Security Architecture and Engineering Manager

Full Time
Manchester, NH
Areas of Interest: Software Assurance and Security Engineering, Systems Security Architecture, Test and Evaluation, Vulnerability Assessment and Management
report a problem
Overview


What’s In It For You?
The Oracle Cloud Infrastructure (OCI) Edge Services security team is in search of a Security Architecture and Engineering Manager who will lead our security engineering & architecture program. Reporting to the Director of Information Security, the successful candidate will have a strong work ethic, deep understanding of technology at all layers of the stack, passion for secure development methodologies, vulnerability management, penetration testing, a diligent attention to detail, passion for learning, ability to work in a fast pace environment, and a great sense of humor. This role should include the right blend of technical and non-technical skills, and will be working across the entire OCI organization.
 
Are you waiting at all hours of the day and night for the next zero day vulnerability on your twitter feed? Want to be a part of building and securing the edge of Oracle’s next generation cloud? This will be a tremendous opportunity for you work to with a bright and diverse group of stakeholders at OCI.
 
At OCI we have big company benefits, and small tech company perks.  Ever have a slide in your office?  Free lunch on Tuesdays?  A dog friendly office? Cappuccino machine?  At OCI, those are just a few of the small tech company perks that complement traditional benefits you find at a large enterprise company.


Job Responsibilities:
  • Build a security engineering program across multiple edge services products including DNS, E-Commerce, Mail, CDN, DDOS Mitigation, and WAF.
  • Drive critical security initiatives in areas such as vulnerability management, encryption and key management, IDS, VPN, multi-factor authentication, firewalls, identity and access management, secure coding, static and dynamic code analysis, log management, and other security areas.
  • Develop security engineering processes to ensure security is considered throughout the development lifecycle.
  • Evangelize security engineering best practices across engineering scrum teams.
  • Maintain strong knowledge of common security vulnerabilities, attack vectors, attack methods, and remediation techniques.
  • Lead a small team of security engineers and architects.
  • Penetration testing activities with your internal team and third party testers.
  • Lead the vulnerability SWAT team triaging, investing and proposing solutions or mitigations for zero day vulnerabilities.
  • Perform assessments of application, operating systems and network architectures for vulnerabilities and identify mitigations and security countermeasures.
  • Assist in information security investigations and responding to information security incidents.
  • Coding and scripting as needed to support security engineers (willing to be in the details).
  • Liaison with security team members to ensure technical security compliance requirements are met related to PCI-DSS, SOC 1, SOC 2, FedRAMP, and HIPAA.
  • Assist the information security team in responding to customer’s security architecture related inquiries.
Skills:
  • Holistic understanding of the Internet and hosting from the network layer up through the application layer, with specific knowledge of DNS.
  • Scripting and coding experience with Go, Perl, Python, Java.
  • Deep, working knowledge of web, database, and operating system server security configuration (Linux, Apache, MySQL, Cassandra).
  • Deep, working knowledge of attack methods and mitigation strategies including DDOS, Man in the Middle, Brute Force, SQL Injections, Cross-Site Scripting, Cross-Site Forgery Request, etc.
  • Deep understanding of Cyber threats including how malicious code works and proliferates.
  • Interest, aptitude and/or experience in performing ‘red team’ style penetration testing exercises.
  • Project management skills that enable you to lead multiple security engineering and architecture projects at one time.
  • Player / Coach mentality that will enable you to successfully coach junior team members.
  • Identity and access management (I&AM) experience.
  • Securing cloud based platforms such as Amazon AWS, Google, Azure.
  • Experience with encryption and key management.
  • SIEM Tools (e.g. ELK, Splunk).
  • Configuration management (e.g. Chef).
  • Security Tools: Nessus, Metasploit, Threat Stack, etc.
  • Strong communication (oral, written, presentation), interpersonal and consultative skills are essential.
  • A good sense of humor.
Background:
  • B.S. or M.S. in Computer Science, Computer Information Systems, Management Information Systems, and/or a related field;
  • 8+ years of progressive experience in systems administration, engineering, security engineering, penetration testing & ethical hacking or related field.
  • Cloud hosting experience (e.g., Amazon Web Services, Oracle, Azure, Google).
  • Networking & DNS experience.
  • CISSP, CISM or other security certifications preferred.
Extra Credit:
  • Exposure to the following security standards/frameworks, rules and regulations, system trust principals: PCI-DSS, SOX-404, SSAE-16, SOC2, HIPAA, ISO 27001, FedRAMP.
  • Privacy Shield and EU privacy regulations.
  • Government security clearance.
About Oracle Cloud Infrastructure:

Oracle Cloud Infrastructure is a startup within Oracle building the next generation IaaS Cloud.  Based in Seattle Washington, OCI recently acquired Dynamic Network Services (Dyn) which is based in Manchester, New Hampshire.  This role is located in the Oracle Cloud Infrastructure Manchester, New Hampshire office.
 
Detailed Description and Job Requirements
 Manage a team that designs, develops, troubleshoots and debugs software programs for databases, applications, tools, networks etc.

As a manager of the software engineering division, you will apply your knowledge of software architecture to manage software development tasks associated with developing, debugging or designing software applications, operating systems and databases according to provided design specifications. Build enhancements within an existing software architecture and occasionally suggest improvements to the architecture.

Leads a specialized area which may have diverse functional elements. Frequently interacts with supervisors and/or functional peer group managers. May interact with senior management. Demonstrated leadership and people management skills. Strong communication skills, analytical skills, thorough understanding of product development. BS degree or equivalent experience relevant to functional area. Typically one year of software engineering or related experience.

Oracle is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans status or any other characteristic protected by law.

 

Job: Product Development
Location: US-NH,New Hamp-Manchester
Job Type: Regular Employee Hire
Organization: Oracle


 




Share this job:

Oracle

Integrate. Accelerate. Lead.
With more than 380,000 customers—including 100 of the Fortune 100—and with deployments across a wide variety of industries in more than 145 countries around the globe, Oracle offers an optimized and fully integrated stack of business hardware and software systems. Oracle engineers hardware and software to work together in the cloud and in your data center–from servers and storage, to database and middleware, through applications.
 
Specialties
enterprise, software, applications, database, middleware, fusion, business intelligence, Primavera, PeopleSoft, EPM, BEA, Hyperion, Retek, Utilities, On-Demand, server & storage systems, BPM, solutions for communications industry, ERP, CRM, CRM On Demand, JDE, Siebel
Visit Oracle's Social Media pages:
Company Industry: Information Technology and Services
Company Type: Public Company
Company Size: 10,001+