Description
Responsibilities:
Monitor, develop, and maintain enterprise security tooling program including Security Information and Event Management (SIEM), Endpoint Protection, and Web Application Firewalls in both and engineering and analyst capacity.
Build and administer secure Oracle Cloud environments to support the diverse needs of Oracle’s customers.
Work directly with system owners to implement security controls and configure security tools to meet a variety of requirements.
Reduce risk by enhancing existing security tools and processes within the organization
Develop and execute Standard Operating Procedures, Event Handlers, Runbooks, and Job Aids required for successful task completion of teammates, customers, and partner teams
Perform effective troubleshooting to ensure tool efficiency, provide root cause analysis, and develop plans for remediation.
Assess threats & vulnerabilities to our environment and develop/Implement remediation plans.
Participate in a Rotational On-Call schedule for Critical issues (we strive to make sure this is truly as rare as it can be)
Preferred Qualifications:
5 years related experience in an information security role, supporting security programs and security engineering/architecture in complex enterprise environments. Hands on experience with enterprise security architecture, engineering and implementation (Networking, Endpoint, System Level Security) required.
Experience with at least one enterprise-scale of the following security platforms: SIEM, Antivirus, Endpoint Detection and Response
Strong experience in cloud computing and building secure environments in the cloud utilizing tools such as Terraform &| Ansible.
Experience in security aspects of multiple platforms, operating systems (Linux and Windows servers), software, communications, and network protocols
Understanding of networking protocols and infrastructure designs; including routing, network ports and protocols, host and network intrusion detection systems, encryption, load balancing, and other network infrastructure
Knowledge of security processes and technologies including threat detection, firewall functionality, security monitoring, and specific tools: SIEM, AV, IDS/IPS
Excellent communication skills, analytical ability, strong judgment and leadership skills, and the ability to work effectively with IT management and staff.
Dedicated and self-driven desire to maintain knowledge of current security threats and countermeasures; enthusiastic team-member
Desirable certifications include: CISSP; CCSP; GCED; GCIH; GCFA; GIAC; OCI Certifications
Career Level - IC3ResponsibilitiesResponsible for basic planning, design and build of security systems, applications, environments and architectures; oversees the implementation of security systems, applications, environments and architectures and ensures compliance with information security standards and corporate security policies and procedures.Assist in development of incident response capabilities, training, and tool validation.May research, evaluate, track, and manage information security threats and vulnerabilities in situations where analysis of well-understood information is required and where computer programming/scripting knowledge is required.May participate in an incident management team, responding to security events in line with Oracle incident response playbooks. Investigates purported intrusions and breaches, and oversees root cause analysis. Coordinates incidents with other business units and may assist the Incident Commander during serious incidents. Participates in developing new methods, and playbooks, as well as basic scripts, applications, and tools.Research industry trends and constantly assess current controls and threat posture of new and existing products and services.Recommend and implement new security controls across Oracle’s line of business (LOB).Improve current processes and workflows to minimize manual efforts.