Employment Type: Full-Time
Industry: Information Technology
Loading some great jobs for you...
Lead a team that acts as the central resource and driving force for the design, process, manufacturing, test, quality and marketing of product(s) as they move from conception to distribution. Organize interdepartmental activities ensuring completion of the project/product on schedule and within budget.As a member of the product development division, you will specify, design and implement major changes to existing software architecture. Define project needs. Build and execute unit tests and unit test plans. Review integration and regression plans created by QA. Communicate with QA and porting engineering to ensure consistency, testability and portability across products in general.Provide leadership and expertise in the development of new products/services/processes, frequently operating at the leading edge of technology. Recommends and justifies major changes to existing products/services/processes. BS or MS degree or equivalent experience relevant to functional area. 8 or more years of software engineering or related experience.*Oracle is an Affirmative Action-Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability, protected veterans status, age, or any other characteristic protected by law.*We are looking for someone to join our team who will make a difference working with Oracle teams to keep Oracle's services, products, and projects secure. You will provide guidance and oversight: guidance to organizations in identifying and mitigating application security debt in the software that they are delivering in Oracle's agile, fast-moving, cloud and DevOps environments, and oversight by looking for sub-optimal application security trade-offs that might put Oracle's customers at risk.In your role you will have a large scope across development and consulting Lines of Business as you help organizations that are involved in deploying services and delivering software to our customers. You may need to work with a Senior Vice President or with a Security Lead for an organization of 4,000 employees or you might need to mentor a team's security specialist or review some code for security issues. Your work will have an impact on software security risk for Oracle and its customers.What we do:* We work directly with Oracle development, consulting, and support teams to help them better understand, pay attention to, and effectively and efficiently apply security assurance practices to the software they are designing, building, testing, and deploying and delivering.* We ask effective probing questions about the application security stance of a service or product or project.* We help teams as they put together programs/projects that move them in the right application security direction and then we monitor the success of those programs/projects.* We encourage teams that need encouragement, influence those that need influencing, prod those that need a nudge, and sometimes call teams on the carpet if all else fails.* We create security guidance when needed.* We work closely with newly acquired teams as they identify security debt and remediate it or mitigate it.* We basically try to do whatever needs to be done to get organizations to reduce the software security risk for Oracle's customers from the software that Oracle deploys and delivers.Don't let this list scare you but having a good number of the following kinds of experience or knowledge will help you be successful:* Having first hand software development experience resulting in both empathy for those attempting to create secure software as well as the experience to look past the surface to determine if security is being taken seriously.* Having sufficient application security assurance knowledge that will enable you to analyze existing gaps in security assurance processes or spot insecure code. Are you familiar with the types of issues in the OWASP Top 10? Can you ask effective probing questions that identify security issues? Can you spot insecure patterns in source code?* Knowledge of secure design, threat modeling, secure coding principles, and how to effectively test for secure software.* Experience having built successful security programs or security processes.* Experience with agile/scrum/lean methodologies and/or High Velocity/DevOps environments.* Experience in putting together effective application security guidance.* Experience with delivering consulting software projects.The following attributes will help you be effective:* Having a passion for making things more efficient, clearer, more measurable, more secure, more appropriate to the business risk, etc.* Being effective and creative at influencing people where your ability to influence can carry the day.* Being able to drill down and ask hard questions with a minimum of offense necessary.* Having the ability to communicate effectively in with your writing and by your speaking.* Being able to successfully work with a wide range of personality types across various organizational levels.* Being able to make tactical compromises to achieve strategic outcomes. When is something "good enough"?* Being flexible and comfortable rolling with the changes, i.e. you can adapt to changing business and security requirements.* Having a bias for action. Being willing to fail fast, learn, and then iterate.Who we are:We are within Oracle's Global Product Security organization reporting to Oracle's Chief Security Officer who in turn reports to the Chief Corporate Architect. Our organization's primary responsibility is ensuring that application security risk is dealt with appropriately by organizations across Oracle. We do this by maintaining standards and best practices for secure product development, deployment, and consulting, by helping teams successfully follow effective implementations of those standards and best practices, and by ensuring that those standards and practices are consistently applied throughout Oracle's development and consulting organizations. You can find out more here: **Product Development***Organization:** **Oracle***Title:** *Senior Principal Security Program Manager***Location:** *United States***Requisition ID:** *19001FO6***Other Locations:** *CA-Canada*
Associated topics: chief program officer, cpo, manage, manager, management, monitor, product manager, project manager, relationship manager, task
Loading some great jobs for you...