• Design, deploy, and manage firewall solutions across multi-tenant MDR client environments • Implement and maintain security policies, access controls, NAT, and segmentation strategies • Support real-time threat detection and response by tuning firewall rules aligned to SOC alerts and threat intelligence • Partner with SOC teams to investigate and contain active incidents (e.g., blocking malicious IPs, isolating network segments) • Optimize firewall configurations to reduce false positives and improve detection fidelity • Integrate firewalls with SIEM, EDR, and XDR platforms for centralized visibility • Conduct firewall policy audits and enforce least-privilege access across client networks • Assist in incident response activities, including containment and remediation actions • Manage VPN configurations (site-to-site, client VPN, zero trust network access) • Provide guidance and recommendations to customers on improving their network security posture • Document configurations, changes, and response actions for compliance and reporting

• Oversees network security engineers • Monitoring and confirming the performance of the network security systems • Ensure appropriate levels of network security controls are managed within the organization • Work alongside other internal teams and external vendors for compliance • Guide and coach the network security team • Lead an Innovation, Research & Advanced Development (IRAD) organization • Drive forward-looking research while ensuring delivery of production-ready solutions • Favor automation over manual processes to reduce risk and improve scale and reliability • Leverage AI heavily to accelerate research and development • Create an environment encouraging curiosity and experimentation • Build trust with stakeholders by delivering safe, scalable, predictable solutions

Title: Oracle Cloud Security Engineer Location: Remote Job Description:Bright Vision Technologies is a forward-thinking software development company dedicated to building innovative solutions that help businesses automate and optimize their operations. We leverage cutting-edge technologies to create scalable, secure, and user-friendly applications. As we continue to grow, we’re looking for a skilled Oracle Cloud Security Engineer to join our dynamic team and contribute to our mission of transforming business processes through technology. This is a fantastic opportunity to join an established and well-respected organization offering tremendous career growth potential. Oracle Cloud Security Engineer Job Title: Oracle Cloud Security Engineer Location: 100% Remote (Continental United States) Position Type: In-house Bright Vision Technologies SOW engagement (no third-party client or vendor) Experience: 5+ years Sponsorship: No new H1B sponsorship available. H1B transfers welcomed for qualified candidates. Employment Type: Full-time, direct W2 with Bright Vision Technologies (no C2C, no 1099, no third-party) Engagement: Long-term, multi-year, aligned to the Bright Vision SOW delivery roadmap Compensation: Competitive base salary commensurate with experience, plus benefits. Employment Terms & Visa Policy This is a 100% remote, full-time, direct W2 position with Bright Vision Technologies. This role is part of Bright Vision Technologies’ in-house Statement of Work (SOW) engagement. The client, end customer, and employer for this position is Bright Vision Technologies — there is no third-party client, vendor, or implementation partner involved. We do not engage in C2C, 1099, or third-party arrangements for this role. BUT STRICTLY NO C2C/1099/3RD PARTY COMPANIES. ALL OUR ROLES ARE W2 AND NO 3RD PARTY BROKERING PLEASE. Candidates must be willing to work directly as a full-time W2 employee of Bright Vision Technologies and contribute to our in-house SOW deliverables. No new H1B sponsorship is available for this role. However, candidates who are currently on a valid H1B visa and require a transfer are welcome to apply. We will support H1B transfers for qualified candidates. For every role, a technical coding assessment is mandatory. Please apply only if you are confident in your technical abilities and hands-on experience. Job Summary We are seeking an experienced Oracle Cloud Security Engineer responsible for designing, implementing, and operating security controls across Oracle Cloud Infrastructure (OCI), Oracle Cloud Applications, and hybrid Oracle environments. In this role you will define security architecture, harden cloud workloads, manage identity and access, lead vulnerability and compliance programs, and respond to security incidents. The ideal candidate will combine deep technical expertise in OCI security services with strong experience in cloud-native security frameworks, regulatory compliance, and threat detection. In this role you will work closely with cross-functional partners — product, design, engineering, operations, and business stakeholders — to translate ambiguous requirements into well-engineered solutions, and will be expected to raise the bar through code review, design review, and mentorship of more junior engineers. The successful candidate brings strong engineering discipline, a clear communication style, and a track record of shipping meaningful work that holds up well in production. Key Responsibilities - Design and implement enterprise security architectures for OCI tenancies, including landing-zone guardrails, security zones, and compartment policies. - Configure and operate OCI Identity Domains, federation with corporate IdPs, and strong RBAC strategies across the tenancy. - Implement strong key management and secrets handling using OCI Vault, including key rotation and HSM integration where appropriate. - Harden OCI compute, networking, and database workloads using CIS benchmarks, OCI Security Zones, and internal security standards. - Operate OCI Cloud Guard for continuous detection and response, tuning detectors and remediating findings. - Configure and operate OCI Logging, OCI Audit, and integration with SIEM platforms for centralized monitoring and forensics. - Implement data security controls using OCI Data Safe, including data masking, sensitive data discovery, and privileged user analysis. - Lead vulnerability management programs, including image scanning, patching, and remediation tracking. - Drive compliance with regulatory frameworks such as PCI-DSS, HIPAA, SOC 2, ISO 27001, or FedRAMP. - Conduct threat modeling and architecture reviews for new OCI workloads. - Lead security incident response on OCI, including containment, investigation, and post-incident review. - Develop security automation tooling using Python, Terraform, and OCI CLI/SDK. - Maintain comprehensive, current technical documentation — including architecture diagrams, design decisions, configuration references, runbooks, and operational procedures — so that the system remains supportable, auditable, and easy to onboard new engineers onto over time. - Provide mentorship and security guidance across application and infrastructure teams. Required Qualifications - Bachelor’s degree in Cybersecurity, Computer Science, Engineering, or a related discipline. - Five or more years of cloud security experience, with strong hands-on time on OCI. - Deep experience with OCI Identity, IAM policies, and identity federation. - Hands-on experience with OCI Cloud Guard, Security Zones, Vault, and Data Safe. - Solid understanding of cloud-native security frameworks and CIS benchmarks. - Experience with vulnerability management and patching tooling. - Working knowledge of regulatory frameworks (PCI-DSS, HIPAA, SOC 2, ISO 27001). - Strong scripting skills (Python, Bash) and Terraform. - Experience integrating cloud workloads with SIEM platforms. - Excellent troubleshooting, communication, and documentation skills. Preferred Qualifications - Oracle Cloud Security Professional certification. - CISSP, CCSP, or equivalent industry security certifications. - Experience with multi-cloud security architectures. - Familiarity with SOAR platforms and automated incident response. - Exposure to zero-trust architecture patterns. How to Apply Would you like to know more about this opportunity? For immediate consideration, please send your resume to darshan@bvteck.com or contact us at +1 (908) 765-8199. Learn more about Bright Vision Technologies at www.bvteck.com. We recognize that our people are our strength, and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants’ and employees’ religious practices and beliefs, as well as mental health or physical disability needs. Bright Vision Technologies is an Equal Opportunity Employer, including Disability/Veterans. Position offered by “No Fee Agency.” Equal Employment Opportunity (EEO) Statement Bright Vision Technologies (BV Teck) is committed to equal employment opportunity (EEO) for all employees and applicants without regard to race, color, religion, sex, sexual orientation, gender identity or expression, national origin, age, genetic information, disability, veteran status, or any other protected status as defined by applicable federal, state, or local laws. This commitment extends to all aspects of employment, including recruitment, hiring, training, compensation, promotion, transfer, leaves of absence, termination, layoffs, and recall. BV Teck expressly prohibits any form of workplace harassment or discrimination. Any improper interference with employees' ability to perform their job duties may result in disciplinary action up to and including termination of employment.

