SOC Analyst

Description

US Citizenship is required for this role. Behind every mission-critical Cloud service at Oracle is a sophisticated SaaS architecture supporting the largest companies in the world, employing the most advanced software engineering. We are proud to support those services and team with customers who depend on them, continually innovating and challenging the status quo. Our team environment is progressive, flexible, professionally challenging, rewarding, and fun.

We are looking for experienced security analysts to join our efforts in reshaping the cloud services landscape across industry verticals to revolutionize the delivery of Cloud Services to the world’s most critical organizations. The SaaS Cloud Security (SCS) organization is responsible for securing enterprise-grade software services on behalf of our 25,000 customers, processing over 60 billion transactions per day.

We maintain a team of security analysts in the US that can work across 24x7x365 shifts to carry out activities in the areas of monitoring, detection, and response to protect the Oracle SaaS environment. The team collectively covers the breadth and depth of: monitoring for Indicators of Compromise, staying up to date with latest industry trends and Threat Intelligence, and escalating identified incidents for attack remediation, evidence collection, and forensics efforts. The ideal candidate will also have experience with automating SOC workflows and using AI and automation tools to perform cybersecurity procedures.

Responsibilities/Tasks

• Collectively cover 24x7x365 shifts for the continued monitoring of the Oracle SaaS security posture.
• Ensure the confidentiality, availability, and integrity of Oracle Cloud data and systems.
• Respect and protect customer data.
• Monitor security controls to detect and prevent infiltration of company systems and exfiltration of company data by adversaries.
• Correlate data from disparate log sources to determine a baseline and generate alerts based on behavior-based indicators.
• Provide management with monitoring reports and trend analysis.
• Triage security events and determine whether they must be escalated to the SCS Detection and Response Team.
• Support incident response efforts as an Oracle Cloud SOC Analyst through the monitoring of system events, utilization of security tools, and application of SOC policies and procedures.
• Provide excellent customer service to Oracle Cloud Operations teams reporting policy violations, potential incidents, and requesting security solution support.
• Automate SOC workflows using a variety of tools.
• Perform other duties as assigned.

Desired Qualifications

• University degree preferred, not required.
• Prefer to meet DoD 8140 Cyber Defense Analyst qualifications.
• Experience in information security and technical aspects.
• Two or more years of experience in utilizing enterprise security solutions including but not limited to SIEM, security detection and response tools, and endpoint security products.
• Ability to analyze attacker tactics, techniques, and procedures (TTPs).
• Strong log analysis, deduction, analytical, and problem-solving skills.
• Self-starter and self-sufficient, doesn’t need to be micro-managed.
• Excellent team player, willing to share knowledge and skills with peers.
• Knowledge of Information Security standards and access controls such as ISO27001/2, PCI DSS, and other international standards.
• Possess the ability to adjust and adapt to changing priorities in a dynamic environment.
• Strong technical experience with Linux or similar Unix platforms (Oracle Linux, CentOS, RHEL, Solaris, BSD), macOS, and Windows.
• At least 2 years experience as a network analyst or systems administrator.
• Experience with automating SOC workflows using a SOAR tool or scripts.
• Strong knowledge of Oracle systems and software.
• Strong organizational skills and detail-orientation essential.
• Strong presentation, written and verbal communication skills.
• Knowledge of virtualization and scripting.
• Hold or ability to obtain TS/SCI clearance for Critical-Sensitive Positions; FS Poly clearance highly desirable.

About Us

Only Oracle brings together the data, infrastructure, applications, and expertise to power everything from industry innovations to life-saving care. And with AI embedded across our products and services, we help customers turn that promise into a better future for all. Discover your potential at a company leading the way in AI and cloud solutions that impact billions of lives.

True innovation starts when everyone is empowered to contribute. That’s why we’re committed to growing a workforce that promotes opportunities for all with competitive benefits that support our people with flexible medical, life insurance, and retirement options. We also encourage employees to give back to their communities through our volunteer programs.

We’re committed to including people with disabilities at all stages of the employment process. If you require accessibility assistance or accommodation for a disability at any point, let us know by emailing accommodation-request_mb@oracle.com or by calling 1-888-404-2494 in the United States.

Oracle is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans’ status, or any other characteristic protected by law. Oracle will consider for employment qualified applicants with arrest and conviction records pursuant to applicable law.

Key skills/competency

• Security Monitoring
• Incident Response
• Log Analysis
• Threat Intelligence
• SOC Automation
• Cloud Security
• SIEM
• SOAR
• Linux Administration
• Network Security