Security Tooling Engineer

Security Tooling Engineer position in Oracle’s IT Tooling and Automation group focuses on Assessment, Planning, Designing, Implementation and Integration of processes, procedures and tools necessary to improve & harden the security posture of Oracle Global IT

What You Will Do

• Collaborate globally within the team & other IT groups and lines of business to gather requirements, Assess, Design, & Engineer Security Tooling & automation solutions
• Work with internal Oracle teams and vendors to run RFPs & POCs independently for new solutions/products in the security space
• Communicate, lead, and influence colleagues in information security best practices;
• Work with vendors to drive product road map, enhancements, bug resolution, and best practices.
• Develop integration and automation solutions to streamline business process, and improve efficiency in order to maximize value out of the security tools.
• Document, communicate, conform and improve processes related to security monitoring;
• monitor & analyze the health and wellness of security systems;

Participate in escalations and work flexible hours as needed resolving & remediating incidents related to supported environment

• Execute proactive actions such as service health checks, failover testing, compliance, backup – restore, patching and more

Basic qualifications

•           BS in Computer Science, Engineering

•           5+ years of experience with networking, infrastructure, or systems administration in at least one of the following areas: Linux, UNIX, Windows, TCP/IP networking, security fundamentals.

•           3+ years of experience with supporting at least one of the following technologies: Cisco switches / routers, Cisco IDS/IPS, FireEye, IBM QRadar, Threat Intelli & network visibility solutions

•           Understanding of basic network services, vulnerabilities, and attacks;

•           Knowledge of SIEM tools / Log Analysis;

•           Ability to work independently and pro-actively contribute in a global team environment;

•           Excellent interpersonal, organizational, documentation, and communication skills; able to concisely communicate security risks to both technical and business audiences;

Preferred Skills

•           2+ years of experience with network layers 2-7, network services, and/or systems management including virtualization and cloud technologies with a focus on security, high availability, encryption, automation using Python, Chef, and other scripting languages

•           Experience in 1 or more of the following Security Operations Center technologies/applications:

- Vulnerability Assessment

- Configuration Compliance Scanning

- Intrusion Prevention Solutions

- SNORT

- Firewall policy management

- Secure database applications

- SIEM/Log Analytics

- Oracle databases

•           Database knowledge

•           Knowledge of Network Intrusion Detection Systems and exploits / vulnerabilities;

•           Able to demonstrate significant depth of understanding in one or more security fields;

•           Excellent interpersonal, organizational, documentation, and communication skills; able to concisely communicate security risks to both technical and business audiences;

•           Demonstrate ability to methodically locate assets with limited information by leveraging core enterprise resources (including ARP tables, MAC addresses, DNS, etc.);

•           CISSP and/or Certifications networking or information security