Description
You will lead security testing strategies and implement automated security solutions within Oracle Cloud Infrastructure environments.
Responsibilities
- Define security testing strategies and select appropriate tools and technologies for implementation.
- Validate cloud security architecture across OCI, AWS, Azure, and GCP environments.
- Manage penetration testing projects covering web, mobile, APIs, and thick client applications.
- Set up SAST, SCA, and DAST solutions as part of a DevSecOps pipeline.
- Conduct security audits for application, cloud, and network security, including false positive/negative analysis.
- Collaborate with development and InfoSec teams to identify requirements and implement security solutions.
Required Skills
- 10+ years of experience in cyber security testing.
- Mandatory experience with Oracle Cloud Infrastructure (OCI) security.
- Expertise in Application Security Testing and automated DevSecOps security testing.
- Proficiency in programming languages such as Java, C#, or Python.
- Experience with containerization and orchestration using Docker and Kubernetes.
- Knowledge of Infrastructure-as-Code tools like Terraform, Chef, or Ansible.
- Experience conducting internal and external network penetration testing.
- Familiarity with compliance frameworks including ISO 27001, GDPR, and PCI DSS.
- Experience with security tools like Prisma Cloud and Nexpose.
Preferred Skills
- Cloud certifications such as OCI Security Professional, AWS Certified Security Specialty, or Azure AZ-500.
- Security certifications including OSCP, OSCE, CREST, or CISSP.