Oracle Cloud Infrastructure Network Security Consultant

OCI Network Security Consultant

• Experience in Network/Security engineering. • Hands on experience with Oracle Cloud Infrastructure networking and security services. • Strong understanding of TCP/IP, BGP, routing, NAT, VPN, TLS/SSL, DNS, Firewall policies. • Experience with OCI Load Balancers, WAF, Network Firewall, NSGs, DRG, Connectivity. • Hands on with Terraform, Git, automation tools. • Ability to troubleshoot complex cloud network performance issues. • Solid understanding of IAM (policies, dynamic groups) for secure access Preferred / Nice-to-Have • Experience with Palo Alto / Fortinet / Check Point firewalls. • Multi-cloud networking (AWS/Azure/GCP). • Experience with SIEM, SOAR, packet captures, and threat analysis. • Certifications: o OCI Architect Associate/Professional o OCI Security Professional o CCNA/CCNP Security o Security+ / CySA+ 1. OCI Networking Architecture & Operations • Design, deploy, and manage Virtual Cloud Networks (VCNs), subnets, DRGs, LPGs, and network gateways (IGW, NGW, SGW). • Configure routing, security lists, network security groups (NSGs), and VCN peering (local & remote). • Manage site to site VPN, FastConnect, and hybrid network connectivity with on premises data centers. • Implement load balancing (public, private) and troubleshooting L3/L4 traffic flows. • Optimize network performance, resilience, and throughput across multi region architectures. 2. Cloud Security Architecture (Core Focus) • Implement and manage OCI IAM, policies, dynamic groups, security zones, compartment strategies, and Zero Trust principles. • Configure WAF, Cloud Guard, Vulnerability Scanning Service (VSS), Bastion, and KMS/Encryption for data protection. • Enforce network segmentation, micro segmentation, and least privilege designs. • Develop and maintain security baselines aligned with industry standards (NIST, CIS, ISO). • Monitor security events, respond to incidents, and remediate vulnerabilities. 3. Firewall, Perimeter & VPN Security • Configure and maintain next gen firewalls, IPS/IDS, and web security layers in OCI and hybrid environments. • Manage IPSec VPN, SSL/TLS, certificate management, and encrypted tunnel performance. • Create firewall rule sets, NAT policies, and security filters ensuring minimal attack surface. 4. Governance, Compliance & Audit Readiness • Implement OCI native compliance tools and prepare environments for audits (SOX, HIPAA, PCI as applicable). • Document network/security architectures, runbooks, and operational procedures. • Perform regular risk assessments, security reviews, and threat modeling. 5. Automation & DevSecOps • Automate infrastructure provisioning using Terraform, Resource Manager, or equivalent. • Integrate security controls into CI/CD pipelines (policy checks, image scanning, configuration validation). • Use scripting (Python/Shell) for network/security automation tasks. 6. Troubleshooting & Support • Provide L3 support for cloud network and security issues. • Analyze packet flows, logs, and telemetry using OCI Logging, Flow Logs, OCI Monitoring, and SIEM tools. • Incident response and RCA (root cause analysis).