Company Overview

Oracle Corporation is a global leader in enterprise cloud computing, delivering innovative solutions that power modern businesses worldwide. With a commitment to security at the core of our offerings, we protect mission-critical data and applications for thousands of customers. Join us in Romania to contribute to cutting-edge technologies that drive the future of secure cloud infrastructure.

Position Overview

We are seeking an advanced Offensive Security Engineer to join our elite security team in Romania, focused on proactively identifying and exploiting critical vulnerabilities in Oracle's cloud and enterprise products. In this role, you will simulate real-world attacks to uncover weaknesses, drive remediation efforts, and enhance our overall security posture. This position offers the opportunity to work on high-impact projects using state-of-the-art tools and methodologies in a collaborative, innovative environment.

Key Responsibilities

• Conduct advanced penetration testing on Oracle cloud services, applications, and infrastructure to identify exploitable vulnerabilities.
• Develop and execute custom exploitation techniques for web applications, APIs, and network services.
• Simulate sophisticated attack scenarios, including privilege escalation, lateral movement, and persistence mechanisms.
• Author detailed reports documenting vulnerabilities, exploitation paths, and recommended mitigations for engineering teams.
• Collaborate with product security and development teams to validate findings and prioritize remediation efforts.
• Contribute to red team exercises, participating in full-scope offensive operations against simulated production environments.
• Research emerging threats and attack vectors, integrating findings into Oracle's security testing frameworks.
• Maintain and enhance offensive security toolkits, including custom scripts and automation for repeatable assessments.
• Mentor junior team members on advanced offensive techniques and best practices in ethical hacking.
• Stay abreast of industry standards and contribute to Oracle's internal security policies and procedures.

Required Qualifications

• Bachelor's degree in Computer Science, Cybersecurity, or a related field, or equivalent practical experience.
• 5+ years of hands-on experience in offensive security, penetration testing, or red team operations.
• Proven track record of discovering and exploiting critical vulnerabilities (CVSS 7.0+), with public disclosures or bug bounty successes preferred.
• Deep expertise in web application security testing using tools like Burp Suite, OWASP ZAP, and custom scripts.
• Strong proficiency in scripting languages such as Python, Bash, or PowerShell for exploit development and automation.
• Experience with network penetration testing methodologies and tools like Nmap, Metasploit, and Cobalt Strike.
• Hold relevant certifications such as OSCP, OSWE, OSEP, or equivalent.
• Excellent English communication skills, with the ability to articulate complex technical findings clearly.

Preferred Qualifications

• Experience in cloud security testing for platforms like OCI, AWS, or Azure.
• Knowledge of Oracle database security, middleware, or enterprise applications.
• Advanced exploit development skills, including buffer overflows and kernel exploits.
• Contributions to open-source security tools or participation in CTF competitions.
• Familiarity with reverse engineering tools like Ghidra, IDA Pro, or Radare2.

What We Offer

• Competitive salary and performance-based bonuses tailored to Romanian market standards.
• Comprehensive health, dental, and vision insurance with family coverage options.
• Flexible hybrid work model with modern office facilities in Romania.
• Generous paid time off, including 25+ vacation days and parental leave.
• Professional development budget for certifications, conferences, and training (e.g., OSCP renewals).
• Stock purchase plan and employee stock options as part of Oracle's equity program.

About the Team

Our Offensive Security team in Romania is a dynamic group of elite hackers and security researchers dedicated to pushing the boundaries of what's possible in vulnerability discovery. We collaborate closely with global Oracle security organizations, fostering a culture of knowledge sharing and innovation. You'll work alongside top talent in a supportive environment that values creativity, technical excellence, and real-world impact.