Senior DevSecops Engineer
BENGALURU, KARNATAKA, India
Oracle
Oracle offers a comprehensive and fully integrated stack of cloud applications and cloud platform services.Employer Description
An Oracle career can span industries, roles, Countries and cultures, giving you the opportunity to flourish in new roles and innovate, while blending work life in. Oracle has thrived through 40+ years of change by innovating and operating with integrity while delivering for the top companies in almost every industry.
In order to nurture the talent that makes this happen, we are committed to an inclusive culture that celebrates and values diverse insights and perspectives, a workforce that inspires thought leadership and innovation.
Oracle offers a highly competitive suite of Employee Benefits designed on the principles of parity, consistency, and affordability. The overall package includes certain core elements such as Medical, Life Insurance, access to Retirement Planning, and much more. We also encourage our employees to engage in the culture of giving back to the communities where we live and do business.
At Oracle, we believe that innovation starts with diversity and inclusion and to create the future we need talent from various backgrounds, perspectives, and abilities. We ensure that individuals with disabilities are provided reasonable accommodation to successfully participate in the job application, interview process, and in potential roles. to perform crucial job functions.
That’s why we’re committed to creating a workforce where all individuals can do their best work. It’s when everyone’s voice is heard and valued that we’re inspired to go beyond what’s been done before.
Oracle is an Equal Employment Opportunity Employer*. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans’ status, or any other characteristic protected by law. Oracle will consider for employment qualified applicants with arrest and conviction records pursuant to applicable law.
Job Description
The CSS Security Operations team can provide you with the opportunity to build and operate a suite of managed
cloud security services in a multi-tenant cloud environment. CSS is committed to providing the best in managed
security cloud solutions that meet the needs of our customers who are tackling some of the world’s biggest
challenges.
Are you interested in securing complex workloads and platform? We are looking for hands-on security engineers with
expertise and passion in solving difficult security problems in distributed, multi-tenant services. These are exciting
times in our space - we are growing fast, and working on ambitious new initiatives.
As a Security Engineer you will work closely with other engineers from to build and operate services that are
fundamentally sound and efficient. You should be familiar with security at all levels of the software, hardware, and
network stack; while being exceptionally deep in a few. Intellectual curiosity and an excitement for the challenges of
securing complex systems are a must. You should value simplicity and usability as well as security and work
comfortably in a collaborative, agile environment.
Things you will do:
Design, implementation and operation of the solutions delivery toolchain
SOP and Best Practices development and documentation.
Design, implementation and operation of new secure cloud services
Monitoring security posture of customer infrastructure hosted on Oracle Cloud
Level 3 Incident response and production support
Security testing, vulnerability assessment and vulnerability advisory communications
Stay ahead of on security threats and mitigation strategies
Basic Qualifications:
Bachelors or Masters Degree in Computer Science or related field
demonstrated ability in security engineering or related field or equivalent experience
Strong application / product / software security background
Good cloud infrastructure automation (Terraform, Chef, or similar) background
Proficient Linux administration, supervising and solving
Comfortable with writing non-trivial code in one of Python, Go, Ruby or other high-level language
Experience in working in a DevOps model using any of the major cloud providers Azure, AWS, GCP, OCI, etc.
Experience with penetration testing, network audits and intrusion detection systems
Excellent organizational, verbal, and written communication skills
Preferred Qualifications:
CCNA / CCNP, SANS, OCSP, CISSP, CISA, Firewall and Cloud certifications.
Strong experience of working on SIEM tools like Splunk to analyze logs and correlate events.
Solid fundamentals in networking concepts.
Knowledge of networking and security concepts such as IPSec, SSL VPN, Subnets, Security rules, WAF, Load Balancers,FastConnect, network routing, etc (Preferably Oracle Cloud exposure).
Oracle products knowledge.
Large scale, distributed environments experience
Kubernetes and Docker experience
Site Reliability engineering experience
Responsible for the planning, design and build of security architectures; oversees the implementation of network and computer security and ensures compliance with corporate security policies and procedures.
Responsible for advanced planning, design and build of security systems, applications, environments and architectures; oversees the implementation of security systems, applications, environments and architectures and ensures compliance with information security standards and corporate security policies and procedures. Provides technical advice and direction to support the design and development of secure architectures. May participate in an incident management team, bringing advanced-level skills to respond to security events in line with Oracle incident response playbooks. Investigates purported intrusions and breaches, and oversees root cause analysis. Coordinates incidents with other business units and may act as Incident Commander of serious incidents. Develops new methods, and playbooks, as well as sophisticated scripts, applications, and tools, and trains others in their use. May participate in an incident management team, responding to security events in line with Oracle incident response playbooks. Investigates purported intrusions and breaches, and oversees root cause analysis. Coordinates incidents with other business units and may act as incident commander of serious incidents. Participates in developing new methods, playbooks throughout Oracle. Evaluates existing and proposed technical architectures for security risk, provides technical advice to support the design and development of secure architectures and recommends security controls to mitigate those risks. Evaluations of internal security architecture may include design assessment, risk assessment, and threat modeling. Brings advanced-level skills to research, evaluate, track, and manage information security threats and vulnerabilities in situations where in-depth analysis of ambiguous information is required, and where computer programming/scripting knowledge is required. Work with Senior management to develop and implement a multi-year security roadmap Focus on operational and strategic level tasks, and provide counsel and guidance to the junior level security operations engineers in the department.
