Oracle Principal Information Security Analyst (Penetration Tester) in Singapore, Singapore

Principal Information Security Analyst (Penetration Tester)

Preferred Qualifications

GENERALDESCRIPTION AND POSITION GOAL

The primary responsibility of this position is to

conduct security compliance assessments and penetration tests, follow up

remediation of identified vulnerabilities, participate in incident response and

proactively research future threats.

RESPONSIBILITIES/TASKS

  • Perform application-layer penetration testing againstCorporate and customer software applications and webservices

  • Conduct network and server layer penetration testingagainst Corporate Internet-facing and internal systems

  • Document technical issues identified during securityassessments and incidents, and author formal reports

  • Follow up on implementation of corrective actions fromassessments and incidents

  • Research security threats and attack vectors

  • Manage network forensics and incident response whenassigned

  • Assist other GIS staff on specific projects andincidents as required

  • Perform special security projects on an ad-hoc basis

  • Perform other duties as assigned

QUALIFICATIONS

Required

qualifications

  • Universitydegree from an accredited college, university, or equivalent

  • Professional certification: minimum OSCP/ CREST CRTor equivalent, CREST CCT Inf/App orequivalent preferred

  • Experiencein Information Security and technical aspects thereof, CISSP certificationpreferred

  • Priorexperience with systems development, systems administration, or networkadministration, 5 years minimum preferred

  • Previous hands-on experience in penetration testingand vulnerability assessment required, 5 years minimum preferred

  • Previous experience of automated web applicationtesting, infrastructure testing, and manual exploitation testing required, 5years minimum preferred

  • Knowledgeof Oracle internal systems and networks is an advantage

  • Knowledgeof web technologies and network communication methods

  • Familiaritywith general application and network security concepts

  • Knowledge of InformationSecurity standards and access controls such as ISO27001/2 and PCI DSS

  • Strongorganizational skills and detail-oriented, able to handle concurrentassignments

  • Strongpresentation, written and verbal communication skills

  • Strongnegotiation skills

  • Self-starterand self-sufficient, doesn’t need to be micro-managed

  • Excellentteam player, willing to share knowledge and skills with peers

Detailed Description and Job Requirements

Design, develop, troubleshoot and debug software programs for databases, applications, tools, networks etc.

As a member of the software engineering division, you will take an active role in the definition and evolution of standard practices and procedures. You will be responsible for defining and developing software for tasks associated with the developing, designing and debugging of software applications or operating systems.

Work is non-routine and very complex, involving the application of advanced technical/business skills in area of specialization. Leading contributor individually and as a team member, providing direction and mentoring to others. BS or MS degree or equivalent experience relevant to functional area. 7 years of software engineering or related experience.

Job: Product Development

Location: SG-Singapore

Other Locations: IN-IN,India-Bangalore, CN-CN,China-Shanghai, CN-CN,China-Beijing

Job Type: Regular Employee Hire

Organization: Oracle