Security Engineer 4

Company:  Oracle
Location: North
Closing Date: 02/11/2024
Salary: £100 - £125 Per Annum
Hours: Full Time
Type: Permanent
Job Requirements / Description

Oracle

Oracle offers a comprehensive and fully integrated stack of cloud applications and cloud platform services.

The Oracle Cloud Infrastructure (OCI) team can provide you the opportunity to build and operate a suite of massive scale, integrated cloud services in a broadly distributed, multi-tenant cloud environment. OCI is committed to providing the best in cloud products that meet the needs of our customers who are tackling some of the world’s biggest challenges.

We offer unique opportunities for smart, hands-on security engineers with the expertise and passion to solve difficult problems in distributed highly available services and virtual infrastructure. At every level, our engineers have a significant technical and business impact designing and building innovative new systems to power our customer’s business critical applications. Our customers run their businesses on our cloud, and our mission is to provide them with the most secure cloud services.

The OCI Hardware Security group conducts security assessments of the production hardware that runs our cloud and develops the requirements for future Networking, Storage, and Compute components. We work closely across Oracle, with third-party vendors, and with standards organizations to influence the next generation of hardware platform security. In addition to defining the best hardware, OCI HW Security knows that platform security also depends on how that hardware is used. To that end, HW Security also works closely with OCI's operations and engineering teams, constantly striving to improve Oracle Cloud's overall operational security posture by defining the supply chain and operational requirements to establish best practices for managing security for every device in our data centers.

A security-focused engineer at any level can have significant technical and business impact. Come shape the future of one of the largest clouds on earth with us. Overall, the OCI Security Architecture team performs a variety of work ranging from cloud security, application security, vulnerability analysis, threat modeling, and hacking/enterprise network penetration.

The biggest challenges for the team are the dynamic and fast growth of the business, driving us to improve our systems, tools, and automation to scale to our security expertise several orders of magnitude greater than what we can support today. We understand that software is living and needs investment. The challenge is making the right tradeoffs, communicating those decisions effectively, and crisp execution.

Responsibilities

  • Develop and communicate requirements for new vendors and hardware (compute, storage, networking)
  • Perform architectural reviews, penetration testing, vulnerability analysis of compute infrastructure hardware such as:
    • Servers (Intel, AMD, and ARM)
    • Baseboard Management Controllers such as Oracle’s ILOM
    • UEFI and platform firmware
    • Smart NICS
    • Network controllers and other peripherals
  • Provide consulting on security risk associated with compute hardware and firmware in the context of cloud usage
  • Provide consulting and review of device sanitization as per NIST-800-88 R1 standards
  • Provide standard operating procedures for safe use of compute hardware through its lifecycle i.e. provisioning, operations, and reuse/decommission
  • Engage with Oracle Hardware Division and third-party vendors to understand their roadmaps
  • Create planning roadmaps to drive multi-year security improvements across the OCI Infrastructure
  • Review or assess engineering changes, or revisions of, an existing component (e.g., new firmware for a device, vendor revision of an existing device)
  • Identify and participate in external standards groups to drive improvements across the industry
  • Consult development teams and third-party vendors in the design and architecture of secure systems
  • Champion and consult on secure development life-cycle practices
  • Communicate and educate Senior Management on key Security topics and directions

Career Level - IC4

Disclaimer:
Certain US customer or client-facing roles may be required to comply with applicable requirements, such as immunization and occupational health mandates. The role will generally accept applications for at least three calendar days from the posting date or as long as the job remains posted.

As a world leader in cloud solutions, Oracle uses tomorrow’s technology to tackle today’s problems. True innovation starts with diverse perspectives and various abilities and backgrounds.

When everyone’s voice is heard, we’re inspired to go beyond what’s been done before. It’s why we’re committed to expanding our inclusive workforce that promotes diverse insights and perspectives.

We’re committed to including people with disabilities at all stages of the employment process. If you require accessibility assistance or accommodation for a disability at any point, let us know by calling +1 888 404 2494, option one.

Oracle is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability, and protected veterans’ status, or any other characteristic protected by law.

#J-18808-Ljbffr
Apply Now
Share this job
Oracle
Oracle
  • Similar Jobs

  • Senior Principal Application Security Engineer, Oracle Payments

    North
    View Job
  • Senior Software Engineer (JoinOCI)

    North
    View Job
  • Senior Software Engineer, DevOps

    NORTH
    View Job
  • Senior Principal Software Engineer, Oracle Payments

    North
    View Job
An error has occurred. This application may no longer respond until reloaded. Reload 🗙