What are the responsibilities and job description for the Principal Security Engineer position at Oracle?
Job Description
We are looking for people with experience protecting critical infrastructure to help us defend cloud infrastructure used by the United States Government. Our team is skilled in threat hunting, analyzing indicators of compromise (IOCs), investigating adverse security events, security incident management, and digital forensics across IaaS, PaaS and SaaS environments. You will be part of a security operations team responsible for defending this infrastructure from adversaries and insider threats. This includes using tools to analyze and respond to threats, creating tools/scripts to aid in analysis, and responding in real time to adverse security events. Our team is the last line of defense if security controls are breached. We are growing fast and working on ambitious new initiatives.
The Principal Detection Engineer will create detections, advanced security tooling, and associated capabilities to rapidly detect and response to real-time security alerts and events and enable detailed analysis and root cause investigations. They will work closely with our Threat Intelligence, SOC, Incident Response, and Security Products team to mitigate a wide variety of threats and malicious activity.
Preferred Qualifications
- Five years of development experience in a security, compliance, or risk management organization
- Comfortable working in an ambiguous, fast-paced, unpredictable environment
- Experience working in a highly collaborative, team centric, event driven operations team
- Experience with querying across large data sets to understand complicated and difficult to solve problems
- Proficiency with Linux, Mac, and Windows endpoints
- Proficiency in industry standard development technologies
- Proficiency in build, check in, and deployment of code
- Understand threat analysis models like MITRE ATT&CK Framework
- Active listening skills
- Ability to assess and evaluate situations effectively to assess events to determine criticality/scope rapidly and accurately
- Strong attention to detail
- Experience with variety of operating systems and threats that target them including Windows, UNIX/LINUX, and MacOS
- Experience performing open source research on a variety of topics
- Excellent verbal/non-verbal communication skills with proficient ability to deliver technical information to non-technical staff
Responsibilities
Key Responsibilities
- Develop, test, and deploy security detections and capabilities through our CI/CD pipeline
- Enable the SOC to detect and respond to security events and threats from alerting, escalations, and other sources
- Provide tooling for complex investigations and deep analysis of security events focused on rapid containment, remediation, and mitigation
- Drive improvements in monitoring, detection, and tooling
- Understand the threat landscape, emerging trends, and incorporate this understanding into day-to-day activities
- Create a comprehensive view of incident-related data from multiple security technologies, including but not limited to a Security Information Event Management (SIEM) platform, Intrusion Detection Systems (IDS), Firewalls, Anti-Malware solutions, and insider threat tooling
- Create and maintain graph analysis products in support of investigations and incidents
- Provide development support to security incident response activities as needed
- Prepare data visualizations as needed
- Provide high quality written and verbal reports as required
(Cloud Engineering Infrastructure Development)
Disclaimer:
Certain US customer or client-facing roles may be required to comply with applicable requirements, such as immunization and occupational health mandates.
Range and benefit information provided in this posting are specific to the stated location(s)
California Pay Range: from $120,400 to $241,000 per annum. May be eligible for bonus and equity.
Colorado Pay Range: from $113,800 to $216,900 per annum. May be eligible for bonus and equity.
New York City Pay Range: from $113,800 to $229,000 per annum. May be eligible for bonus and equity.
Washington Pay Range: from $127,100 to $229,000 per annum. May be eligible for bonus and equity.
Oracle maintains broad salary ranges for its roles in order to account for variations in knowledge, skills, experience and market conditions, as well as reflect Oracle's differing products, industries and lines of business.
Candidates are typically placed into the range based on the preceding factors as well as internal peer equity.
Oracle offers a comprehensive benefits package which includes the following:
- Medical, dental, and vision insurance, including expert medical opinion
- Short term disability and long term disability
- Life insurance and AD&D
- Supplemental life insurance (Employee/Spouse/Child)
- Health care and dependent care Flexible Spending Accounts
- Pre-tax commuter and parking benefits
- 401(k) Savings and Investment Plan with company match
- Flexible paid time off (unlimited or accrued vacation and sick leave)
- Paid parental leave
- Employee Stock Purchase Plan
- Adoption assistance
- Financial planning and group legal
- Voluntary benefits including auto, homeowner and pet insurance
About Us
An Oracle career can span industries, roles, Countries and cultures, giving you the opportunity to flourish in new roles and innovate, while blending work life in. Oracle has thrived through 40 years of change by innovating and operating with integrity while delivering for the top companies in almost every industry.
In order to nurture the talent that makes this happen, we are committed to an inclusive culture that celebrates and values diverse insights and perspectives, a workforce that inspires thought leadership and innovation.
Oracle offers a highly competitive suite of Employee Benefits designed on the principles of parity, consistency, and affordability. The overall package includes certain core elements such as Medical, Life Insurance, access to Retirement Planning, and much more. We also encourage our employees to engage in the culture of giving back to the communities where we live and do business.
At Oracle, we believe that innovation starts with diversity and inclusion and to create the future we need talent from various backgrounds, perspectives, and abilities. We ensure that individuals with disabilities are provided reasonable accommodation to successfully participate in the job application, interview process, and in potential roles. to perform crucial job functions.
That's why we're committed to creating a workforce where all individuals can do their best work. It's when everyone's voice is heard and valued that we're inspired to go beyond what's been done before.
Oracle is an Equal Employment Opportunity Employer *** . All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans' status, or any other characteristic protected by law. Oracle will consider for employment qualified applicants with arrest and conviction records pursuant to applicable law.
