Principal DevSecOps Engineer

The Tools and Innovation (TINNO) team is a high-performing engineering organization within Oracle Product Development. Our mission is to design, secure, and scale the intelligent automation platforms that power Oracle Fusion SaaS. We build tools that drive operational efficiency, improve reliability, and ensure compliance across Oracle’s global cloud services.

As a Senior Principal DevSecOps Engineer, you will play a key role in evolving Oracle’s secure automation strategy and advancing AI-assisted operations. You will embed security, compliance, and observability into every layer of the Fusion SaaS platform - from build pipelines to runtime orchestration. You will design and implement frameworks that integrate DevSecOps, MLOps, and intelligent agents to predict, detect, and remediate issues autonomously.

Your work will ensure that Oracle’s systems remain resilient, compliant, and adaptive as we scale globally. You’ll collaborate closely with Platform, Product, Security, and AI teams to create automation and governance capabilities that support secure, intelligent cloud operations. This is a strategic IC5 role with broad technical scope and influence across Oracle’s Fusion SaaS ecosystem.

• End-to-end ownership of the TINNO platform - the foundation on which multiple products operate. This includes infrastructure, databases, data pipelines, and automation frameworks that ensure scalability, performance, and security.
• Database and data services management, ensuring performance optimization, resilience, and compliance with corporate security and privacy standards.
• Security, observability, and compliance automation, embedding DevSecOps principles across the CI/CD and runtime stack to deliver continuous assurance.
• MLOps and AI/agent-driven operations, enabling intelligent observability, autonomous remediation, and predictive resource management.
• Workflow orchestration and related tools to support ML, analytics, and operational automation pipelines.
• Disaster recovery design and automation, ensuring business continuity across critical Fusion SaaS workloads.
• Coding and automation excellence - hands‑on development in Python, Go, and Java to implement secure, high-performance tooling and frameworks.
• Cross‑functional leadership, partnering with Security, OCI, Development, and Support to ensure the platform meets stringent reliability, performance, and governance targets.
• Security and compliance governance, including vulnerability management, third‑party library compliance, and driving CSSAP reviews and approvals for all platform components.

• 10+ years of experience in DevOps, Cloud Security, or Platform Engineering roles with demonstrated expertise in automation, observability, and compliance.
• Proven success owning and operating production‑scale platforms supporting multiple products or services in a cloud environment.
• Deep technical proficiency in Oracle Cloud Infrastructure (OCI) with hands‑on experience in Compute, Networking, IAM, and Observability.
• Advanced skills in Kubernetes (OKE), Terraform, and CI/CD automation pipelines, with a strong understanding of policy‑as‑code and compliance automation.
• Strong programming and scripting skills in Python, Go, and Java, with a focus on building secure, scalable, and automated tooling.
• Expertise in security hardening, vulnerability management, and third‑party library compliance, including driving CSSAP reviews and approvals.
• Practical experience in database performance and security management, including backup, recovery, and encryption best practices.
• Proven ability to integrate DevSecOps principles — security, automation, and governance — across development and operational workflows.
• Excellent cross‑functional leadership skills; able to drive consensus and execution across Security, Product, and Infrastructure teams.
• Exceptional communication skills and experience influencing architecture and compliance decisions at the executive or cross‑organizational level.

• Experience implementing or supporting MLOps pipelines (e.g., MLflow, Kubeflow) and secure data workflows for machine learning operations.
• Familiarity with Agentic Frameworks or AI/agent‑driven operations, including the use of intelligent agents for observability, anomaly detection, and automated remediation.
• Deep understanding of CSSAP, governance frameworks, and continuous compliance automation.
• Exposure to AI security, data governance, and ethical ML deployment practices.

• Deliver a fully compliant DevSecOps stack, with automated detection, reporting, and remediation of configuration, dependency, and security issues across all environments.
• Design and begin implementation of a comprehensive Disaster Recovery (DR) strategy for critical applications, including automated failover, backup validation, and recovery testing.
• Deliver at least one production‑ready agentic workflow or framework component that integrates with the TINNO DevSecOps platform to automate observability, compliance, or incident remediation.