Job Description
Information Security Sr. Manager - Offensive Security
Oracle Cloud Infrastructure Group (United States)
The Oracle Cloud Infrastructure (OCI) Offensive Security team provides OCI with the capabilities to ensure our systems and services meet the security objectives we communicate to customers.
The Offensive Security group performs security assessments, vulnerability research, static and dynamic analysis research, penetration testing, red-teaming, and security tool development.
We ensure the security of the software and hardware that runs our cloud infrastructure and strive for continuous improvement.
The OCI Offensive Security group works as a team.
We don't fit people into predefined roles.
We bring together the right people who enhance team capability and build roles around each team member's skills and interests.
Values are OCI's foundation and how we deliver excellence.
We strive for equity, inclusion, and respect for all.
We are committed to the greater good in our products and our actions.
We are continually learning and taking opportunities to grow our careers and ourselves.
We challenge each other to stretch beyond our past to build our future.
You can learn more about us by visiting .
Are you interested in building large-scale distributed security systems and tools for the cloud?
Do you love the idea of working in an environment with the excitement of a start-up, but the financial backing of a Fortune 100 company?
This role offers huge upside potential, high visibility, and fast career growth without the risks of a typical start-up.
We are growing fast, maturing, and working on results-oriented initiatives.
A security-focused leader can have significant technical and business impact.
This is a unique opportunity to work with smart people to solve complex problems in distributed systems, security, and multi-tenant Infrastructure-as-a-Service (IaaS) operating at massive scale.
The biggest challenges for the team is the dynamic and fast growth of the business, driving us to improve our systems, tools, and automation to scale to our security expertise several orders of magnitude greater than what we can support today.
We understand that software is living and needs investment.
The challenge is making the right tradeoffs, communicating those decisions effectively, and crisp execution.
We hope you like working at scale as much as we do because Oracle has no shortage of it! Craft the future of one of the largest clouds on earth with us!
Our ideal candidate is a hardworking and hands-on leader concerned with both security and building the best team possible, a passionate leader about security and furthering their knowledge every day as well as their team, and has previous experience working in the cloud/hardware industry and leading a group of scary smart hackers that operate in a distributed, multi-tenant service infrastructure.
Qualifications
 3+ years of management experience delivering and operating large scale, highly available distributed services 5+ years of software engineering experience Strong overall business and communication skills, including executive presentation skills and eye for business Strong leadership and people management skills Understanding the importance of a balanced work approach to encourage team culture Strong knowledge of data structures, algorithms, operating systems, and distributed systems fundamentals Strong understanding of databases, NoSQL systems, storage and distributed persistence technologies Prior experience with Security Understanding of known security vulnerabilities and mitigations Programming and debugging fundamentals in languages/interfaces, such as C/C++, Java, Python, etc Responsibilities
 Leading a diverse set of personalities and talent Understanding the importance of a healthy and supportive team culture Support a culture of accountability, integrity and high expectations Effectively communicate to anyone in the organization, from the most technical operator to senior leadership Stay abreast of known vulnerabilities which can impact our cloud and customers, and work towards applying appropriate mitigations Guide and mentor the teams which perform security reviews, and clearly communicate their findings Drive implementation and verification of security features to enhance the security of our platforms Recommend methodologies for secure service development driving continuous improvement in the engineering organization - Including mentoring, developing, and delivering training materials as well as producing frameworks to reduce standard methodology patterns to an application for use in production efforts Collaborate to develop a long-term security roadmap for the features we invest in first Responsibly and securely disclose 3rd party vulnerabilities to vendors Provide direction and advice on emerging threats, weaknesses, and security practices that may impact the security posture of OCI Manage and lead the performance of security teams and security testing activities Be able to critically examine an organization and system through the perspective of a threat actor and articulate risks in clear, detailed terms. Guiding effective remediations and fixes in our platforms Demonstrate solid understanding of distributed networks, major operating systems and their associated peripherals Disclaimer:
Certain US customer or client-facing roles may be required to comply with applicable requirements, such as immunization and occupational health mandates.Range and benefit information provided in this posting are specific to the stated locations onlyUS: Hiring Range in USD from: $120,100 to $251,600 per annum.
May be eligible for bonus, equity, and compensation deferral.
Oracle maintains broad salary ranges for its roles in order to account for variations in knowledge, skills, experience, market conditions and locations, as well as reflect Oracle’s differing products, industries and lines of business.
Candidates are typically placed into the range based on the preceding factors as well as internal peer equity.
Oracle US offers a comprehensive benefits package which includes the following:
1.
Medical, dental, and vision insurance, including expert medical opinion
2.
Short term disability and long term disability
3.
Life insurance and AD&D
4.
Supplemental life insurance (Employee/Spouse/Child)
5.
Health care and dependent care Flexible Spending Accounts
6.
Pre-tax commuter and parking benefits
7.
401(k) Savings and Investment Plan with company match
8.
Paid time off: Flexible Vacation is provided to all eligible employees assigned to a salaried (non-overtime eligible) position.
Accrued Vacation is provided to all other employees eligible for vacation benefits.
For employees working at least 35 hours per week, the vacation accrual rate is 13 days annually for the first three years of employment and 18 days annually for subsequent years of employment.
Vacation accrual is prorated for employees working between 20 and 34 hours per week.
Employees working fewer than 20 hours per week are not eligible for vacation.
9.
11 paid holidays
10.
Paid sick leave: 72 hours of paid sick leave upon date of hire.
Refreshes each calendar year.
Unused balance will carry over each year up to a maximum cap of 112 hours.
11.
Paid parental leave
12.
Adoption assistance
13.
Employee Stock Purchase Plan
14.
Financial planning and group legal
15.
Voluntary benefits including auto, homeowner and pet insurance
The role will generally accept applications for at least three calendar days from the posting date or as long as the job remains posted.
Career Level - M3