Offensive Security Engineer
OracleArgentina4 days ago
Full-timeRemote FriendlyInformation Technology
Track This Job
Add this job to your tracking list to:
- Monitor application status and updates
- Change status (Applied, Interview, Offer, etc.)
- Add personal notes and comments
- Set reminders for follow-ups
- Track your entire application journey
Save This Job
Add this job to your saved collection to:
- Access easily from your saved jobs dashboard
- Review job details later without searching again
- Compare with other saved opportunities
- Keep a collection of interesting positions
- Receive notifications about saved jobs before they expire
AI-Powered Job Summary
Get a concise overview of key job requirements, responsibilities, and qualifications in seconds.
Pro Tip: Use this feature to quickly decide if a job matches your skills before reading the full description.
Job Description
Responsible for advanced security testing of Oracle applications and services (primarily SaaS-related) including but not limited to covert red team operations, security research and white box penetration testing, exploit development, and black box penetration testing.
Responsibilities
This team is responsible for ensuring the protection of Oracle's SaaS applications and services.
Oracle SaaS (a.k.a. Oracle Cloud applications), built on machine learning, offers the most complete application suite with the best technology, enabling fast innovation with a modern UX and customer-first approach and one of the top strategic cloud services for Oracle.
The SCS organization is responsible for securing enterprise-grade software services on behalf of our 25,000 customers, processing over 60 billion transactions per day. You will have the opportunity to work in a cloud-scale environment using the latest security technologies/tools and collaborate with the best minds in the industry, to collectively stay ahead of and respond to increasing threats to cloud services. And you will actively engage in conducting proactive security research and white box penetration testing, including the development of working proof of concept exploits; reactive security research based on industry trends as well as security incidents related to Oracle; covert red team operations; black box penetration tests; and other types of work involving collaboration with various security and engineering teams within Oracle SaaS.
About you:
Successful applicants will possess the knowledge necessary to conduct ethical hacking activities on:
Qualifications
Career Level - IC4
About Us
As a world leader in cloud solutions, Oracle uses tomorrow’s technology to tackle today’s challenges. We’ve partnered with industry-leaders in almost every sector—and continue to thrive after 40+ years of change by operating with integrity.
We know that true innovation starts when everyone is empowered to contribute. That’s why we’re committed to growing an inclusive workforce that promotes opportunities for all.
Oracle careers open the door to global opportunities where work-life balance flourishes. We offer competitive benefits based on parity and consistency and support our people with flexible medical, life insurance, and retirement options. We also encourage employees to give back to their communities through our volunteer programs.
We’re committed to including people with disabilities at all stages of the employment process. If you require accessibility assistance or accommodation for a disability at any point, let us know by emailing [email protected] or by calling +1 888 404 2494 in the United States.
Oracle is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans’ status, or any other characteristic protected by law. Oracle will consider for employment qualified applicants with arrest and conviction records pursuant to applicable law.
Responsible for advanced security testing of Oracle applications and services (primarily SaaS-related) including but not limited to covert red team operations, security research and white box penetration testing, exploit development, and black box penetration testing.
Responsibilities
This team is responsible for ensuring the protection of Oracle's SaaS applications and services.
Oracle SaaS (a.k.a. Oracle Cloud applications), built on machine learning, offers the most complete application suite with the best technology, enabling fast innovation with a modern UX and customer-first approach and one of the top strategic cloud services for Oracle.
The SCS organization is responsible for securing enterprise-grade software services on behalf of our 25,000 customers, processing over 60 billion transactions per day. You will have the opportunity to work in a cloud-scale environment using the latest security technologies/tools and collaborate with the best minds in the industry, to collectively stay ahead of and respond to increasing threats to cloud services. And you will actively engage in conducting proactive security research and white box penetration testing, including the development of working proof of concept exploits; reactive security research based on industry trends as well as security incidents related to Oracle; covert red team operations; black box penetration tests; and other types of work involving collaboration with various security and engineering teams within Oracle SaaS.
About you:
Successful applicants will possess the knowledge necessary to conduct ethical hacking activities on:
- SaaS applications
- SaaS host and network environments
- Web applications
- APIs
- Java-based technologies
- Databases
- AI/ML technologies
- Internally facing tools
- More…
- Red team custom implant development primarily in a Linux environment (non-Linux OS environments also present but less numerous)
- Red team campaign execution
- Red team infrastructure support (i.e., Terraform, Ansible, cloud products, etc.)
- Security research and code review
- Proof of concept exploit/malware development
- 5+ years of experience in offensive security, with at least 3 years of recent experience with red team operations or security research
- BS in Computer Science, or equivalent experience
- Deep familiarity with Linux and attack tooling is required
- Ability to work in a collaborative, cross-functional team environment
- In depth knowledge of security vulnerabilities including a detailed understanding of the OWASP top 10, secure design and secure coding principles
- Ability to prioritize and handle concurrent assignments or projects
- Excellent team player, willing to share knowledge and skills with peers and team members
- Strong presentation, written and verbal communication skills
- Experience with security testing tools including static analysis, web application testing, infrastructure and network testing, and manual security testing required
- Proficient in multiple programming and scripting languages including any of the following: Java, C#, C, Go, Rust, Scala, Ruby, Python, Bash/sh, Powershell, JavaScript, or other object-oriented languages
- Experience leading red team campaigns from start to finish with high success rate and low detection rate
- Experience in building covert command and control (C2) implants designed to evade host-based and network-based detection capabilities
- Proven ability (i.e., published CVEs, etc.) to discover and exploit complex security vulnerabilities and vulnerability chains to achieve remote code execution (RCE)
- Experience with AI red teaming or penetration testing
- Advanced security certifications relevant to white box penetration testing and red team operations such as: OSCP, OSCE, OSWE, OSEP, OSED, OSEE, OSCE3, CRTP, CRTE, CRTM, GXPN
Qualifications
Career Level - IC4
About Us
As a world leader in cloud solutions, Oracle uses tomorrow’s technology to tackle today’s challenges. We’ve partnered with industry-leaders in almost every sector—and continue to thrive after 40+ years of change by operating with integrity.
We know that true innovation starts when everyone is empowered to contribute. That’s why we’re committed to growing an inclusive workforce that promotes opportunities for all.
Oracle careers open the door to global opportunities where work-life balance flourishes. We offer competitive benefits based on parity and consistency and support our people with flexible medical, life insurance, and retirement options. We also encourage employees to give back to their communities through our volunteer programs.
We’re committed to including people with disabilities at all stages of the employment process. If you require accessibility assistance or accommodation for a disability at any point, let us know by emailing [email protected] or by calling +1 888 404 2494 in the United States.
Oracle is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans’ status, or any other characteristic protected by law. Oracle will consider for employment qualified applicants with arrest and conviction records pursuant to applicable law.
Key Skills
Ranked by relevanceReady to apply?
Join Oracle and take your career to the next level!
Application takes less than 5 minutes