Apply Now

Principal IT Security Engineer

Redwood City, CA, USA | Oracle

  • Industry:
    Information Technologies
  • Position Type:
  • Functions:
    IT / Information Technology
  • Experience:
    10-12 years
    12-15 years
Job Description:
102 people have viewed this job

Design, build, and support security solutions for product services and infrastructure both on premise and cloud

Architect, develop, support, automate and evaluate new security tools and services

Develop standard operating procedures, security guidelines and processes

Conduct security risk assessment and evaluate the effectiveness of existing security controls

Help internal product teams architect solutions securely

Lead product teams through threat modeling and architectural risk analysis

Lead product teams through the security design review process

Ensure operations team’s designs meet security policy and standards

Document policy improvements necessary to improve internal processes

Contribute to internal security evangelism and education

Required skills and experience:

Possess a deep understanding of operations and network security and common security weaknesses

Ability to explain complex security issues to engineers, managers, and executives

Ability to manage multiple disparate projects

Proficient in threat modeling and architectural risk analysis

Excellent written and spoken English communication

Proven skills in network and system security and design, management, monitoring, incident response

Strong knowledge of security controls including network security technologies (IDS, IPS, firewall, DLP, NAC, and WAF), OS hardening, file integrity monitoring, authentication

Self-motivated and possess solid critical thinking, analytical and problem-solving skills

8 years of related work experience with a Bachelor's degree; or 6 years with Master's degree, 3 years with PH D

B.Sc. in Computer Science, Computer Engineering, or equivalent experience

Preferred skills and experience:

11 to 15 years of relative work experience desired.

Familiarity with ISO27001

Work experience at a cloud service provider and intimate knowledge of the complexities of securing a cloud environment preferred

Recognized industry certification and/or continuing education programs are a major plus including CISSP, OSCP, CCSK, CCNE, GSEC, CISA

*Please note the above job description pertains to the current vacancy

Detailed Description and Job Requirements

Executes security controls to prevent hackers from infiltrating company information or jeopardizing e-commerce programs.

Researches attempted efforts to compromise security protocols. Maintains security systems for routers and switches. Administers security policies to control access to systems. Maintains the company’s firewall. Uses applicable encryption methods. Provides information to management regarding the negative impact on the business caused by theft, destruction, alteration or denial of access to information.

Leading contributor individually and as a team member, providing direction and mentoring to others. Work is non-routine and very complex, involving the application of advanced technical/business skills in area of specialization. Prefer 8 years relevant experience and BA/BS degree.


Other companies hiring with Ivy Exec

 Company Logos