Back to All Jobs
United States
16 hours ago
Security Engineer 6

Chief Architect, Application Security 

Do you have a passion for solving complex application security problems via tools, making the impossible possible, and using your ethical hacking experience to better inform solutions in the application security on-prem and cloud world?  We are seeking an experienced, passionate, and talented architect who has genuine excitement for and interest in security to lead a small, advanced development team within the Software Assurance organization.  You must relish the challenge of solving practical engineering problems that ethical hackers have while performing assessments of systems, with an initial focus on automated binary (executable) analysis.  You are a recognized industry leader.  Creativity and broad technical knowledge are highly valued; being able to design and prototype secure products that are technically possible is essential in this role. 

 

Who We Are

We are a world-class team of high calibre application security developers, researchers and analysts who thrive on new challenges.  We are an inclusive and diverse team with a full spectrum of experience distributed globally. The Software Assurance organization has the mission to make application security and software assurance, at scale, a reality.  Our leading application security tool, Oracle Parfait, detects vulnerabilities in source code using state-of-the-art techniques to scale-up analysis.  The tool is used by thousands on developers worldwide daily across multi-million lines of code enterprise codebases. Join us to grow your career and create the future of application security at scale together.  

 

Work You’ll Do

As a member of our team, you will be responsible for leading a small, advanced development team who will initially focus on development of a proof-of-concept binary (executable) analysis tool and potential use of AI to enhance the tool.  You will provide expert technical advice and direction to support the design and development of proof-of-concept tools at the intersection of application security.  You will provide leadership across the organization in application security and its relationship to security research and application security tools.  Collaboration with other parts of the organization will allow you to have a deeper understanding of the needs of the security researcher and the security teams.  Collaboration with the production engineering team will allow for cross-pollination of Program Analysis techniques, reuse of infrastructure, and facilitate potential productization of prototypes. An initial focus will be on mobile applications; however, cloud applications are also of interest.  Keeping up to date with emerging AI and new technologies for technical expertise and business analysis is a must. 

 

What You’ll Bring

Bachelor’s or Master’s degree in Computer Science or related field (e.g. Electrical Engineering) 15+ years industry experience with 7+ years in IT security in one or more of the following areas: red (offensive) or blue (defensive) security, software/product architecture. Demonstrable experience in designing and evaluating complex systems for security Demonstrable experience in security leadership roles, especially as an architect Demonstrable experience in understanding of Program Analysis techniques Aptitude for self-study, setting and achieving long term goals (for example, learning an unfamiliar programming language or technology) Ability to effectively assess and communicate risks to project goals and design with appropriate levels of urgency to management and engineering staff Excellent organizational, presentation, verbal, and written communication skills Must be legally authorized to work in the United States without the need for employer sponsorship, now or at any time in the future

 

Nice to Have

Experience working in a large cloud or Internet software company 5+ years industry experience in software development Experience in project management Proficiency with multiple programming languages, preferably assembler, C/C++, Objective-C, Swift, Go, Java Experience on conducting manual source code reviews Experience navigating and working with extremely large codebases is also highly desirable Experience using common security assessment tools and techniques  Knowledge of common vulnerabilities in different types of software and programming languages, including:  How to test for/exploit them, and Real world mitigations that can be applied Familiarity with vulnerability classification frameworks (e.g. OWASP Top 10, CVSS, MITRE CVE)

 

What We’ll Give You

A team of very skilled and diverse personnel across the globe Exposure to mind blowing large-scale cutting-edge systems The resources of a large, global operation while still having the small, start-up feel of a smaller team day to day Develop new skills and competencies working with our vast cloud product offerings Ongoing extensive training and skills development to further your career aspirations Incredible benefits and company perks An organization filled with smart, enthusiastic, and motivated colleagues The opportunity to impact and improve our systems and delight our customers

 

Career Level - IC6

Show More
Save & Apply Later Applying Later... Click to ApplyI AppliedDidn't Apply
Confirm your E-mail: Send Email
Apply for this job
Next Job »
All Jobs from Oracle
2,330 Oracle jobs in US
Next Job »
Search Jobs Oracle Apply Later
Processing Unique Jobs for You: