Overview
Remote
Full Time
Skills
Internal Communications
Integrated Circuit
IC
ROOT
Testing
Computer Science
Software Engineering
Software Testing
Penetration Testing
Reverse Engineering
Malware Analysis
C
C++
Analytical Skill
Fluency
English
IOS Development
Android
Software Security
Mentorship
CaliberRM
Spectrum
Energy
Art
SCA
FOCUS
Evaluation
Information Security
Security Engineering
Security Architecture
Regulatory Compliance
Security Controls
ISO/IEC 27001:2005
System On A Chip
FedRAMP
SaaS
PaaS
IaaS
Software Development Methodology
Scripting
Programming Languages
Terraform
Python
Ruby
Cloud Architecture
Risk Management
Microsoft Windows Administration
Log Analysis
Identity Management
Middleware
Database
Firewall
Network
Communication
Database Security
Encryption
Computer Networking
Routers
Switches
Cloud Computing
Value Engineering
Innovation
Life Insurance
Accessibility
Oracle
Law
Job Details
Job Description
Do you have a passion for developing a global understanding of a given program? We are looking for a Principal Security Engineer with experience in various aspects of Software Understanding including the ability to answer questions related to unexpected behavior (e.g., advanced persistent threats) and identifying the root causes for such behavior. As a Principal Security Engineer, you will work collaboratively with other engineers in the software assurance team to extend and support the existing work related to identifying normal, abnormal and malicious behaviors (what is called Persistent Engagement Team). We value self-initiated security or software engineers who have a passion to learn, build and engage in analyzing software (including source-code, binaries, other supporting information) in a rigorous fashion that goes beyond standard testing, pen-testing, and reverse engineering techniques.
Work You'll Do
As a member of our team, you will work with other team members to further develop an in-house expertise in analysis of software that will help those deploying and operating the software-based system assess risk by asking relevant questions on the behavior of the software. The focus will be on identifying impactful security vulnerabilities across a variety of architectures and platforms. You will be collaborating with engineers based in Australia, UK and the United States.
Your responsibilities include contributing to the design, implementation, integration and hands-on analyses to improve the understanding the behavior of the software that is under evaluation via practical solutions.
What You'll Bring
Nice to Have
What We'll Give You
Who We Are
We are a world-class team of high-caliber security software developers who thrive on new challenges. We are an inclusive and diverse team with a full spectrum of experience distributed globally. We have the resources of a large enterprise and the energy of a start-up, working on advancing the state-of-the-art for developers through SAST, SCA and Binary Analysis tools. We also have teams can detect attacks on complex platforms and systems. We are a dedicated team, leveraging each other's insights and abilities to produce cutting edge solutions for today's complex and inter-connected, inter-dependent, infra-structure. We value people who can use their skills to further develop and enhance our tools, as well as our procedures and playbooks. Join us to grow your career and create the future of software understanding together.
Responsibilities
As a member of our team, you will work with other team members to further develop an in-house expertise in analysis of software that will help those deploying and operating the software-based system assess risk by asking relevant questions on the behavior of the software. The focus will be on identifying impactful security vulnerabilities across a variety of architectures and platforms. You will be collaborating with engineers based in Australia, UK and the United States.
Your responsibilities include contributing to the design, implementation, integration and hands-on analyses to improve the understanding the behavior of the software that is under evaluation via practical solutions
Qualifications
Minimum of 8 years related experience in an information security role supporting security programs and security engineering/architecture in complex enterprise environments. Hands on experience with enterprise security architecture, engineering and implementation required.
Knowledge of compliance program security controls, like ISO 27001, SOC 2, HITRUST, and FedRAMP, as applied to cloud SaaS, PaaS and IaaS operations.
Familiarity with SDLC principles and scripting & programming languages (such as Terraform, Python, and Ruby).
Strong knowledge of: Cloud architecture and security principles. Risk Management Frameworks. *nix and Windows system administration.
Experience with: Logging and log analysis. Identity management principles and technology.
Preferred but not required qualifications include:
Bachelor-level university degree in a relevant field from an accredited university, or equivalent.
Strong knowledge of web technologies, middleware, database, OS, firewalls, network communication protocols and methods.
Knowledge of database security principles.
Knowledge of encryption technologies and architectures.
Expert level experience in evaluating and assessing security threats across a variety of environments and industries.
Expert level understanding of secure networking principles, routers, switches and load balancers.
About Us
As a world leader in cloud solutions, Oracle uses tomorrow's technology to tackle today's challenges. We've partnered with industry-leaders in almost every sector-and continue to thrive after 40+ years of change by operating with integrity.
We know that true innovation starts when everyone is empowered to contribute. That's why we're committed to growing an inclusive workforce that promotes opportunities for all.
Oracle careers open the door to global opportunities where work-life balance flourishes. We offer competitive benefits based on parity and consistency and support our people with flexible medical, life insurance, and retirement options. We also encourage employees to give back to their communities through our volunteer programs.
We're committed to including people with disabilities at all stages of the employment process. If you require accessibility assistance or accommodation for a disability at any point, let us know by emailing or by calling +1 in the United States.
Oracle is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans' status, or any other characteristic protected by law. Oracle will consider for employment qualified applicants with arrest and conviction records pursuant to applicable law.
