Cloud Security Lead

ORACLE: As the provider of the worlds most complete, open and integrated business software and hardware systems, Oracle is dedicated to unleashing innovation by simplifying IT. With more than 30 years of information technology innovation, Oracle is the recognized industry leader in enterprise application and technology solutions.

ORACLE CLOUD: Oracle Cloud is a Generation 2 enterprise cloud that delivers powerful compute and networking performance, a comprehensive portfolio of infrastructure and platform cloud services, and the worlds only self-driving autonomous database. Built from the ground up to meet the needs of mission-critical applications, Oracle Cloud supports all legacy workloads while delivering modern cloud development toolsso enterprises can bring their past and build their future.

The comprehensive nature of Oracle Cloud is a key selection consideration for customers. Oracle has the broadest cloud portfolio in the industry, delivering a complete range of production-level, cross-functional business applications for each part of an organization with information and data shared seamlessly across Oracle Cloud Applications and other systems. Business users have the latest innovations at their fingertips across sales and marketing, customer service, finance and accounting, supply chain management, human capital and talent managementall enriched with social engagement and collaboration tools and an intuitive user interface that works on any mobile device. These applications have been architected on a modern and open cloud platform and infrastructure to simplify integration needs and lower an organizations total cost of ownership.

With such extensive functionality across business processes, customers can solve their business problems with complete solutions that give them end-to-end execution and complete visibility.

Oracle IaaS is clearly differentiated, being far more performant, more secure, more reliable and cost efficient as compared to others in the market. Oracle has fundamentally innovated in the IaaS space and continues to gain market share aggressively. Oracle PaaS is anchored by Oracle Autonomous Database (ADB), which offers the most innovative self-driving capabilities in the data tier in the marketplace. Combine with ADB, Oracle cloud also offers a complete application development platform that includes app dev, security, integration, identity management, analytics, big data and AI/ML amongst other far broader capabilities.

Partners with customers, sales, engineering and product teams to design, demonstrate and deploy Oracle Cloud architectures that address customer business problems. Drives Oracle Cloud customer consumption by accelerating the adoption of Oracle cloud services including discovery, design and deployment.

Engages with strategic customers, builds leadership relationships at multiple levels within organizations in order to design and implement solutions. Works directly with customers to gather requirements, develop architectures and translates business needs into solutions. May implement solutions and ensure successful deployments through code development and scripting. Displays product/application understanding through highly customized presentation demonstrations to customers, and at conferences, and events. Supports customer from Proof of Concept (POC) through production deployment of services via resource configuration, planning, and customer education/training. Creates and distributes technical assets (white papers, solution code, blog posts, and video demonstrations). Serves as a leading contributor for customers and sales on technical cloud solutions and customer success. Identifies gaps and enhancements to influence engineering roadmaps for customer driven features. Leading contributor, may provide direction and mentoring to others. Work is non-routine and very complex, involving the application of advanced technical/business skills in area of specialization. May interact with C level. Maintains expertise by staying current on emerging technologies.

Minimum qualifications include: 8 years experience with computer applications and tools required.

Preferred but not required qualifications include: Bachelor of Science-level university degree in Computer Science, Math, Engineering from accredited university; and/or relevant 8 years technical experience. Advanced degree in relevant field of studies highly desirable. Expertise in and an in depth and thorough knowledge of competitive and industry knowledge in the field of computer applications and tools; System and application design; Implementation of advanced product features; Project management; Solving technical problems with customers in technical environments; Written and verbal communication and interpersonal skills; Needs analysis, positioning, and business justification. 8 years experience and expertise in the clear communication of technical information to others through presentations, demonstrations, written communication and consultative solutioning experience.

Career Level - IC4

Responsibilities

Come and join us We are seeking a deeply technical individual to join our team where they will both lead and contribute to delivery of customer focused projects that involve migrating existing workloads to Oracle Cloud and building completely new architectures to support net new workloads in Oracles cloud. Project technology stacks we work with include existing legacy / On Premises software, Oracles Platform as a Service (PaaS) and Infrastructure as a Service (IaaS) services, and other competitive technologies.

While much of the focus of this role will revolve around delivery of identity and related cloud security technologies, a large portion of the work will also involve adjacencies including securing and configuring tenancies, networking, encryption and key or Certificate Management, Web Application Firewalls, SIEM technologies, vulnerability scanning, etc. While also interacting directly with customers the role involves regular work with the development organization to drive product improvements and innovations. This is a senior technical Cloud Delivery role, so the Cloud technical experience is the higher priority.

