DescriptionDesign, develop, troubleshoot and debug software programs for databases, applications, tools, networks etc.
As a member of the software engineering division, you will take an active role in the definition and evolution of standard practices and procedures. Define specifications for significant new projects and specify, design and develop software according to those specifications. You will perform professional software development tasks associated with the developing, designing and debugging of software applications or operating systems.
Provide leadership and expertise in the development of new products/services/processes, frequently operating at the leading edge of technology. Recommends and justifies major changes to existing products/services/processes. BS or MS degree or equivalent experience relevant to functional area. 8 or more years of software engineering or related experience.
ResponsibilitiesCritical Hire: Senior Principal Security Engineer for server platform security architecture, design, and analysis of low-level firmware, and interactions with underlying server hardware, across Intel/AMD/Ampere CPU partners, 3rd party suppliers, and UEFI BIOS, ILOM Service Processor, and OS kernel/device driver scopes. This role requires Senior Principal Engineer Security skills, spanning Intel/AMD/ARM64 platform firmware/software (UEFI, chipset, BMC/ILOM, OS/device driver), coupled with architectural risk analysis expertise, and understanding of underlying hardware security capabilities. Knowledge of bare metal and virtualized deployments of major operating systems (including Oracle Linux, VMware, Windows) desired. Domain experience planning, preparing, and driving platform security reviews including Architectural Risk Analysis (ARAs) for servers, in areas of firmware and software design, interacting with x86 processor/chipset/hardware security. Works internally with OHD SPOCs (Security Point of Contact Engineers), with several Oracle hardware and security organizations, and externally with Oracle’s CPU vendors, suppliers, and security industry.
Summary
Oracle’s Hardware Development (OHD) team is seeking a Senior Principal Security Engineer, with a security background in x86 server platform architecture (CPU/chipset firmware and software), and experience with Intel/AMD/ARM64 processor and hardware platform security. The OHD team is responsible for design, development and delivery of secure server product offerings into OCI (Oracle Cloud Infrastructure) Fleet, Engineered Systems, and end customer environments. The successful candidate will work in a team-oriented environment to organize, drive, and facilitate platform firmware ARAs (Architectural Risk Analysis Reviews), participate in associated hardware security reviews, and manage responses to key security risks and vulnerabilities, across platform elements. Understanding of platform CPU, chipset, UEFI and BMC firmware, OS/device driver levels, and underlying hardware required. This role drives and completes Architectural Risk Analyses, participates in underlying hardware/schematic reviews of future products, as well as analysis of incoming CVE vulnerabilities - mitigating and resolving top internal and industry security issues, from discovery, through patch creation and delivery. The Senior Principal Engineer works cross-functionally across OHD, internally with key Oracle security groups, and externally with key Oracle suppliers, to co-ordinate Oracle patching, messaging and mitigations. These are exciting times in Oracle's OCI and Engineered Systems development space where an individual can have a significant impact on Oracle's offerings, and an abundance of opportunities to innovate.
Key Qualifications:
- BS, MS or PhD in Electrical Engineering, Computer Engineering, Computer Science or equivalent practical experience
- Detailed understanding of state-of-the-art security principles, theories, attacks and threat modeling methodologies: assets, security vulnerabilities and attack profile, threats mitigations etc.
- Knowledge of security technologies: authentication, applied cryptography, secure protocols, hardware security capabilities of existing fleet
- Experience technically analyzing threats and vulnerabilities, and determining priorities
- Knowledge of server platform UEFI and embedded firmware (UEFI, BMC) and security features (TPM, Secure Boot, TXT, ROT)
- Knowledge of at least one of Intel/AMD/ARM64 computer architectures and low level chipset programming (CPU/chipset logic, firmware, and ingredients), and hardware bus architectures
- Embedded firmware development skills (c, assembly, python)
Core Responsibilities:
- Main responsibilities include organizing and driving OHD Platform Software ARAs (Architectural Risk Analysis), software and firmware design and code reviews, and assisting with underlying hardware security reviews of new products
- Identifying, analyzing, and assisting with mitigation of Intel/AMD/ARM64 platform security CVEs/vulnerabilities in current products
- Senior Principal Security Engineer responsibilities to enhance and evolve the security posture of OHD, and security development, test, and release processes
- Partnering with Platform Security Architects and Managers to drive threats and vulnerabilities to closure
Related Responsibilities:
- Participates in evolution of OHD Security Development Lifecycle of our products
- Collaborates across functional teams (HW, Diagnostics, UEFI, BMC, OS, QA, Devops) in the assurance and evolution of product and process security
