Principal Information Security Analyst (Penetration Tester)

Principal Information Security Analyst (Penetration Tester)

Oracle Corporation Asia Pacific Division
Kuala Lumpur Singapore
5 - 15 Years
Not Specified

Job Description

Team Introduction

Are you interested in assuring the security of Oracle’s current and next generation Cloud services Does the prospect of conducting penetration tests across the entire estate of a global corporation excite you Do you want to join a growing team within an evolving security/ risk landscape
Our team is tasked with delivering a global penetration testing program that covers every line of business within Oracle. As Oracle grows with new acquisitions, so we are growing and adapting to cover new estates and technologies within our program. Our goal is to ensure that Oracle is well positioned to face current and emerging threats to itself and its hosted customer data from any source.
We are looking for experienced hackers and pentesters with the enthusiasm and motivation to develop themselves further and join us in pushing our global team’s capabilities to a new level. A track record of self-education and an ability to adapt comfortably to change is necessary, and will be supported by a formal training plan. The successful candidate will find themselves in a very supportive team of equal peers and will contribute fully to our pentesting platforms, tooling and evolving comprehensive methodologies.
This is an exciting opportunity to join a motivated team delivering a global penetration testing program.
RESPONSIBILITIES/ TASKS

 Perform application-layer penetration testing against Corporate and customer software applications and webservices deployed globally
 Conduct network and server layer penetration testing against Corporate Internet-facing and internal systems
 Document technical issues identified during security assessments and incidents, and author formal reports
 Participate in Red Team exercises directed against Oracle Lines Of Business world-wide
 Follow up on implementation of corrective actions from assessments and incidents
 Research security threats and attack vectors
 Manage network forensics and incident response when assigned
 Assist other GIS staff on specific projects and incidents as required
 Perform special security projects on an ad-hoc basis
 Perform other duties as assigned
QUALIFICATIONS
Required qualifications

 It will be an advantage if the candidate holds or is prepared to gain US Security Clearance: Oracle's commercial background investigation, plus NACLC and be willing to obtain MBI or SSBI as needed
 University degree from an accredited college, university, or equivalent
 Professional certification: minimum OSCP/ CREST CRT or equivalent, OSCE welcome, CREST CCT Inf/App or equivalent preferred
 Experience in Information Security and technical aspects thereof, CISSP certification preferred
 Prior experience with systems development, systems administration, or network administration, 5 years minimum preferred
 Previous hands-on experience in penetration testing and vulnerability assessment required, 5 years minimum preferred
 Previous experience of automated web application testing, infrastructure testing, and manual exploitation testing required, 5 years minimum preferred
 Scripting/ programming experience (BASH, PowerShell, Python, C, Assembler) is an advantage
 Knowledge of web technologies and network communication methods
 Familiarity with general application and network security concepts
 Knowledge of Information Security standards and access controls such as ISO27001/2 and PCI DSS
 Strong organizational skills and detail-oriented, able to handle concurrent assignments
 Strong presentation, written and verbal communication skills in English
 Strong negotiation skills
 Self-starter and self-sufficient, doesn’t need to be micro-managed
 Excellent team player, willing to share knowledge and skills with peers

Oracle Corporation is the world's leading supplier of software for information management and the world's second largest independent software company. With annual revenues of more than $10.0 billion, the company offers its database, tools and application products, along with related consulting, education and support services, in more than 145 countries around the world.

About Recruiter

21

Followers

Functions : IT

Industries : IT/Computers - Hardware, IT/Computers - Software

Skills/Roles I hire for: Sales

level Hiring For: Mid Level, High Level

Similar Jobs

Career Advice to Find Better