Minimum of 8 years related experience in an information security role supporting security programs and security engineering/architecture in complex enterprise environments. Hands on experience with enterprise security architecture, engineering and implementation required. Knowledge of compliance program security controls, like ISO 27001, SOC 2, HITRUST, and FedRAMP, as applied to cloud SaaS, PaaS and IaaS operations. Familiarity with SDLC principles and scripting & programming languages (such as Terraform, Python, and Ruby). Strong knowledge of: Cloud architecture and security principles. Risk Management Frameworks. *nix and Windows system administration. Experience with: Logging and log analysis. Identity management principles and technology. Preferred but not required qualifications include: Bachelor-level university degree or equivalent experience in a relevant field from an accredited university, or equivalent. Strong knowledge of web technologies, middleware, database, OS, firewalls, network communication protocols and methods. Knowledge of database security principles. Knowledge of encryption technologies and architectures. Expert level experience in evaluating and assessing security threats across a variety of environments and industries. Expert level understanding of secure networking principles, routers, switches and load balancers.
Diversity and Inclusion:
An Oracle career can span industries, roles, Countries and cultures, giving you the opportunity to flourish in new roles and innovate, while blending work life in. Oracle has thrived through 40+ years of change by innovating and operating with integrity while delivering for the top companies in almost every industry.
In order to nurture the talent that makes this happen, we are committed to an inclusive culture that celebrates and values diverse insights and perspectives, a workforce that encourages thought leadership and innovation.
Oracle offers a highly competitive suite of Employee Benefits crafted on the principles of parity, consistency, and affordability. The overall package includes certain core elements such as Medical, Life Insurance, access to Retirement Planning, and much more. We also encourage our employees to engage in the culture of giving back to the communities where we live and do business.
At Oracle, we believe that innovation starts with diversity and inclusion and to build the future we need talent from various backgrounds, perspectives, and abilities. We ensure that individuals with disabilities are provided reasonable accommodation to successfully participate in the job application, interview process, and in potential roles. To perform crucial job functions.
That’s why we’re committed to crafting a workforce where all individuals can do their best work. It’s when everyone’s voice is heard and valued that we’re encouraged to go beyond what’s been done before.
Career Level - IC3
Responsible for advanced planning, design and build of security systems, applications, environments and architectures; oversees the implementation of security systems, applications, environments and architectures and ensures compliance with information security standards and corporate security policies and procedures. Provides technical advice and direction to support the design and development of secure architectures. May participate in an incident management team, bringing advanced-level skills to respond to security events in line with Oracle incident response playbooks. Investigates purported intrusions and breaches, and oversees root cause analysis. Coordinates incidents with other business units and may act as Incident Commander of serious incidents. Develops new methods, and playbooks, as well as sophisticated scripts, applications, and tools, and trains others in their use. May participate in an incident management team, responding to security events in line with Oracle incident response playbooks. Investigates purported intrusions and breaches, and oversees root cause analysis. Coordinates incidents with other business units and may act as incident commander of serious incidents. Participates in developing new methods, playbooks throughout Oracle. Evaluates existing and proposed technical architectures for security risk, provides technical advice to support the design and development of secure architectures and recommends security controls to mitigate those risks. Evaluations of internal security architecture may include design assessment, risk assessment, and threat modeling. Brings advanced-level skills to research, evaluate, track, and manage information security threats and vulnerabilities in situations where in-depth analysis of ambiguous information is required, and where computer programming/scripting knowledge is required. Work with Senior management to develop and implement a multi-year security roadmap Focus on operational and strategic level tasks, and provide counsel and guidance to the junior level security operations engineers in the department.
As a world leader in cloud solutions, Oracle uses tomorrow’s technology to tackle today’s problems. True innovation starts with diverse perspectives and various abilities and backgrounds.
When everyone’s voice is heard, we’re inspired to go beyond what’s been done before. It’s why we’re committed to expanding our inclusive workforce that promotes diverse insights and perspectives.
We’ve partnered with industry-leaders in almost every sector—and continue to thrive after 40+ years of change by operating with integrity.
Oracle careers open the door to global opportunities where work-life balance flourishes. We offer a highly competitive suite of employee benefits designed on the principles of parity and consistency. We put our people first with flexible medical, life insurance and retirement options. We also encourage employees to give back to their communities through our volunteer programs.
We’re committed to including people with disabilities at all stages of the employment process. If you require accessibility assistance or accommodation for a disability at any point, let us know by calling +1 888 404 2494, option one.
Disclaimer:
Oracle is an Equal Employment Opportunity Employer*. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans’ status, or any other characteristic protected by law. Oracle will consider for employment qualified applicants with arrest and conviction records pursuant to applicable law.
* Which includes being a United States Affirmative Action Employer
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile Audits Automation AWS Azure CCNP CISA CISSP Cloud Compliance Computer Science DevOps DevSecOps Docker Encryption FedRAMP Firewalls GCP HITRUST IaaS Incident response Intrusion detection ISO 27001 Kubernetes Linux Log analysis Monitoring Oracle PaaS Pentesting Python Risk assessment Risk management Ruby SaaS SANS Scripting SDLC SIEM SOC SOC 2 Splunk Terraform VPN Vulnerabilities Windows
Perks/benefits: Career development Flex hours Insurance Team events
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.