Hardware Security, Senior Principal Developer


On Site
USD 120,100.00 - 251,600.00 per year
Full Time


Supply chain management
Oracle Cloud
Security architecture
Hardware development
Incident management
Oracle EBS
Server hardware
Security awareness
Security analysis
Infrastructure management
Embedded systems
Schematic capture
Reverse engineering
Customer facing
Life insurance
Health care
Financial planning
Cloud computing
Computer hardware
Internal communications
Software deployment
Adobe Flash
Value engineering

Job Details

Job Description

Oracle Cloud Infrastructure (OCI) is seeking a highly driven hardware security expert at the Senior Principal Engineer level. The individual in this role will lead and drive the hardware security architecture and related design aspects of the teams developing cutting edge hardware systems and solutions for Oracle's growing Cloud and flagship enterprise solutions. The Oracle Hardware Development organization you will join has delivered the first and second generation of Oracle cloud platforms and is working to build the next generation of cloud and enterprise systems, with record breaking-performance, security, and world class quality using the latest and greatest merchant silicon and technologies.

As part of the Oracle Hardware Development (OHD) Hardware Engineering Organization, you will be involved in developing the next generation of Oracle hardware that underlies all of Oracle's Cloud and Enterprise platform offerings. These systems utilize leading edge technology to deliver record-breaking performance, simplified management, security, self-monitoring and diagnosis as well as cost-saving efficiencies. You will apply your expertise in detailed security evaluation of merchant silicon, your creativity in creating & driving secured and hardened platform solutions. You will collaborate across engineering development functional teams to create leading edge, cohesive and executable hardware security architectures and solutions.

Career Level - IC5



  • Singular point-of-contact owning responsibility for every dimension of security related to Oracle-engineered hardware
  • Serve as security subject matter expert for key custom hardware security components such as root-of-trust (RoT) hardware, for both peer customer organizations and the wider hardware organization
  • Lead key hardware-focused security projects in conjunction with Oracle firmware and Oracle cloud teams
  • Establish, maintain, and report out on the operational status on the implementation of security related features within the hardware organization, across teams
  • Define, promote, and improve processes to build security into Oracle hardware designs
  • Enable the hardware organization to develop deeper security expertise relevant to their roles
  • Identify gaps in security features, processes, tools, and education; create and execute plans to address them
  • Work closely with the wider OHD and SCO (Supply Chain Operations) virtual security team, the Chief Security Architect, and key internal and external partners on hardware matters
  • Manage and review security aspects of third party components from the industry supply chain
  • Establish and/or participate (as needed) in PSIRT (Product Security Incident Response Team) relationships with key Oracle hardware suppliers and partners
  • Work with Oracle manufacturing teams to ensure that Oracle hardware is secure by default

What This Role Looks Like

  • Work directly with hardware design and development teams on architecture, implementation, deployment, and troubleshooting of server hardware security designs and architectures.
  • Develop, implement, own, and run the day-to-day execution of a security review program and process that is \"baked-in\" to the hardware design process, and conduct security reviews on system schematics and layouts as necessary along the development process, intercepting with reviews and security focused recommendations as early as feasible.
  • Work closely and collaborate with other security points of contact inside and outside of the business unit, who cover areas of responsibility including BMC software stacks, system firmware, custom security hardware & firmware, cloud infrastructure security features, and more, as well as inter- and intra-org security architects.
  • Develop and deliver informational & educational content on security topics, with a focus on hardware security and enabling hardware designers & developers at all levels within the org to "think security" in a practical way in their daily roles.
  • Own and operate a long-term educational outreach program within the Hardware Design & Development organization that continues to raise the level of security awareness of all team members, as well as equips them with self-driven security analysis and skills relevant to their role. Coordinate with team leads, management, external training and educational service vendors, etc.

Required Qualifications

  • Experience with the architecture, design, and implementation of modern server platforms consisting of multiple architectures and vendors, including, but not limited to, x86 (with both Intel and AMD parts) and ARM server architectures.
  • Hands-on experience in an adversarial hardware security domain as applied to servers/systems, CPU architecture, modern compute infrastructure management subsystems, embedded systems, etc.
  • Experience with understanding, analyzing, and communicating hardware security vulnerabilities, attacks, and research to hardware design communities and audiences, consisting of varied roles and responsibilities (e.g., architects, senior designers, junior design staff, technicians, etc.).
  • Hands-on experience with hardware design (architecture, schematic capture, board layout, interacting with suppliers & contract manufacturers, etc.).

