Security Vulnerability Management Engineer

Job description

**Job Description**



**Description**

**Who are we?**

Oracle Analytics is a key contributor in delivering industry-leading cloud solutions to organizations worldwide.

The Service Excellence team is dedicated to enabling secure, scalable, and reliable cloud services—driving transformation through technology innovation and operational excellence.



We blend cutting-edge cloud technologies, process automation, and security-first methodologies to ensure our customers’ data and operations remain safe and compliant.

Our team empowers the proactive management of security risks and fosters a culture of continuous security improvement across Oracle’s cloud offerings.



**Position Overview:**

Join a fast-paced and growing organization as part of the core security team dedicated to cloud vulnerability management.

You will play a pivotal role in overseeing the end-to-end process of vulnerability detection, risk assessment, remediation tracking, and process automation.

Through your leadership and technical skills, you’ll drive timeliness, transparency, and continuous improvement in reducing security risk.



**Responsibilities**



**Role & Responsibilities**

We are seeking a hands-on Security Engineer to own and coordinate the vulnerability management process across our cloud platforms.

This key role entails:



+ Daily monitoring, validation, and tracking of identified vulnerabilities to maintain accurate visibility of open, overdue, and new issues.



+ Collaborating with development and service teams to prioritize and drive timely remediation of vulnerabilities, removing barriers and escalating as needed to meet compliance goals.



+ Acting as an escalation point for remediation challenges and liaising with external technical or infrastructure teams as appropriate.



+ Delivering comprehensive, periodic progress reports and metrics that clearly communicate remediation status, remediation trends, blockers, and actions being taken.



+ Independently identifying risks and proposing effective solutions to resolve blockers and improve processes.



+ Leveraging AI, automation and scripting skills to develop or enhance tools that streamline vulnerability management, tracking, reporting, and pattern analysis.



+ Facilitating knowledge-sharing sessions with development teams to promote best practices and share lessons learned.



+ Continuously enhancing the vulnerability management process through innovation and operational improvements.



**General Qualifications**

The candidate should have knowledge and experience with:



+ Vulnerability management in cloud or distributed environments (e.g., OCI, AWS, Azure, GCP).



+ Vulnerability scanning tools, security operations workflows, and issue-tracking systems such as Jira.



+ Scripting and automation (preferably in Python, Bash, or similar languages).



+ Agile methodologies and collaboration with global, cross-functional teams.



+ Communicating risk and urgency to both technical and executive-level stakeholders.



+ Generating clear documentation and regular written reports.



**Preferred Qualifications**



+ Experience in information security, vulnerability management, or application/cloud security roles.



+ Familiarity with industry-standard vulnerability assessment and scanning tools.



+ Track record of driving remediation efforts from identification through closure.



+ Analytical skills to identify trends and inform prioritization.



+ Strong facilitation, negotiation, and collaborative skills.



+ Demonstrated experience with automation or DevSecOps practices.



+ Understanding cloud service architectures and security controls.



+ Top 3 abilities / technologies in the ideal candidate:



+ Proven track record managing comprehensive vulnerability management processes in cloud environments



+ Automation and reporting expertise to streamline management and communicate progress effectively



+ Strong proactive ownership, escalation skills, and results-driven collaboration



**Responsibilities**



+ Accountable for planning, executing, and refining vulnerability management processes and tooling for cloud platforms.



+ Oversees the daily tracking, remediation, escalation, and closure of security vulnerabilities in alignment with corporate security policies and SLAs.



+ Serves as the primary contact for vulnerability management escalations and cross-functional collaboration.



+ Facilitates team knowledge sharing and remediation workshops; drives continuous improvement and automation initiatives.



+ Delivers regular progress updates and data-driven metrics to security leadership; takes ownership of resolving blockers and ensures timely remediation.



Career Level - IC4



**About Us**



As a world leader in cloud solutions, Oracle uses tomorrow’s technology to tackle today’s challenges.

We’ve partnered with industry-leaders in almost every sector—and continue to thrive after 40+ years of change by operating with integrity.



We know that true innovation starts when everyone is empowered to contribute.

That’s why we’re committed to growing an inclusive workforce that promotes opportunities for all.



Oracle careers open the door to global opportunities where work-life balance flourishes.

We offer competitive benefits based on parity and consistency and support our people with flexible medical, life insurance, and retirement options.

We also encourage employees to give back to their communities through our volunteer programs.



We’re committed to including people with disabilities at all stages of the employment process.

If you require accessibility assistance or accommodation for a disability at any point, let us know by emailing accommodation-request_mb@oracle.com or by calling +1 888 404 2494 in the United States.



Oracle is an Equal Employment Opportunity Employer.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans’ status, or any other characteristic protected by law.

Oracle will consider for employment qualified applicants with arrest and conviction records pursuant to applicable law.

Required Skill Profession

Other General