- Which includes being a United States Affirmative Action Employer
We are looking for people with experience protecting critical infrastructure to help us defend cloud infrastructure used by the United States Government. Our team is skilled in threat hunting, analyzing indicators of compromise (IOCs), investigating adverse security events, security incident management, and digital forensics across IaaS, PaaS and SaaS environments. You will be part of a security operations team responsible for defending this infrastructure from adversaries and insider threats. This includes using tools to analyze and respond to threats, creating tools/scripts to aid in analysis, and responding in real time to adverse security events. Our team is the last line of defense if security controls are breached. We are growing fast and working on ambitious new initiatives.
The Principal Detection Engineer will create detections, advanced security tooling, and associated capabilities to rapidly detect and response to real-time security alerts and events and enable detailed analysis and root cause investigations. They will work closely with our Threat Intelligence, SOC, Incident Response, and Security Products team to mitigate a wide variety of threats and malicious activity.
Preferred Qualifications
- Five years of development experience in a security, compliance, or risk management organization
- Comfortable working in an ambiguous, fast-paced, unpredictable environment
- Experience working in a highly collaborative, team centric, event driven operations team
- Experience with querying across large data sets to understand complicated and difficult to solve problems
- Proficiency with Linux, Mac, and Windows endpoints
- Proficiency in industry standard development technologies
- Proficiency in build, check in, and deployment of code
- Understand threat analysis models like MITRE ATT&CK Framework
- Active listening skills
- Ability to assess and evaluate situations effectively to assess events to determine criticality/scope rapidly and accurately
- Strong attention to detail
- Experience with variety of operating systems and threats that target them including Windows, UNIX/LINUX, and MacOS
- Experience performing open source research on a variety of topics
- Excellent verbal/non-verbal communication skills with proficient ability to deliver technical information to non-technical staff
Responsibilities
Key Responsibilities
- Develop, test, and deploy security detections and capabilities through our CI/CD pipeline
- Enable the SOC to detect and respond to security events and threats from alerting, escalations, and other sources
- Provide tooling for complex investigations and deep analysis of security events focused on rapid containment, remediation, and mitigation
- Drive improvements in monitoring, detection, and tooling
- Understand the threat landscape, emerging trends, and incorporate this understanding into day-to-day activities
- Create a comprehensive view of incident-related data from multiple security technologies, including but not limited to a Security Information Event Management (SIEM) platform, Intrusion Detection Systems (IDS), Firewalls, Anti-Malware solutions, and insider threat tooling
- Create and maintain graph analysis products in support of investigations and incidents
- Provide development support to security incident response activities as needed
- Prepare data visualizations as needed
- Provide high quality written and verbal reports as required
(Cloud Engineering Infrastructure Development)
Disclaimer:
Certain US customer or client-facing roles may be required to comply with applicable requirements, such as immunization and occupational health mandates.
Range and benefit information provided in this posting are specific to the stated location(s)
California Pay Range: from $120,400 to $241,000 per annum. May be eligible for bonus and equity.
Colorado Pay Range: from $113,800 to $216,900 per annum. May be eligible for bonus and equity.
New York City Pay Range: from $113,800 to $229,000 per annum. May be eligible for bonus and equity.
Washington Pay Range: from $127,100 to $229,000 per annum. May be eligible for bonus and equity.
Oracle maintains broad salary ranges for its roles in order to account for variations in knowledge, skills, experience and market conditions, as well as reflect Oracle's differing products, industries and lines of business.
Candidates are typically placed into the range based on the preceding factors as well as internal peer equity.
Oracle offers a comprehensive benefits package which includes the following:
- Medical, dental, and vision insurance, including expert medical opinion
- Short term disability and long term disability
- Life insurance and AD&D
- Supplemental life insurance (Employee/Spouse/Child)
- Health care and dependent care Flexible Spending Accounts
- Pre-tax commuter and parking benefits
- 401(k) Savings and Investment Plan with company match
- Flexible paid time off (unlimited or accrued vacation and sick leave)
- Paid parental leave
- Employee Stock Purchase Plan
- Adoption assistance
- Financial planning and group legal
- Voluntary benefits including auto, homeowner and pet insurance
About Us
An Oracle career can span industries, roles, Countries and cultures, giving you the opportunity to flourish in new roles and innovate, while blending work life in. Oracle has thrived through 40 years of change by innovating and operating with integrity while delivering for the top companies in almost every industry.
In order to nurture the talent that makes this happen, we are committed to an inclusive culture that celebrates and values diverse insights and perspectives, a workforce that inspires thought leadership and innovation.
Oracle offers a highly competitive suite of Employee Benefits designed on the principles of parity, consistency, and affordability. The overall package includes certain core elements such as Medical, Life Insurance, access to Retirement Planning, and much more. We also encourage our employees to engage in the culture of giving back to the communities where we live and do business.
At Oracle, we believe that innovation starts with diversity and inclusion and to create the future we need talent from various backgrounds, perspectives, and abilities. We ensure that individuals with disabilities are provided reasonable accommodation to successfully participate in the job application, interview process, and in potential roles. to perform crucial job functions.
That's why we're committed to creating a workforce where all individuals can do their best work. It's when everyone's voice is heard and valued that we're inspired to go beyond what's been done before.
Oracle is an Equal Employment Opportunity Employer *** . All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans' status, or any other characteristic protected by law. Oracle will consider for employment qualified applicants with arrest and conviction records pursuant to applicable law.
- Which includes being a United States Affirmative Action Employer
Mid Security Engineer
Iron Vine Security, LLC Career Center -
Baltimore, MD
Senior Principal Security Researcher
Oracle -
Columbia, MD
Principal / Sr. Principal Logistics Engineer
Associates Systems LLC -
linthicum, MD
