Oracle NetSuite Principal Security Engineer, Threat and Vulnerability Management

As part of OracleNetSuite's Threat and Vulnerability Management Team, the Principal Security Engineer plays a crucial role in the identification, analysis, reporting, and remediation of security vulnerabilities across several NSGBU product lines.

Responsibilities:

• Continuously monitor emerging threats and vulnerability disclosures
• Analyze and prioritize vulnerabilities based on risk and potential impact
• Document findings and risks in executive summaries
• Collaborate with engineering and operations teams on remediation strategies
• Lead integration of automated vulnerability scanning and management tools
• Provide guidance and mentorship to junior security engineers and analysts
• Create and present reports on vulnerability status, trends, and metrics
• Develop templates, procedures, and guidelines for vulnerability management

Qualifications:

• Bachelor's degree in Computer Science, Information Security, or related field
• 8+ years of experience in information security or security assurance/compliance
• Expertise in vulnerability assessment tools and issue tracking tools
• Strong knowledge of technology and security topics
• Understanding of security frameworks (NIST, OWASP)
• Knowledge of industry and regulatory requirements (PCI, ISO)
• Familiarity with scripting languages for automation
• Strong analytical and problem-solving skills
• Excellent communication and interpersonal skills
• Highly self-motivated and directed
• Ability to travel 10% of the time

Note: This position will be located at our Austin, TX Headquarters. This is a flex position requiring 3 days a week in office. There is NO sponsorship for this role.