Security Engineer - Oracle Cloud (OCI)
We're seeking an experienced Security Engineer to join a multi-disciplinary delivery team working across several concurrent cloud workstreams. This role combines hands-on engineering with advisory responsibilities, ensuring security is Embedded throughout the platform without slowing delivery.
This role is ideal for someone who can balance hands-on delivery with pragmatic security guidance, working collaboratively across teams to ensure secure and scalable outcomes.
The task and experience needed:
The primary focus will be on designing and implementing secure OCI tenancy configurations, both for new environments and existing platforms. You'll help establish robust, repeatable cloud foundations that enable scalable delivery across multiple workstreams.
This includes defining secure baselines across IAM, networking, and core platform controls, while enabling services such as logging, monitoring, and Oracle Kubernetes Engine (OKE). You'll also play a key role in identifying security gaps and ensuring pragmatic, delivery-focused improvements.
Need to have strong, hands-on experience with Oracle Cloud Infrastructure (OCI), particularly at the tenancy and foundational level. This includes designing compartments, implementing IAM policies and dynamic groups, and building secure networking architectures using VCNs, subnets, routing, and security controls.
Be comfortable establishing secure baseline configurations and applying security services such as Cloud Guard, Security Zones, Vault, and WAF where appropriate. Experience with Terraform (ideally Terraform Cloud) and working within GitHub-based workflows is essential, as is a solid understanding of core cloud security principles like least privilege, segmentation, and encryption.
Must have practical experience in logging and monitoring within OCI, including enabling logging services, defining retention strategies, and supporting audit and security visibility. Familiarity with integrating these into security operations-such as alerting and basic incident response-is important, along with working knowledge of Oracle Kubernetes Engine (OKE) and container security fundamentals.
Also, should be comfortable working in agile delivery environments and have some Scripting or automation capability (eg Python or Bash) to support efficiency and repeatability.