FirstBank Jobs

Job Description

SaaS Security Testing Services team is looking for Security Testing and Tools Engineers with various degree of experience in AppSec/Product Security field in Oracle India Development Center under the Oracle SaaS Cloud Security (SCS) organization. Oracle SaaS a.k.a. Oracle Cloud applications, built on machine learning, offer the most complete application suite with the best technology, enabling fast innovation with a modern UX and customer-first approach and one of the top strategic cloud services for Oracle. The SCS organization is responsible for securing enterprise-grade software services on behalf of our 25,000 customers, processing over 60 billion transactions per day. You will get the opportunity to join our efforts to reshape not only future of security testing and automation for Fusion App SaaS Services at Oracle – but influence the security testing landscape across all the SaaS offerings.

We are seeking hands-on, senior security analyst with the depth and breadth to evaluate complex web applications and technology stacks for security and build/code to address the security threats. You will have the opportunity to work in a cloud-scale environment using the latest security technologies/tools and collaborate with the best minds in the industry, to collectively stay ahead and respond to growing threats to cloud services. SaaS STS team will optimally engage in conducting white box/grey box application security testing - complementing what the development teams do in a more integrated and more coordinated setting through the security automation and tooling. SaaS STS team responsibilities will include implementation of Static Code Analysis, Dynamic App Security Testing/Fuzz Testing, Interactive / manual App security testing, facilitate automation of security verifications in CI/CD pipeline and evidence capturing for compliance audits.

This position requires technical security knowledge and Cloud/DevSecOps or product development experience.

Career Level - IC3

Responsibilities

Job Requirements:

· BS or MS degree in computer science, or equivalent

· 3+ years of software engineering and technical leadership with proven results in software development, appsec and pen-testing

· Detailed exposure to web application pen test, forensics and intrusion handling

The ideal candidate will have the following skills:

· Experience in product development or Security QA or penetration testing of Enterprise software, SaaS, IaaS or PaaS cloud services preferred

· Web application pen test, intrusion detection, vulnerability assessment

· Proficiency with Java, RESTful API, micro-services, Python.

· Experience in file system and operating system security analysis and attack vector detection

· Experience in database encryption – methods and implementation, DB fuzzing and DB pen test

· Hands-on expertise on pen-testing of cloud applications and related infrastructure

· Understanding exploit mechanisms using CVEs for web services and microservices

· Should have worked on industry standard tools for security – BURP, Web Inspect, Qualys, Nessus, REST API fuzzer, SAST tools etc.

· Ability to work in an agile and continuous software integration model.

· Security certifications like OSCP, LPT, ECSA, CISSP would be an added advantage

Key Responsibilities

· You will work with Oracle Fusion Apps and other SaaS Services development teams to identify gaps in security testing and implement scalable solutions to improve security testing

· You will perform appsec and pen-testing of Oracle SaaS applications and infrastructure.

· You will implement automated security processes and security tooling in CI/CD pipeline.

· You will work with development teams and provide remediation mentorship to address any security findings

· You will evaluate and deploy new security tools and technologies to handle constantly evolving security threats landscape and support hyper-scale SaaS growth.

About Us

As a world leader in cloud solutions, Oracle uses tomorrow’s technology to tackle today’s problems. True innovation starts with diverse perspectives and various abilities and backgrounds.

When everyone’s voice is heard, we’re inspired to go beyond what’s been done before. It’s why we’re committed to expanding our inclusive workforce that promotes diverse insights and perspectives.

We’ve partnered with industry-leaders in almost every sector—and continue to thrive after 40+ years of change by operating with integrity.

Oracle careers open the door to global opportunities where work-life balance flourishes. We offer a highly competitive suite of employee benefits designed on the principles of parity and consistency. We put our people first with flexible medical, life insurance and retirement options. We also encourage employees to give back to their communities through our volunteer programs.

We’re committed to including people with disabilities at all stages of the employment process. If you require accessibility assistance or accommodation for a disability at any point, let us know by calling +1 888 404 2494, option one.

Disclaimer:

Oracle is an Equal Employment Opportunity Employer*. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans’ status, or any other characteristic protected by law. Oracle will consider for employment qualified applicants with arrest and conviction records pursuant to applicable law.

* Which includes being a United States Affirmative Action Employer