Oracle Principal Software Security Engineer in Longmont, Colorado
Design, develop, troubleshoot and debug software programs for databases, applications, tools, networks etc.
As a member of the software engineering division, you will take an active role in the definition and evolution of standard practices and procedures. You will be responsible for defining and developing software for tasks associated with the developing, designing and debugging of software applications or operating systems.
Work is non-routine and very complex, involving the application of advanced technical/business skills in area of specialization. Leading contributor individually and as a team member, providing direction and mentoring to others. BS or MS degree or equivalent experience relevant to functional area. 7 years of software engineering or related experience.
Oracle is an Affirmative Action-Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability, protected veterans status, age, or any other characteristic protected by law.
Principal Software Security Engineer
LOCATION: COLUMBIA, MD HIGHLY PREFERRED
NOTE: *We are unable to provide visa sponsorship for this role at this time. No candidates requiring visa sponsorship will be considered.*
Oracle F&B revolutionizes the F&B Industry by elevating the guest experience in businesses worldwide. We deliver a wide range of software, hardware, and related services to over 180 countries across the globe, along with a rapidly growing portfolio of cloud solutions.
If you are interested in working with an / industry leader and innovator, with the opportunity to become our subject matter expert on all things Software Security, then this is the opportunity for you!
Oracle is committed to delivering secure and high quality products. We are looking for a skilled Principal Software Security Engineer to add a security focus into every aspect of the software development life cycle. The Principal Software Security Engineer will work together with Development, Testing and Corporate Security Groups to deliver a security compliant, robust and reliable product. The ideal candidate will have a software development background and experience with Java.
In this role you will act as:
Information security subject matter expert and security point of contact. You will be responsible for the design and architecture of security into our F&B Products and work with the security lead and corporate security teams to develop and implement security features into the applications.
Day to Day Responsibilities:
You will contribute to all levels of the application architecture, and maintain security documentation.
You will collaborate with Lead Architect and Development to create engineering designs that meet Food & Beverage Global Business Unit and Oracle security objectives.
You will work with Development and Quality Assurance providing analysis and recommendations for mitigating controls to address security vulnerabilities..
You will work closely with Corporate Security and Cloud Operations to drive the software security certification process for the organization.
You will perform security risk analysis for our products and portfolio.
You will provide security guidelines for the organization to protect critical assets and data.
You will be responsible for compliance status for all components in each major release, and for the security assurance of the components.
You will be responsible for the evaluation of new technologies, tools, and/or development techniques that impact security
You will review, analyze, and evaluate both internally developed software and vendor products and procedures to address security requirements.
You will maintain development security standards, policies, and procedures.
You will perform on-going security code and testing review to improve software security
You will develop and deliver consistent automated metrics covering all aspects of the security program.
We are looking for someone with a minimum of *3 years of Java software development *experience, and demonstrated experience in developing and delivering enterprise scale 3-tier applications. This includes in-depth understanding of common web application vulnerabilities and techniques to remediate those vulnerabilities.
To be successful in this role, you will have:
Experience with security standards and vulnerabilities.
Working knowledge of web and mobile application development and security vulnerabilities.
Strong familiarity with multiple software security paradigms, with CSSLP or other information security certifications.
Detailed technical knowledge of techniques, standards and state-of-the art capabilities for authentication and authorization applied cryptography security vulnerabilities and remediation (such *as authentication and authorization, applied cryptography, security vulnerabilities and remediation *(such as OAuth2, OpenConnect, WS-Security, SAML).
A solid understanding of attack vectors, exploits.
Experience with various security tools and products (Fortify, AppScan, Burp Suite, ZAP) for static and dynamic analysis.
Experience with Enterprise Cloud Software environments.
Knowledge of web related technologies.
BS in Computer Science or similar technical field.
5 years proven work experience as a Software Security Engineer or equivalent. Writing and Presentation skills.
/At Oracle, we don t just value differenceswe celebrate them. We re committed to creating a workplace where all kinds of people work together. We believe innovation starts with diversity and inclusion./
Job: *Product Development
Title: Principal Software Security Engineer
Location: United States
Requisition ID: 20000MPQ