[Remote] Lead Principal Security Engineer
Note: The job is a remote job and is open to candidates in USA. Oracle is a leader in cloud solutions and is seeking a Lead Principal Security Engineer for its Cloud Infrastructure team. The role involves defining security requirements for hardware, conducting security assessments, and collaborating with various teams to enhance the security posture of Oracle Cloud Infrastructure.
Responsibilities
- Definition of security requirements for hardware enabling OCI security posture aligning business needs and technology trends
- Provide independent design consulting for complex compute systems, balancing business objective and security risks to implement:
- Requirements specified by the hardware security team
- Features required to achieve security bar
- Operations (provisioning, re-use, decommissioning) inline with security posture
- Hands on
- Security assessments of complex compute systems to ensure they meets requirements
- Adversarial assessments to ensure they can’t be compromised
- Breakdown complex systems for analysis, assign parts to other members of the team, collaborate on synthesizing the inputs and forming a holistic assessment, contextualized to cloud environments
- Understand business objectives/requirements and assess risk from findings/threat models and identify proper risk mitigation controls
- Work across to teams to ensure requirements, findings and recommendations are implemented inline with expected outcomes
- Communicate risks and options to mitigate to senior leadership, balancing security, technology and business goals
- Identify opportunities for security and process improvements and drive them across the organization
- Advance state of the industry security knowledge through individual research contribution
- Follow developments and trends in their area of subject matter expertise and educate the business and security organization of the developments
- Mentor junior engineers
Skills
- Bachelor's degree in Electrical Engineering, Computer Science or related field or equivalent experience
- 10+ years of experience in hardware security architecture / engineering / validation / planning or related area
- Demonstrated competency in hardware/firmware with a focus on security
- Competency with computer architecture
- Subject Matter Expertise in two or more of the following areas: Root Of Trust (TCG SRTM, DRTM), x86 (Intel, AMD), ARM server platform architecture, UEFI, GPU platforms, rackscale systems, clustering, Baseboard Management Controllers, SmartNICs (DPUs), Storage devices
- Security concepts and standards associated Attestation (Ex: SPDM), cryptography, Secureboot, DICE etc
- Ability to work with most common programming languages (C, C++, Java, Python, Ruby, Go, Rust)
- Ability to read and review complex hardware system/platform level schematics for security concerns
- Experience with reversing tools and ability to reverse engineer
- Extensive research or experience with multiple classes of security bugs
- Specification and/or design of hardware security features
- Ability to read and understand x86 and/or ARM assembly language
- Knowledge of vendor-specific TEE technologies such as Intel SGX
- Familiarity with common embedded communications interfaces (SPI, I2C, RS232-style serial)
- Knowledge of host and network virtualization technologies and how to use them securely
- Knowledge of enterprise and/or datacenter networking architecture
- Experience operating in a large-scale DevOps or CICD environment
- Ability to write clear and concise product security requirements
- Ability to effectively assess risk from findings and threat models and identify proper risk mitigation controls
- Ability to succeed individually or collaboratively, whether working internally or with external organizations and individuals
- Significant experience working effectively in a large and distributed company
- Excellent organizational, verbal and written communication skills
- Conducting training / thought leadership / conference talks / publications
Benefits
- May be eligible for bonus, equity, and compensation deferral.
- Medical, dental, and vision insurance, including expert medical opinion
- Short term disability and long term disability
- Life insurance and AD&D
- Supplemental life insurance (Employee/Spouse/Child)
- Health care and dependent care Flexible Spending Accounts
- Pre-tax commuter and parking benefits
- 401(k) Savings and Investment Plan with company match
- Paid time off: Flexible Vacation is provided to all eligible employees assigned to a salaried (non-overtime eligible) position. Accrued Vacation is provided to all other employees eligible for vacation benefits. For employees working at least 35 hours per week, the vacation accrual rate is 13 days annually for the first three years of employment and 18 days annually for subsequent years of employment. Vacation accrual is prorated for employees working between 20 and 34 hours per week. Employees working fewer than 20 hours per week are not eligible for vacation.
- 11 paid holidays
- Paid sick leave: 72 hours of paid sick leave upon date of hire. Refreshes each calendar year. Unused balance will carry over each year up to a maximum cap of 112 hours.
- Paid parental leave
- Adoption assistance
- Employee Stock Purchase Plan
- Financial planning and group legal
- Voluntary benefits including auto, homeowner and pet insurance
Company Overview
Company H1B Sponsorship