Security Tooling Engineer position in Oracle’s IT Tooling and Automation group focuses on Assessment, Planning, Designing, Implementation and Integration of processes, procedures and tools necessary to improve & harden the security posture of Oracle Global IT
What You Will Do
- Collaborate globally within the team & other IT groups and lines of business to gather requirements, Assess, Design, & Engineer Security Tooling & automation solutions
- Work with internal Oracle teams and vendors to run RFPs & POCs independently for new solutions/products in the security space
- Communicate, lead, and influence colleagues in information security best practices;
- Work with vendors to drive product road map, enhancements, bug resolution, and best practices.
- Develop integration and automation solutions to streamline business process, and improve efficiency in order to maximize value out of the security tools.
- Document, communicate, conform and improve processes related to security monitoring;
- monitor & analyze the health and wellness of security systems;
Participate in escalations and work flexible hours as needed resolving & remediating incidents related to supported environment
- Execute proactive actions such as service health checks, failover testing, compliance, backup – restore, patching and more
Basic qualifications
• BS in Computer Science, Engineering
• 5+ years of experience with networking, infrastructure, or systems administration in at least one of the following areas: Linux, UNIX, Windows, TCP/IP networking, security fundamentals.
• 3+ years of experience with supporting at least one of the following technologies: Cisco switches / routers, Cisco IDS/IPS, FireEye, IBM QRadar, Threat Intelli & network visibility solutions
• Understanding of basic network services, vulnerabilities, and attacks;
• Knowledge of SIEM tools / Log Analysis;
• Ability to work independently and pro-actively contribute in a global team environment;
• Excellent interpersonal, organizational, documentation, and communication skills; able to concisely communicate security risks to both technical and business audiences;
Preferred Skills
• 2+ years of experience with network layers 2-7, network services, and/or systems management including virtualization and cloud technologies with a focus on security, high availability, encryption, automation using Python, Chef, and other scripting languages
• Experience in 1 or more of the following Security Operations Center technologies/applications:
- Vulnerability Assessment
- Configuration Compliance Scanning
- Intrusion Prevention Solutions
- SNORT
- Firewall policy management
- Secure database applications
- SIEM/Log Analytics
- Oracle databases
• Database knowledge
• Knowledge of Network Intrusion Detection Systems and exploits / vulnerabilities;
• Able to demonstrate significant depth of understanding in one or more security fields;
• Excellent interpersonal, organizational, documentation, and communication skills; able to concisely communicate security risks to both technical and business audiences;
• Demonstrate ability to methodically locate assets with limited information by leveraging core enterprise resources (including ARP tables, MAC addresses, DNS, etc.);
• CISSP and/or Certifications networking or information security