Preferred Qualifications

  • Reverse engineering experience in an applied security context, especially as applied to hardware level security.
  • Experience and demonstrated low-level knowledge of non-volatile memory technologies \"low-level\" system component interfaces, including, but not limited to, e.g.: NAND flash, NOR flash, SPI, I2C (incl. SMBus, PMBus), LPC, eSPI, etc.
  • Experience with hardware level diagnostics and debugging, including early stage bring-up and power-on, platform firmware debugging, CPU complex/memory complex debugging and introspection, JTAG, etc. Comfortable with the use of hardware debuggers.
  • Experience with platform level security technologies, including but not limited to secure boot (e.g., UEFI Secure Boot, Intel Boot Guard, measured boot, verified boot, etc.); platform firmware security architectures, roots of trust, and "T minus 1" designs (e.g., Cerberus, Nitro, Titan, OpenTitan, Intel PFR, etc.); Trusted Execution Environments (TEE; e.g., SGX, TrustZone, SEV, etc.); TPM, remote attestation (e.g., TXT, SKINIT); memory encryption (e.g., Total Memory Encryption [TME], Secure Memory Encryption [SME]).
  • Experience in security assessment of firmware, ideally paired with experience of developing and debugging firmware.
  • FPGA implementation experience. Use of FPGAs in a hardware design context, and/or RTL/gateware implementation.



Certain US customer or client-facing roles may be required to comply with applicable requirements, such as immunization and occupational health mandates.

Range and benefit information provided in this posting are specific to the stated locations only

US: Hiring Range: from $120,100 to $251,600 per annum. May be eligible for bonus, equity, and compensation deferral.

Oracle maintains broad salary ranges for its roles in order to account for variations in knowledge, skills, experience, market conditions and locations, as well as reflect Oracle's differing products, industries and lines of business.

Candidates are typically placed into the range based on the preceding factors as well as internal peer equity.

Oracle US offers a comprehensive benefits package which includes the following:

1. Medical, dental, and vision insurance, including expert medical opinion

2. Short term disability and long term disability

3. Life insurance and AD&D

4. Supplemental life insurance (Employee/Spouse/Child)

5. Health care and dependent care Flexible Spending Accounts

6. Pre-tax commuter and parking benefits

7. 401(k) Savings and Investment Plan with company match

8. Paid time off: Flexible Vacation is provided to all eligible employees assigned to a salaried (non-overtime eligible) position. Accrued Vacation is provided to all other employees eligible for vacation benefits. For employees working at least 35 hours per week, the vacation accrual rate is 13 days annually for the first three years of employment and 18 days annually for subsequent years of employment. Vacation accrual is prorated for employees working between 20 and 34 hours per week. Employees working fewer than 20 hours per week are not eligible for vacation.

9. 11 paid holidays

10. Paid sick leave: 72 hours of paid sick leave upon date of hire. Refreshes each calendar year. Unused balance will carry over each year up to a maximum cap of 112 hours.

11. Paid parental leave

12. Adoption assistance

13. Employee Stock Purchase Plan

14. Financial planning and group legal

15. Voluntary benefits including auto, homeowner and pet insurance

The role will generally accept applications for at least three calendar days from the posting date or as long as the job remains posted.

About Us

As a world leader in cloud solutions, Oracle uses tomorrow's technology to tackle today's problems. True innovation starts with diverse perspectives and various abilities and backgrounds.

When everyone's voice is heard, we're inspired to go beyond what's been done before. It's why we're committed to expanding our inclusive workforce that promotes diverse insights and perspectives.

We've partnered with industry-leaders in almost every sector-and continue to thrive after 40+ years of change by operating with integrity.

Oracle careers open the door to global opportunities where work-life balance flourishes. We offer a highly competitive suite of employee benefits designed on the principles of parity and consistency. We put our people first with flexible medical, life insurance and retirement options. We also encourage employees to give back to their communities through our volunteer programs.

We're committed to including people with disabilities at all stages of the employment process. If you require accessibility assistance or accommodation for a disability at any point, let us know by calling +1 , option one.


Oracle is an Equal Employment Opportunity Employer*. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans' status, or any other characteristic protected by law. Oracle will consider for employment qualified applicants with arrest and conviction records pursuant to applicable law.

* Which includes being a United States Affirmative Action Employer