Director, Security Assessments

Director, Security Assessments

This role is for a hands-on Director to drive a Security Assessments and testing efforts for Oracle's suite of public cloud services. We're looking for someone with expertise in leading a group of security engineers that operate in a distributed, multi-tenant service infrastructure. If you have a understanding of penetration testing methodologies, a solid foundation in cloud concepts, and are passionate about hunting bugs, this is probably a great role for you.

Oracle Cloud Infrastructure (OCI) provides Infrastructure-as-a-Service.  We operate distributed systems at a high scale, worldwide. These are the foundation of our cloud environment.  Our customers run their businesses on our cloud, and our mission is to provide them with a best-in-class and ever-expanding set of cloud-based services.

Within OCI, the Offensive Security group conducts security assessments, hardware security research, and operates our red team. We ensure the security of software and hardware that run our cloud infrastructure, and strive to continuously improve our security stance.  The OCI Offensive Security group works as a team.  We don't try to fit people into predefined roles.  We bring together the right people who can enhance the capability of the team, and build roles around the person's skills and interests.

These are exciting times in our space.  We are growing fast, still at an early stage and working on ambitious new initiatives. A security-focused engineer at any level can have significant technical and business impact.  Come shape the future of one of the largest clouds on earth with us.  


Our ideal candidate is passionate leader about security and furthering their knowledge every day as well as their team.   We hope you like working at scale as much as we do much as we do, because Oracle has no shortage of it. 

This role will involve the following areas of responsibility alongside a dedicated team and knowledgeable leadership core:

  • Leading a diverse set of personalities and talent

  • Understanding the importance of a healthy and supportive team culture

  • Manage and lead the performance of technical cybersecurity assessments, including: 

    • network penetration testing

    • red teaming

    • web application tests, and

    • vulnerability assessments.

  • Effectively communicate to anyone in the organization, from the most technical operator to the least technical business partner

  • Demonstrate proficiency with the common tools associated with penetration testing (e.g. burp, nmap, etc)

  • Demonstrate solid understanding of distributed networks, major operating systems and their associated peripherals

  • Demonstrate and socialize knowledge of tactics, techniques, and procedures associated with malicious insider activity, organized crime/fraud groups and both state and non-state sponsored threat actors.

This Director must be able to critically examine an organization and system through the perspective of a threat actor and articulate risks in clear, precise terms.

Our ideal candidate has previous experience working in the cloud industry and is excited to train, coach, and supervise a team of scary smart hackers.

Oracle is an equal opportunity employer.  OCI empowers a diverse team, and we strive to involve as many perspectives as possible in our innovation process.  All applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans status or any other characteristic other than merit.


To apply, please submit your info to Adam Russell and Christel Gonzalez via <adam(dot)russell(at) oracle(dot)com>/<christel(dot)gonzalez(at)oracle(dot)com>.  

Interested applicants can also apply directly to”