Our mission is to accelerate customer success and help organizations unlock the full value of their Oracle Cloud investments. As a strategic end-to-end cloud partner, we focus on delivering measurable business outcomes not just technology implementations.
With more than 1,500 successful Oracle Cloud projects delivered across EMEA, we combine deep expertise, proven methodologies, and global scale to provide solutions with speed, efficiency, and predictability. Our team across EMEA and JAPAC collaborates through our “One Oracle” approach, reducing risk and maximizing return on investment for our clients.
We take a holistic view of each client’s business to ensure transformation initiatives drive real, sustainable impact and continuous innovation.
Join us and become a vital part of a team that connects Oracle’s technology to the millions of businesses ready to evolve. You will be at the forefront of strategic cloud transformation and business analytics conversations, shaping the future of digital enterprise.
We are seeking a Principal Consultant – OCI Security Architect (Hands-on Implementation) to lead delivery of security controls on Oracle Cloud Infrastructure (OCI). The role is primarily hands-on implementation, most of your time will be spent building, configuring, automating, and troubleshooting OCI security capabilities while also requiring strong ability to design and architect the security elements of end-to-end solutions.
The successful candidate will also support pre-sales activities, create customer-facing presentations, run workshops, gather requirements, advise customers, and provide technical leadership across delivery teams.
Candidates with equivalent security architecture/engineering experience in AWS, Azure, or GCP will be considered, with a demonstrated willingness to cross-train to OCI.
What You'll Do
1. Lead hands-on implementation of OCI security controls across customer environments, ensuring a positive customer experience.
2. Focus on large or complex opportunities requiring secure, scalable, and automated solutions.
3. Advise customers on overall solution security architecture, applying Zero Trust and secure-by-default principles.
4. Design, build, and deliver customer demonstrations, technology workshops, and webinars to showcase Oracle-based security solutions.
5. Participate in or lead customer Proof of Concepts, workshops, or performance/security tests.
OCI security engineering (hands-on)
6. Implement and manage OCI IAM (least privilege policies, dynamic groups, federation/SSO concepts, service-to-service access).
7. Engineer secure OCI networking and segmentation (VCNs, subnets, route tables, DRGs, gateways) including Zero Trust packet routing concepts.
8. Configure and manage Network Security Groups (NSGs) and layered network controls to enforce workload isolation and least access.
9. Implement OCI Vault for keys and secrets management (access policies, lifecycle, rotation, integrations).
10. Configure and operationalize OCI Cloud Guard (detectors/responders), including tuning, alerting, and response workflows.
11. Deliver database security controls (encryption, auditing, privileged access controls) and integrate with OCI Data Safe for assessments and monitoring.
12. Ensure security controls align with organizational policies on security, privacy, and data governance.
Automation / DevOps
13. Build repeatable, secure deployments using: Terraform (modules, environments, state management, drift detection) CI/CD pipelines (., Jenkins) with security gates and approvals GitOps workflows (PR-based change control, promotion across environments) Ansible for configuration management and orchestration
Documentation, customer advisory, and pre-sales
14. Create customer-ready documentation including: Architecture artifacts (current state/target state, reference architectures, security patterns) High-Level Designs (HLDs) and Low-Level Designs (LLDs) Runbooks/SOPs, deployment guides, handover documentation, troubleshooting guides
15. Gather requirements and lead discovery with customer stakeholders (security, compliance, networking, identity, operations).
16. Run customer workshops (landing zone/security design sessions, IAM/network segmentation working sessions, threat modeling discussions).
17. Support pre-sales by contributing to solutioning, estimates, delivery approach, and customer presentations/briefings.
18. Understand competitive landscape and communicate opportunities to up-sell based on product expertise.
19. Liaise with the Oracle ecosystem (Account Teams, Sales Consulting, Product teams, communities, cross-LOB teams).
Technical leadership
20. Lead small delivery teams, coordinate work, and ensure high implementation quality.
21. Review designs and Infrastructure-as-Code for security, quality, and maintainability.
22. Mentor team members on OCI security services, automation standards, and delivery patterns.
What You'll Bring
Minimum Qualifications
23. Relevant degree or at least 5 years of industry experience in a similar role.
Required Experience
24. 5–7 years overall industry experience in security, infrastructure, networking, or cloud engineering roles.
25. 5+ years of cloud experience, including security architecture and hands-on implementation.
26. Strong hands-on implementation experience delivering cloud security controls end-to-end (not advisory-only).
27. Strong ability to design security architectures and translate requirements into implementable designs.
28. Experience producing professional customer deliverables: architectures, HLDs, LLDs, and operational documentation.
29. Experience running workshops, gathering requirements, advising customers, and supporting pre-sales engagements.
30. Experience providing technical leadership (task planning, mentoring, reviews).
Required Technical Skills
We expect deep, hands-on expertise in three or more of the following areas:
31. OCI architecture and secure landing zone/tenancy patterns (compartments, guardrails/policies).
32. Networking & Zero Trust: segmentation, routing patterns, and secure connectivity; Zero Trust packet routing concepts.
33. IAM: least privilege policy design, dynamic groups/service identities, federation/SSO concepts.
34. Network Security Groups (NSGs) and layered network security controls.
35. OCI Vault: KMS/secrets management, access policies, rotation, integration into platforms/pipelines.
36. Cloud Guard: posture management, detectors/responders, tuning and operationalization.
37. Data Safe / Database Security: auditing, assessment, encryption, privileged access controls.
38. Automation/DevOps: Terraform, Jenkins, GitOps, Ansible.
Cloud Provider Equivalency / Cross-Training
39. Equivalent experience with AWS, Azure, or GCP security services and architecture will be considered, with willingness to cross-train to OCI.
Desired Attributes
40. Confident and assertive
41. Positive attitude
42. Self-starter, comfortable working autonomously
43. Ability to empathize with customers and understand their perspectives
44. Skilled at balancing customer needs with Oracle’s objectives
45. Willingness to take initiative and assist wherever needed
46. Team player who actively seeks innovative ways to enhance customer service
47. Must be UK Citizen and hold current Security Clearance or ability to obtain
What We’ll Offer
48. Competitive compensation and a comprehensive benefits package.
49. Structured onboarding and personalized training, including induction.
50. Flexible and hybrid working arrangements for optimal work-life balance.
51. Opportunity to work with modern technology stacks and collaborate with global teams.
52. Defined career development pathways, mentorship, and continuous learning programs.
53. Inclusive work environment that values diversity and individual contributions.
Career Level - IC3