FocusKPI is looking for an OCI Security and Infrastructure Consultant to join one of our clients, a high-tech SaaS company.
Work Location: Remote - anywhere in the US
Duration: 12-month contract
Pay Range: $70/hr to $81/hr

Qualifications:

• 5+ years of experience in cybersecurity or related engineering roles.
• 3+ years hands-on experience specifically with Oracle Cloud Infrastructure (OCI).
• Experience working with security tools like Teleport, CrowdStrike EDR, Tenable, SIEM, etc
• Strong understanding of OCI networking, IAM, compartments, security lists, and resource management.
• Experience with OCI-native security services (e.g., Cloud Guard, Security Zones, Logging, Vault).
• Proficiency in infrastructure-as-code tools (Terraform preferred).
• Experience in Ansible Automation Platform or other configuration management tooling.
• Solid understanding of security best practices, including least privilege access, encryption, system hardening, vulnerability management, and key management.
• Familiarity with compliance requirements (e.g., ISO 27001, SOC 2, HIPAA) as they apply to OCI.
• Experience supporting production-grade workloads in a cloud environment.
• Scripting knowledge (e.g., Bash, Python) for automation and monitoring

Preferred Qualifications:

• OCI Certified Architect or OCI Certified Security Professional.
• Prior experience integrating OCI with SIEM tools (e.g., Splunk, QRadar).
• Experience working in hybrid environments (on-prem + OCI).
• Experience with Monitoring and Alert tools (Pref: Datadog)
• Experience with logging pipelines and log manipulation (Pref: Cribl Stream)
• Experience with GitHub and GitHub Actions CI/CD and DevSecOps processes and tooling.
• Experience with AWS Networking and multi-cloud connectivity is a bonus

• Configure and maintain OCI infrastructure components, including compute, networking (VCNs, subnets, gateways), storage, and load balancers.
• Design, deploy, and maintain multi‑cloud networking (Egress and Workload VCNs, firewall/NAT gateways, AWS transit), enforcing traffic‑control policies.
• Implement and manage OCI Identity and Access Management (IAM) policies, compartments, dynamic groups, and federation.
• Harden OCI infrastructure according to CIS Benchmarks and cloud security best practices.
• Apply security patches and manage updates across OCI-hosted applications and services.
• Design and operate an end‑to‑end monitoring, alerting, and reliability stack (Datadog, OCI Metrics, PagerDuty) with SLO/SLA tracking and cost optimization.
• Monitor and respond to security alerts and events from OCI tools like Cloud Guard, Logging, and Security Zones.
• Build and maintain an Infrastructure‑as‑Code pipeline: Terraform Cloud for resource provisioning, GitHub for source control, GitHub Actions for CI/CD.
• Orchestrate configuration and patch management at scale with Ansible Automation Platform.
• Configure and maintain backup, disaster recovery, and high availability setups within the OCI environment.
• Perform regular reviews of access, entitlements, and audit logs to ensure least privilege and policy compliance.
• Assist with security incident investigations and remediation within the OCI environment.
• Work closely with security and infrastructure teams to enforce secure controls and infrastructure best practices (IaC, etc)
• Collaborate with developers, integration engineers, finance, and security stakeholders to improve reliability and expand OCI capabilities.
• Actively monitor, assess, and recommend tactical and strategic initiatives based on new and emerging threats posing risk to cloud computing environments.
• Manage remediation efforts after security assessment findings outline weaknesses requiring attention.
• Provide documentation and knowledge transfer to internal teams.

Qualifications:

• 5+ years of experience in cybersecurity or related engineering roles.
• 3+ years hands-on experience specifically with Oracle Cloud Infrastructure (OCI).
• Experience working with security tools like Teleport, CrowdStrike EDR, Tenable, SIEM, etc
• Strong understanding of OCI networking, IAM, compartments, security lists, and resource management.
• Experience with OCI-native security services (e.g., Cloud Guard, Security Zones, Logging, Vault).
• Proficiency in infrastructure-as-code tools (Terraform preferred).
• Experience in Ansible Automation Platform or other configuration management tooling.
• Solid understanding of security best practices, including least privilege access, encryption, system hardening, vulnerability management, and key management.
• Familiarity with compliance requirements (e.g., ISO 27001, SOC 2, HIPAA) as they apply to OCI.
• Experience supporting production-grade workloads in a cloud environment.
• Scripting knowledge (e.g., Bash, Python) for automation and monitoring.

Preferred Qualifications:

• OCI Certified Architect or OCI Certified Security Professional.
• Prior experience integrating OCI with SIEM tools (e.g., Splunk, QRadar).
• Experience working in hybrid environments (on-prem + OCI).
• Experience with Monitoring and Alert tools (Pref: Datadog)
• Experience with logging pipelines and log manipulation (Pref: Cribl Stream)
• Experience with GitHub and GitHub Actions CI/CD and DevSecOps processes and tooling.
• Experience with AWS Networking and multi-cloud connectivity is a bonus.