Principal Security Engineer (OCI)

About The Position

Requirements

• Bachelor's degree in computer science, Information Security, or related field; Master's degree preferred.
• 10+ years of experience in cybersecurity, security architecture, or related technical security roles, with a focus on securing cloud environments, automation workflows, incident detection and response, and vulnerability remediation.
• Industry certifications such as CISSP, OSCP, CISM, GIAC, or cloud security specialties (OCI, AWS, Azure) are highly preferred.
• Proven expertise in security architecture, threat modeling, and risk management at an enterprise level.
• Strong knowledge of network security, cloud security (OCI, AWS, Azure, GCP), endpoint security, operating systems (Linux, Windows), middleware, databases, and identity management.
• Experience developing and enforcing security policies, governance frameworks, and compliance controls aligned with standards such as NIST, ISO 27001, SOC 2, GDPR, HIPAA, etc.
• Hands-on experience with firewalls, SIEM tools, IDS/IPS, EDR solutions, and security automation technologies.
• Demonstrated ability to oversee security incident response, forensic analysis, red/blue team operations, and the containment and remediation of cyber threats.
• Strong understanding of cryptography, secure coding practices, zero-trust architecture, and identity and access management (IAM).
• Proficient in scripting languages such as Bash, Python, Perl, or YAML, and experienced with infrastructure-as-code tools like Terraform or CloudFormation.
• Familiarity with container orchestration platforms such as Kubernetes, OpenShift, EKS, AKS, as well as container image scanning and vulnerability management.
• Excellent communication skills, capable of clearly conveying technical concepts to both technical and non-technical audiences, with strong written and verbal proficiency.

Responsibilities

• Develop and manage information security governance, including the creation of policies, procedures, standards, baselines, and guidelines to ensure the secure operation of information systems.
• Build application security framework review processes (e.g., OWASP Top 10) to identify vulnerabilities such as SQL injection, XSS, and insecure APIs.
• Design secure system architectures in the cloud, incorporating zero-trust security models, network segmentation, and access control mechanisms.
• Monitor network traffic and security events to detect and respond to potential threats and vulnerabilities.
• Conduct regular vulnerability assessments and penetration tests on network and cloud infrastructure.
• Support the configuration and management of firewalls, VPNs, IDS/IPS, and cloud-native security tools to safeguard network perimeters and segments.
• Perform code reviews and security testing (e.g., SAST, DAST); enforce secure coding practices across the SDLC pipeline using CI/CD tools (e.g., Jenkins, Git, GitHub Actions, Artifactory, SonarQube); manage secrets, software composition analysis (SCA), and open-source tools.
• Build, develop, and monitor configuration management automation and infrastructure-as-code (IaC) strategies to achieve a secure-by-design framework.
• Monitor information systems for security incidents and vulnerabilities; develop visibility capabilities and reporting on incidents, trends, and vulnerabilities for IT and executive management.
• Demonstrate proven leadership in independently leading security projects and initiatives using Agile or Waterfall methodologies.
• Architect, design, implement, maintain, and operate information system security controls and countermeasures; train and supervise personnel in system administration and operations; document usage, operations, and expected outcomes.
• Develop and maintain cybersecurity documentation, including the System Security Plan (SSP), Privacy Impact Assessment (PIA), Configuration Management Plan (CMP), Plan of Action and Milestones (POA&M), and Standard Operating Procedures (SOP), as required.
• Create stakeholder reports summarizing assessment and audit findings with actionable recommendations.
• Provide metrics to cybersecurity leadership and brief executive teams on compliance matters.
• Participate in internal and external audits, providing executive leadership with clear briefings on compliance issues, audit results, assessment findings, and recommended corrective actions.

Benefits

• Medical, dental, and vision insurance, including expert medical opinion
• Short term disability and long term disability
• Life insurance and AD&D
• Supplemental life insurance (Employee/Spouse/Child)
• Health care and dependent care Flexible Spending Accounts
• Pre-tax commuter and parking benefits
• 401(k) Savings and Investment Plan with company match
• Paid time off: Flexible Vacation is provided to all eligible employees assigned to a salaried (non-overtime eligible) position.
• 11 paid holidays
• Paid sick leave: 72 hours of paid sick leave upon date of hire.
• Paid parental leave
• Adoption assistance
• Employee Stock Purchase Plan
• Financial planning and group legal
• Voluntary benefits including auto, homeowner and pet insurance