Jump to content

Immediate Opening for Oracle data base security engineer


mounikaAA

Recommended Posts

Database Security Engineer

 

Security engineer for Oracle EBS application  stack who has base understanding of the architecture and security model of each component, with an ability to drill down, investigate, develop fix and tes

You should understand the principles behind configuration management tools, good coding skills that allow you to develop and test mitigations, consistently and efficiently.  

Tech skills

 

·         Proficient in (one or several of the following areas)

 

o    Pre packaged Application security (ERP, EBS preferable)

§  SQL/PLSQL injection (from Web/Forms) detection and analysis

§  Example area: Definer and invoker execution rights

§  DB & OS configuration changes impact analysis

§  Security Changes execution following strict/long change/testing cycles

o    DB/WebLogic/Apex hardening. e.g.

§  Cross site scripting

§  Cookies

o    Reverse Proxies setup for security filtering

o    General security concepts

§  Vulnerabilities analysis

§  Encryption

§  Secrets management (certificates, passwords, etc)

§  Auditing and logging (on OS, DB, Apps Levels

Specific components include:

WebLogic:  Security realms, authentication mechanisms, session management

 

EBS core: EBS permission model, AutoConfig, patching, responsibility assignment, SSO integration, passwords and changes

Java:  JSPs, indirect calls between JSPs, Java sandbox model, classpaths, JAR/WAR packaging

Database: SQL injection, Oracle permission model, PL/SQL security, TNS security/authentication, DB auditing

Linux:  file permissions, process permissions, auditd, security frameworks like SELinux/AppArmor/Grsecurity

Network:  ACLs, the TCP/IP protocol stack, tracing tools, VLANs, state management

Apex: security model, password management, SQL injection

Web services: load balancing, ***** servers, Apache mod_security, virtual hosts

 
 

Soft skills

 

Self driven team player

Take directions from Tech Leads and put execution plan together with minimal supervision.

can suggesting/implementing creative solutions

 Thanks & Regards

[email protected]

346-444-2663 Extn 414

 

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
×
  • Create New...