Oracle Principal Information Security Analyst (Penetration Tester) in Beavercreek, Ohio

Design, develop, troubleshoot and debug software programs for databases, applications, tools, networks etc.

As a member of the software engineering division, you will take an active role in the definition and evolution of standard practices and procedures. You will be responsible for defining and developing software for tasks associated with the developing, designing and debugging of software applications or operating systems.

Work is non-routine and very complex, involving the application of advanced technical/business skills in area of specialization. Leading contributor individually and as a team member, providing direction and mentoring to others. BS or MS degree or equivalent experience relevant to functional area. 7 years of software engineering or related experience.

Oracle is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans status or any other characteristic protected by law.

The primary responsibility of this position is to conduct securitycompliance assessments and penetration tests, follow up remediation ofidentified vulnerabilities, participate in incident response and proactivelyresearch future threats.


-{PS..0}->Perform application-layer penetration testing againstCorporate and customer software applications and webservices

-{PS..1}->Conduct network and server layer penetration testingagainst Corporate Internet-facing and internal systems

-{PS..2}->Document technical issues identified during securityassessments and incidents, and author formal reports

-{PS..3}->Follow up on implementation of corrective actions fromassessments and incidents

-{PS..4}->Research security threats and attack vectors

-{PS..5}->Manage network forensics and incident response whenassigned

-{PS..6}->Assist other GIS staff on specific projects andincidents as required

-{PS..7}->Perform special security projects on an ad-hoc basis

-{PS..8}->Perform other duties as assigned



-{PS..9}->Universitydegree from an accredited college, university, or equivalent

-{PS..10}->Professional certification: minimum OSCP/ CREST CRT or equivalent, CREST CCT Inf/App or equivalent preferred

-{PS..11}->Experience inInformation Security and technical aspects thereof, CISSP certificationpreferred

-{PS..12}->Priorexperience with systems development, systems administration, or networkadministration, 5 years minimum preferred

-{PS..13}->Previous hands-on experience in penetration testing and vulnerabilityassessment required, 5 years minimum preferred

-{PS..14}->Previous experience of automated web application testing, infrastructuretesting, and manual exploitation testing required, 5 years minimum preferred

-{PS..15}->Knowledgeof Oracle internal systems and networks is an advantage

-{PS..16}->Knowledgeof web technologies and network communication methods

-{PS..17}->Familiaritywith general application and network security concepts

-{PS..18}->Knowledge of InformationSecurity standards and access controls such as ISO27001/2 and PCI DSS

-{PS..19}->Strong organizationalskills and detail-oriented, able to handle concurrent assignments

-{PS..20}->Strong presentation,written and verbal communication skills

-{PS..21}->Strong negotiationskills

-{PS..22}->Self-starter andself-sufficient, doesn t need to be micro-managed

-{PS..23}->Excellent teamplayer, willing to share knowledge and skills with peers

Job: *Product Development

Organization: *Oracle

Title: Principal Information Security Analyst (Penetration Tester)

Location: United States

Requisition ID: 17000Z28