A Cloud Security Engineer in our team is responsible for successful implementation of non-routine and complex business solutions ensuring high quality and timely delivery within budget to the customers happiness. Analyze business needs to help ensure Oracles solution meets the customers objectives by combining industry standard methodologies and product knowledge. Effectively applies Oracles methodologies and policies while adhering to contractual obligations, thereby minimizing Oracles risk and exposure. Exercises judgment and business acumen in selecting methods and techniques for effective project delivery on small to medium engagements. Provides direction and mentoring to junior resources on the delivery team. Ensures deliverables are acceptable and works closely with the Project Management Team to understand and manage project expectations. Collaborates with the consulting/delivery sales team by providing domain credibility. Helps with Technical solution scoping of project Comfortable working in a matrix management environment. Good communication skills to deal with internal collaborators, customers, and vendors. This individual should have a solid technical background and excellent problem-solving skills.

Qualifications

Individual should possess a deep knowledge of:

• Cloud or mobile security including OAuth, OpenID Connect, SAML federation, Single Sign-On.
• MFA and strong authentication.
• Identity management / governance, and provisioning.

OR alternatively:

• Configuration of a secure tenancy in OCI, AWS, Azure, or GCP.
• Use and configuration of services such as OCI Cloud Guard, AWS Control Tower, Azure Security Center.
• Use and configuration of SIEM systems such as Splunk, QRadar, or LogRhythm.

In addition to the above knowledge of fundamental enabling technologies including:

• Secure coding practices
• Network security
• SSL / TLS
• Encryption
• Key Management
• Certificate Management
• Intrusion Detection and Prevention Systems
• Data Loss Prevention

Minimum Qualifications

• Minimum of 10 years of experience in progressively responsible information technology including.
• 5+ years of experience in developing, implementing, or architecting information systems
• 3+ years technical architecture experience integrating identity and access management software into cloud infrastructure and applications
• 2+ years experience in managing the security aspect of cloud deployments in OCI/Azure/AWS/GCP OR deployments of at least one identity and access management product such as: Oracle OAM/OIM/OVD/OID, CA/Netegrity SiteMinder/IdentityMinder/TransactionMinder, IBM Tivoli Identity Manager and/or Access Manager, Sun Identity Manager and/or Access Manager, Ping Access and/or Ping Federate, or similar
• Experience developing identity management strategies, architectures and implementation plans
• Experience with at least one of the following development environments/languages: Java / J2EE, Python, JavaScript, C#, c/C++

Preferred Experience and Qualifications

• Cloud Security Posture Management.
• Mobile Security.
• Cloud Security.
• Single Sign On.
• Enterprise Directory Architecture and Design including directory schema, namespace and replication topology experience.
• Resource Provisioning.
• Role Base Access Control.
• Experience with BEA WebLogic, IBM WebSphere or Tomcat.
• Hands on experience: (1) working with Oracle OCI, AWS, Azure or other major cloud providers, and (2) with Python programming and unit testing such as PyTest.
• Experience with Infrastructure as code concepts and CI/CD pipelines.
• Experience with DevOps concepts and Agile software development practices.
• Great documentational skills and approach of design and document first.
• Experience operating in a Linux/Unix environment.
• OCI certification highly desirable.
• Experience with one or more directories such as Active Directory, IBM Directory Server, SunONE Directory Server and Novell e-Directory.
• Familiarity with major operating systems, such as Microsoft Windows and Unix; mainframe security packages such as TopSecret, ACF2 and RACF; and/or leading packaged application solutions for ERP systems, CRM systems or portals.
• Solid understanding of virtual directories(e.g. Radiant Logic and OctetString).
• Familiarity with federated identity concepts (i.e. SAML, OAuth, OpenID Connect, WS-Federation).
• Familiarity with REST security concepts including OAuth, JSON, JWE, JWS, JWT, as well as others.
• Familiarity with web services security concepts such as SAML, WS-Security, XML-Sec.
• Experience leading business requirements gathering and translating those into system requirements.
• Experience facilitating business process design as it relates to managing identities and access privileges.
• Experience developing identity management governance plans.
• Understanding of current regulatory environment and related implications to identity management and security/audit compliance.
• Comfort with sophisticated, constantly evolving software development environments.
• Ability to learn new technologies quickly.
• Experience using distributed source code management systems (e.g. Git).
• Experience using ticket tracking systems (i.e. JIRA).
• Experience working with geographically distributed teams.

Does this sound like you? If so, we hope to meet you

Qualifications

Career Level - IC4