motivated, with a sense of urgency and ability to deliver multiple tasks under time-frame pressure

Big problem solver, who can be both strategic and able to dive into details as needed

Capable of working independently

Experience with understanding, analyzing, and communicating hardware security vulnerabilities, attacks, and research to engineering communities and audiences

Comfortable dealing with ambiguity and ability to adapt to changing environment and needs

Excellent written and oral communication skills

Experience with the architecture, design, and implementation of modern server platform hardware & firmware

Programming experience (C/C++, Linux Programming, bash, Python, Java)

Benefits

Medical, dental, and vision insurance, including expert medical opinion

Short term disability and long term disability

Life insurance and AD&D

Supplemental life insurance (Employee/Spouse/Child)

Health care and dependent care Flexible Spending Accounts

Pre-tax commuter and parking benefits

401(k) Savings and Investment Plan with company match

Paid time off: Flexible Vacation is provided to all eligible employees assigned to a salaried (non-overtime eligible) position. Accrued Vacation is provided to all other employees eligible for vacation benefits. For employees working at least 35 hours per week, the vacation accrual rate is 13 days annually for the first three years of employment and 18 days annually for subsequent years of employment. Vacation accrual is prorated for employees working between 20 and 34 hours per week. Employees working fewer than 20 hours per week are not eligible for vacation.

11 paid holidays

Paid sick leave: 72 hours of paid sick leave upon date of hire. Refreshes each calendar year. Unused balance will carry over each year up to a maximum cap of 112 hours.

Paid parental leave

Adoption assistance

Employee Stock Purchase Plan

Financial planning and group legal

Voluntary benefits including auto, homeowner and pet insurance

Company

Oracle

Glassdoor3.8

Oracle is an integrated cloud application and platform services that sells a range of enterprise information technology solutions.

Founded in 1977

Austin, Texas, USA

10001+ employees

https://www.oracle.com/

H1B Sponsorship

Oracle has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2025 (1271)

2024 (846)

2023 (995)

2022 (1192)

2021 (985)

2020 (755)

Funding

Current Stage

Public Company

Total Funding

$25.75B

Key Investors

Sequoia Capital

2025-09-24Post Ipo Debt· $18B

2025-02-03Post Ipo Debt· $7.75B

1986-03-12IPO

Leadership Team

Esteban Rubens

Healthcare Field CTO

Gerard Warrens

Field CTO, Business Strategy and Transformative Technologies

Recent News

The Tech Portal

Oracle-led group to take control of TikTok US operations

2026-01-25

Axios

The challenges facing the Ellisons' media empire

2026-01-25

ChannelX

Future of TikTok in the USA confirmed for 7.5 million businesses

2026-01-25

Company data provided by crunchbase