Oracle Software Developer 4 in Burlington, Massachusetts
Design, develop, troubleshoot and debug software programs for databases, applications, tools, networks etc.
As a member of the software engineering division, you will take an active role in the definition and evolution of standard practices and procedures. You will be responsible for defining and developing software for tasks associated with the developing, designing and debugging of software applications or operating systems.
Work is non-routine and very complex, involving the application of advanced technical/business skills in area of specialization. Leading contributor individually and as a team member, providing direction and mentoring to others. BS or MS degree or equivalent experience relevant to functional area. 7 years of software engineering or related experience.
Oracle is an Affirmative Action-Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability, protected veterans status, age, or any other characteristic protected by law.
We are looking for experienced hands-on engineers for delivering a new Authorization Service for our next generation cloud native applications platform running in Oracle Cloud Infrastructure (OCI). We are aiming to address the needs of functional and data security for apps teams built around policy management and policy runtime services on top of a microservice based new application framework using Helidon.
In particular we are looking for hands on engineers to implement an Authorization service with policy management capabilities, a performant runtime, a dedicated policy language design and optimization, scaling and distribution in a cloud native environment for these services to rely on. This position will require understanding of current state of the art security technologies, and a deep understanding of security vulnerabilities and counter measures.
The responsibilities will include one or more of the following:
identity management system integration
DSL design and development for a policy language and extensions, its runtime environment and evaluation engine. The extensions of policy definition language and its runtime may be specific to application entities and resources, and grants for application entities, optimizing to serve multiple apps.
The design and development of database storage, retrieval and customization of application policies to support the policy definition language.
REST based API design and implementation for management of policy stores
REST based API design and implementation of a customization API for end user.
Understanding of business object models and how metadata relates to data level security policy expressions for applications.
The life cycle management APIs/CLIs for application teams to create, deploy, upgrade and version policies within the authorization engine and their distribution, including revoking grants in multiple systems.
Tracing and logging support for runtime policy evaluation.
Provide tooling to aid in migration from an existing system to the new system.
BS in Computer Science, Math, related technical field or equivalent practical experience, x years
Having developed projects using GoLang preferred, or willing to invest to become an expert in GoLang development. Java expertise is a must.
Knowledge of Identity and Access management standards
o Protocols such as OAuth, OpenID Connect and SAML
o Integration of identity management systems with authorization engines, sharing of users, roles, policies that span multiple systems.
Knowledge of AAA (authentication, authorization and audit) concepts, in particular RBAC, ABAC and policy based access control models
Experience in developing DSL (domain specific languages), their compilation and runtime optimization for developing a policy definition and evaluation language and an experience or interest in policy definition languages and relationship to business object metadata
Knowledge of data base design for storage and retrieval of security and application policies, its optimization and secure access.
Familiarity with open source tools and integration
Knowledge of cloud architecture life cycle methods, such as Docker containers, Kubernetes, segregation of containers, extending Kubernetes monitors and service mesh configuration and management
Knowledge or exposure to Istio, OPA, Casbin, Speedle and other common application security policy enforcement facilities for micro-services-based SaaS products.
Knowledge of API Gateways and API gateway-based security enforcement architecture.
Knowledge of Cloud deployment security, security lifecycle and operations practices
Job: *Product Development
Title: Software Developer 4
Location: United States
Requisition ID: 200014N7
- Oracle Jobs