Do you have a passion for developing a global understanding of a given program? We are looking for a Principal Security Engineer with experience in various aspects of Software Understanding including the ability to answer questions related to unexpected behavior (e.g., advanced persistent threats) and identifying the root causes for such behavior. As a Principal Security Engineer, you will work collaboratively with other engineers in the software assurance team to extend and support the existing work related to identifying normal, abnormal and malicious behaviors (what is called Persistent Engagement Team). We value self-initiated security or software engineers who have a passion to learn, build and engage in analyzing software (including source-code, binaries, other supporting information) in a rigorous fashion that goes beyond standard testing, pen-testing, and reverse engineering techniques.
Work You'll Do
As a member of our team, you will work with other team members to further develop an in-house expertise in analysis of software that will help those deploying and operating the software-based system assess risk by asking relevant questions on the behavior of the software. The focus will be on identifying impactful security vulnerabilities across a variety of architectures and platforms. You will be collaborating with engineers based in Australia, UK and the United States.
Your responsibilities include contributing to the design, implementation, integration and hands-on analyses to improve the understanding the behavior of the software that is under evaluation via practical solutions.
What You'll Bring
- Bachelor's or Master's Degree in Computer Science, Software Engineering or related disciplines
- 10+ years of operational experience in relevant topic such as software testing (including fuzzing, pen-testing), reverse engineering, dynamic monitoring of systems, or malware analysis
- Experience in conducting security assessments
- Knowledge of common exploitation countermeasures such as CFI, ASLR, etc.
- Excellent programming skills in C, C++ and/or Python
- Ability to work as part of a team as well as independently
- Strong analytical skills combined with good communication skills and fluent English
Nice to Have
- Experience with Ghidra, AFL++, Code-analysis tools, Log analysis
- Active participant or organizer of Capture the Flag competitions
- Understanding of iOS and Android ecosystems
- Understanding and appreciation of software application security
- Experience working with geographically distributed teams
- Ability to mentor junior engineers
What We'll Give You
- Ability to work in a flexible work from home arrangement
- An organization filled with smart, enthusiastic, and supportive colleagues
- A team of very skilled and diverse personnel across the globe
- The resources of a large, global operation while still having the start-up feel of a small team
Who We Are
We are a world-class team of high-caliber security software developers who thrive on new challenges. We are an inclusive and diverse team with a full spectrum of experience distributed globally. We have the resources of a large enterprise and the energy of a start-up, working on advancing the state-of-the-art for developers through SAST, SCA and Binary Analysis tools. We also have teams can detect attacks on complex platforms and systems. We are a dedicated team, leveraging each other's insights and abilities to produce cutting edge solutions for today's complex and inter-connected, inter-dependent, infra-structure. We value people who can use their skills to further develop and enhance our tools, as well as our procedures and playbooks. Join us to grow your career and create the future of software understanding together.
Responsibilities
As a member of our team, you will work with other team members to further develop an in-house expertise in analysis of software that will help those deploying and operating the software-based system assess risk by asking relevant questions on the behavior of the software. The focus will be on identifying impactful security vulnerabilities across a variety of architectures and platforms. You will be collaborating with engineers based in Australia, UK and the United States.
Your responsibilities include contributing to the design, implementation, integration and hands-on analyses to improve the understanding the behavior of the software that is under evaluation via practical solutions
Qualifications
Minimum of 8 years related experience in an information security role supporting security programs and security engineering/architecture in complex enterprise environments. Hands on experience with enterprise security architecture, engineering and implementation required.
Knowledge of compliance program security controls, like ISO 27001, SOC 2, HITRUST, and FedRAMP, as applied to cloud SaaS, PaaS and IaaS operations.
Familiarity with SDLC principles and scripting & programming languages (such as Terraform, Python, and Ruby).
Strong knowledge of: Cloud architecture and security principles. Risk Management Frameworks. *nix and Windows system administration.
Experience with: Logging and log analysis. Identity management principles and technology.
Preferred but not required qualifications include:
Bachelor-level university degree in a relevant field from an accredited university, or equivalent.
Strong knowledge of web technologies, middleware, database, OS, firewalls, network communication protocols and methods.
Knowledge of database security principles.
Knowledge of encryption technologies and architectures.
Expert level experience in evaluating and assessing security threats across a variety of environments and industries.
Expert level understanding of secure networking principles, routers, switches and load balancers.
About Us
As a world leader in cloud solutions, Oracle uses tomorrow's technology to tackle today's challenges. We've partnered with industry-leaders in almost every sector-and continue to thrive after 40+ years of change by operating with integrity.
We know that true innovation starts when everyone is empowered to contribute. That's why we're committed to growing an inclusive workforce that promotes opportunities for all.
Oracle careers open the door to global opportunities where work-life balance flourishes. We offer competitive benefits based on parity and consistency and support our people with flexible medical, life insurance, and retirement options. We also encourage employees to give back to their communities through our volunteer programs.
We're committed to including people with disabilities at all stages of the employment process. If you require accessibility assistance or accommodation for a disability at any point, let us know by emailing or by calling +1 in the United States.
Oracle is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans' status, or any other characteristic protected by law. Oracle will consider for employment qualified applicants with arrest and conviction records pursuant to applicable law.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.