Oracle Cloud Security Engineer

About The Position

Requirements

• Bachelor’s degree in Cybersecurity, Computer Science, Engineering, or a related discipline.
• Five or more years of cloud security experience, with strong hands-on time on OCI.
• Deep experience with OCI Identity, IAM policies, and identity federation.
• Hands-on experience with OCI Cloud Guard, Security Zones, Vault, and Data Safe.
• Solid understanding of cloud-native security frameworks and CIS benchmarks.
• Experience with vulnerability management and patching tooling.
• Working knowledge of regulatory frameworks (PCI-DSS, HIPAA, SOC 2, ISO 27001).
• Strong scripting skills (Python, Bash) and Terraform.
• Experience integrating cloud workloads with SIEM platforms.
• Excellent troubleshooting, communication, and documentation skills.

Nice To Haves

• Oracle Cloud Security Professional certification.
• CISSP, CCSP, or equivalent industry security certifications.
• Experience with multi-cloud security architectures.
• Familiarity with SOAR platforms and automated incident response.
• Exposure to zero-trust architecture patterns.

Responsibilities

• Design and implement enterprise security architectures for OCI tenancies, including landing-zone guardrails, security zones, and compartment policies.
• Configure and operate OCI Identity Domains, federation with corporate IdPs, and strong RBAC strategies across the tenancy.
• Implement strong key management and secrets handling using OCI Vault, including key rotation and HSM integration where appropriate.
• Harden OCI compute, networking, and database workloads using CIS benchmarks, OCI Security Zones, and internal security standards.
• Operate OCI Cloud Guard for continuous detection and response, tuning detectors and remediating findings.
• Configure and operate OCI Logging, OCI Audit, and integration with SIEM platforms for centralized monitoring and forensics.
• Implement data security controls using OCI Data Safe, including data masking, sensitive data discovery, and privileged user analysis.
• Lead vulnerability management programs, including image scanning, patching, and remediation tracking.
• Drive compliance with regulatory frameworks such as PCI-DSS, HIPAA, SOC 2, ISO 27001, or FedRAMP.
• Conduct threat modeling and architecture reviews for new OCI workloads.
• Lead security incident response on OCI, including containment, investigation, and post-incident review.
• Develop security automation tooling using Python, Terraform, and OCI CLI/SDK.
• Maintain comprehensive, current technical documentation — including architecture diagrams, design decisions, configuration references, runbooks, and operational procedures — so that the system remains supportable, auditable, and easy to onboard new engineers onto over time.
• Provide mentorship and security guidance across application and infrastructure teams.

Benefits

• Competitive base salary commensurate with experience, plus benefits.