Oracle Cloud Security Engineer

Bright Vision Technologies is seeking an experienced Oracle Cloud Security Engineer to design, implement, and operate security controls across Oracle Cloud Infrastructure, Applications, and hybrid environments. The role involves defining security architecture, managing identity and access, leading vulnerability and compliance programs, and responding to security incidents.

Location: Remote (US)

Responsibilities

• Design and implement enterprise security architectures for OCI tenancies, including landing-zone guardrails, security zones, and compartment policies.
• Configure and operate OCI Identity Domains, federation with corporate IdPs, and strong RBAC strategies across the tenancy.
• Implement strong key management and secrets handling using OCI Vault, including key rotation and HSM integration where appropriate.
• Harden OCI compute, networking, and database workloads using CIS benchmarks, OCI Security Zones, and internal security standards.
• Operate OCI Cloud Guard for continuous detection and response, tuning detectors and remediating findings.
• Configure and operate OCI Logging, OCI Audit, and integration with SIEM platforms for centralized monitoring and forensics.
• Implement data security controls using OCI Data Safe, including data masking, sensitive data discovery, and privileged user analysis.
• Lead vulnerability management programs, including image scanning, patching, and remediation tracking.
• Drive compliance with regulatory frameworks such as PCI-DSS, HIPAA, SOC 2, ISO 27001, or FedRAMP.
• Conduct threat modeling and architecture reviews for new OCI workloads.
• Lead security incident response on OCI, including containment, investigation, and post-incident review.
• Develop security automation tooling using Python, Terraform, and OCI CLI/SDK.
• Maintain comprehensive, current technical documentation — including architecture diagrams, design decisions, configuration references, runbooks, and operational procedures — so that the system remains supportable, auditable, and easy to onboard new engineers onto over time.
• Provide mentorship and security guidance across application and infrastructure teams.

Requirements

• Bachelor’s degree in Cybersecurity, Computer Science, Engineering, or a related discipline.
• Five or more years of cloud security experience, with strong hands-on time on OCI.
• Deep experience with OCI Identity, IAM policies, and identity federation.
• Hands-on experience with OCI Cloud Guard, Security Zones, Vault, and Data Safe.
• Solid understanding of cloud-native security frameworks and CIS benchmarks.
• Experience with vulnerability management and patching tooling.
• Working knowledge of regulatory frameworks (PCI-DSS, HIPAA, SOC 2, ISO 27001).
• Strong scripting skills (Python, Bash) and Terraform.
• Experience integrating cloud workloads with SIEM platforms.
• Excellent troubleshooting, communication, and documentation skills.