Jobs via Dice
Senior Principal Offensive Security Engineer (OCI)
Jobs via Dice, Nashville, Tennessee, United States, 37247
Senior Principal Offensive Security Engineer (OCI)
Join our Oracle Cloud Infrastructure (OCI) Offensive Security team to design and execute strategies that ensure our cloud systems meet the highest security objectives. You will develop advanced vulnerability research, penetration testing, red‑team frameworks, and cloud security tooling.
Role Overview As a hands‑on cloud hacker, you will work on large‑scale distributed security systems, using your expertise in identifying and exploiting complex problems in multi‑tenant infrastructure. You will operate in a fast‑growth environment, prioritizing and delivering security solutions at scale.
Responsibilities
Dive into complex source code audits to uncover subtle security vulnerabilities.
Write new security tools such as fuzzers in languages including C/C++, Python, Ruby, Go, or Java.
Tear apart undocumented file formats or network protocols.
Develop novel techniques to solve unique security challenges.
Review new services and their integration points with existing systems.
Guide projects beyond assessment work, identifying and disclosing vulnerabilities to third‑party vendors.
Design and build systems to improve the quantity and quality of offensive security output.
Provide cross‑team guidance on security architecture and engineering practices.
Drive organization‑wide improvements in security operations and development practices.
Qualifications
6+ years of experience in vulnerability discovery, security engineering, or application security.
Experience with threat modeling of microservice architectures.
Background working in a large cloud or software company.
Extensive research or experience with multiple classes of security bugs.
Contribution to the security community through training, talks, publications, or similar.
Expertise in at least one business‑critical area (cryptography, hardware security, OS internals, authentication, fuzzing, DoS mitigation, networks, distributed systems).
Strong collaboration across internal teams and external partners.
Excellent verbal and written communication skills.
Intermediate knowledge of Linux OS internals; advanced knowledge of at least one programming language with ability to read two high‑level languages.
Preferred Qualifications
Undergraduate or graduate degree in Electrical Engineering, Computer Science, or related field (or equivalent experience).
Hands‑on experience developing services on a public cloud platform (AWS, Azure, Oracle).
Experience building continuous integration/deployment pipelines with robust testing.
Experience translating customer requests into prioritized work or features.
Expertise in risk identification techniques for security solutions.
Understanding of cryptographic algorithms, standards, implementation, and application.
Proficiency in threat modeling, penetration testing, reverse engineering, and software attacks.
Past work with large enterprise customers.
Active TS/SCI clearance.
Employment and Location Full‑time, Mid‑Senior level, IC5. This is an onsite position in Nashville, TN (priority) or Austin, TX (secondary). Relocation assistance is provided. Visa sponsorship is not available.
Range And Benefits US: Hiring Range from $120,100 to $251,600 per annum, plus eligibility for bonus, equity, and compensation deferral.
Benefits include:
Medical, dental, vision insurance.
Short‑term and long‑term disability.
Life insurance and AD&D.
Supplemental life insurance.
Health care and dependent care flexible spending accounts.
Pre‑tax commuter and parking benefits.
401(k) savings and investment plan with company match.
Paid time off with flexible vacation accrual.
11 paid holidays.
Paid sick leave of 72 hours, renewable annually up to 112 hours.
Paid parental leave, adoption assistance.
Employee stock purchase plan.
Financial planning and group legal services.
Voluntary benefits (auto, homeowner, pet insurance).
Required Compliance Certain US customer or client‑facing roles may be required to comply with applicable immunization and occupational health mandates.
Equal Employment Opportunity Oracle is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability, or protected veteran status. Oracle will consider qualified applicants with arrest or conviction records pursuant to applicable law.
About Oracle Oracle is a world leader in cloud solutions that uses tomorrow’s technology to address today’s challenges. We are committed to diversity, inclusion, and equal opportunity for all employees.
#J-18808-Ljbffr
Role Overview As a hands‑on cloud hacker, you will work on large‑scale distributed security systems, using your expertise in identifying and exploiting complex problems in multi‑tenant infrastructure. You will operate in a fast‑growth environment, prioritizing and delivering security solutions at scale.
Responsibilities
Dive into complex source code audits to uncover subtle security vulnerabilities.
Write new security tools such as fuzzers in languages including C/C++, Python, Ruby, Go, or Java.
Tear apart undocumented file formats or network protocols.
Develop novel techniques to solve unique security challenges.
Review new services and their integration points with existing systems.
Guide projects beyond assessment work, identifying and disclosing vulnerabilities to third‑party vendors.
Design and build systems to improve the quantity and quality of offensive security output.
Provide cross‑team guidance on security architecture and engineering practices.
Drive organization‑wide improvements in security operations and development practices.
Qualifications
6+ years of experience in vulnerability discovery, security engineering, or application security.
Experience with threat modeling of microservice architectures.
Background working in a large cloud or software company.
Extensive research or experience with multiple classes of security bugs.
Contribution to the security community through training, talks, publications, or similar.
Expertise in at least one business‑critical area (cryptography, hardware security, OS internals, authentication, fuzzing, DoS mitigation, networks, distributed systems).
Strong collaboration across internal teams and external partners.
Excellent verbal and written communication skills.
Intermediate knowledge of Linux OS internals; advanced knowledge of at least one programming language with ability to read two high‑level languages.
Preferred Qualifications
Undergraduate or graduate degree in Electrical Engineering, Computer Science, or related field (or equivalent experience).
Hands‑on experience developing services on a public cloud platform (AWS, Azure, Oracle).
Experience building continuous integration/deployment pipelines with robust testing.
Experience translating customer requests into prioritized work or features.
Expertise in risk identification techniques for security solutions.
Understanding of cryptographic algorithms, standards, implementation, and application.
Proficiency in threat modeling, penetration testing, reverse engineering, and software attacks.
Past work with large enterprise customers.
Active TS/SCI clearance.
Employment and Location Full‑time, Mid‑Senior level, IC5. This is an onsite position in Nashville, TN (priority) or Austin, TX (secondary). Relocation assistance is provided. Visa sponsorship is not available.
Range And Benefits US: Hiring Range from $120,100 to $251,600 per annum, plus eligibility for bonus, equity, and compensation deferral.
Benefits include:
Medical, dental, vision insurance.
Short‑term and long‑term disability.
Life insurance and AD&D.
Supplemental life insurance.
Health care and dependent care flexible spending accounts.
Pre‑tax commuter and parking benefits.
401(k) savings and investment plan with company match.
Paid time off with flexible vacation accrual.
11 paid holidays.
Paid sick leave of 72 hours, renewable annually up to 112 hours.
Paid parental leave, adoption assistance.
Employee stock purchase plan.
Financial planning and group legal services.
Voluntary benefits (auto, homeowner, pet insurance).
Required Compliance Certain US customer or client‑facing roles may be required to comply with applicable immunization and occupational health mandates.
Equal Employment Opportunity Oracle is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability, or protected veteran status. Oracle will consider qualified applicants with arrest or conviction records pursuant to applicable law.
About Oracle Oracle is a world leader in cloud solutions that uses tomorrow’s technology to address today’s challenges. We are committed to diversity, inclusion, and equal opportunity for all employees.
#J-18808-Ljbffr