Do you have a passion for high scale services and working with some of Oracle's most critical customers? We are seeking a highly skilled technical writer to develop, draft, and refine a variety of security and technical reports that communicate complex technical findings to a range of audiences. In this role, you will work closely with security engineers, researchers, and compliance professionals to produce high-quality documentation that is clear, accurate, and defensible. Reporting deliverables will include:
* Security assessment reports that communicate technical findings and vulnerabilities identified through activities such as penetration tests, vulnerability assessments, and risk analyses.
* System architecture and design documentation that describes the architecture, components, data flows, and security assurance properties of systems under evaluation, with emphasis on security compliance, risk posture, and system security functionality.
* Compliance and attestation reports that document how systems meet or fail to meet applicable security standards and frameworks, including detailed mappings of control implementations.
You will also contribute to improving internal documentation processes, templates, standards, and tooling in collaboration with our broader team.
Who We Are:
We are a world-class team of high calibre security researchers and application security engineers who thrive on new challenges. We are an inclusive and diverse team with a full spectrum of experience distributed globally. We have the resources of a large enterprise and the energy of a start-up, working on a critical greenfield software assurance project collaboratively with our cloud team. The Software Assurance organization has the mission to make application security and software assurance, at scale, a reality. Join us to grow your career and create the future of software assurance at scale together.
Work You’ll Do:
As a member of our team, you will work independently or side-by-side within a team structure to draft, edit, and review a variety of technical and security-focused reports including vulnerability assessments, penetration tests, risk assessments, system architecture and design documentation, and compliance and attestation reports[CH1] [AK2] with an emphasis on accuracy, clarity, and consistency. Additional key responsibilities include:
* Tailoring reports and communications for a variety of audiences ensuring appropriate language, level of detail, and tone.
* Working closely with team members to articulate complex technical findings into clear, actionable narratives for non-technical audiences.
* Working closely with security analysts, security researchers, machine learning engineers, and subject matter experts to ensure reports are accurate at a technical level.
* Improving processes, standards, and templates for technical document writing.
* Contributing to tooling and automation to support security teams in efficiently documenting their technical work.
What You’ll Bring:
* Solid experience as Technical Writer, Technical Editor, Content Strategist, or similar role
* Familiarity with common security assessment frameworks and methodologies such as OWASP Top 10, NIST SP 800-53, MITRE ATT&CK, or Common Criteria (ISO/IEC 15408).
* Familiarity with architectural documentation practices such as data flow diagrams, control matrices, and system security plans (SSPs).
* Demonstrated experience, writing security assessments or audit reports such as vulnerability assessments, penetration tests, risk assessments, and security compliance reports.
* Ability to synthesize technical security findings into language, appropriate for executive, legal, and regulatory audiences.
* Understanding of legal and regulatory considerations related to security reporting.
* Strong discretion and judgment in determining what information is appropriate for various audiences and contexts.
* Upper Intermediate/Advanced level in English, both spoken and written.
* Experience documenting highly complex engineering environments.
* Ability to establish and follow content style and usage guidelines.
* Strong drafting, copy editing, and proofreading expertise.
* Excellent attention to detail.
* Analytical thinking and content architecture skills.
* Strong team player with outstanding communication, organization, and interpersonal skills.
* Comfortable with agile, swiftly changing, dynamic software development situations
* Ability to work independently within a large and globally distributed software assurance organization.
* Ability to learn new technologies quickly.
Nice to Have
* Bachelor’s degree in a technical field (such as Computer Science, Software Engineering, or similar)
* Prior experience supporting information security, risk management, or compliance teams.
* Hands-on knowledge of Markdown/AsciiDoc markup languages.
* Experience with project management software such as Atlassian, including Jira issue tracking system and Confluence collaboration tool for sharing information, or similar.