Role Description Are you ready to join a game-changing force in identity and access management? Our client is revolutionizing the way enterprises protect user identities in a passwordless world. You'll be working at the intersection of cutting-edge biometrics, behavioral analytics, and next-gen identity orchestration - helping the world’s leading brands safeguard millions of users. Backed by more than 100 M Series A - one of the largest in cybersecurity history - and trusted by major global enterprises, they offer the agility of an innovator with the strength and backing of an industry leader. Ready to take part in redefining IAM for the modern era? Let’s talk. Qualifications - At least 3 years of experience in security research, fraud research, detection engineering, threat research, mobile security research, browser security research, or a similar hands-on technical role. - Bachelor’s degree in Computer Science, Cybersecurity, Data Science, or a related field, or equivalent hands-on experience. - Strong hands-on experience with at least one of the following areas: - Desktop or mobile browsers, browser APIs, browser automation, browser fingerprinting, web signals, or client-side web security. - Native mobile applications for Android or iOS, mobile OS behavior, device signals, emulators, mobile automation, app instrumentation, or mobile security. - Strong understanding of web technologies, mobile technologies, APIs, application behavior, and modern attack techniques. - Strong Python skills and experience building research tools, automation, data analysis workflows, detection prototypes, or feature engineering pipelines. - Experience analyzing messy real-world data, investigating anomalies, validating hypotheses, and drawing practical conclusions from incomplete information. - Familiarity with machine learning training and validation concepts, such as train/test split, validation sets, overfitting, leakage, feature quality, precision/recall, false positives, false negatives, and model evaluation. - Ability to produce data features in a structured, reliable, and model-friendly way. - Ability to think like an attacker while designing reliable, scalable, and explainable defenses. - Strong problem-solving skills, independence, persistence, and a “getting things done” attitude. - Ability to work closely with engineering, product, and data science teams and translate research insights into practical product capabilities. - At least an upper-intermediate level of English. Requirements - Experience with both browser-based and mobile-native research. - Experience with fraud domains such as account takeover, new account fraud, identity theft, money mule activity, payment fraud, or first-party fraud. - Knowledge of bots, automation frameworks, credential stuffing, scraping, and anti-detection techniques. - Experience with browser internals, JavaScript runtime behavior, DOM APIs, WebView behavior, browser automation, headless browsers, or browser anti-detection techniques. - Experience with mobile app lifecycle, permissions, sensors, networking, storage, mobile identifiers, rooted/jailbroken devices, hooking, instrumentation, repackaging, or anti-tampering techniques. - Experience with browser fingerprinting, mobile fingerprinting, device intelligence, behavioral biometrics, or client-side telemetry. - Experience with malware analysis, phishing kits, remote access tools, proxy/VPN infrastructure, or underground fraud ecosystems. - Experience with detection quality measurement, false-positive analysis, rule tuning, model evaluation, feature evaluation, or production monitoring. - Experience using notebooks, pandas, SQL, data visualization tools, or other analysis environments for research and validation. - Experience working with data scientists, ML engineers, or ML training pipelines. Benefits - People-first management with minimal bureaucracy. - A friendly company culture, proven by employees who choose to return. - Flexible working hours. - Full financial and legal support for independent contractors. - Free English classes, with native speakers or Ukrainian teachers. - Dedicated HR support. Your Day-to-Day in This Position - Research emerging fraud and abuse techniques across account takeover, bots, automation, phishing, social engineering, device spoofing, emulators, remote access tools, suspicious network infrastructure, and related attack vectors. - Identify, design, and validate new data collection opportunities, security signals, behavioral patterns, device indicators, browser indicators, and mobile app indicators. - Analyze real-world telemetry, customer-provided labels, behavioral signals, device signals, network indicators, and attack patterns to identify detection opportunities. - Reproduce attacker techniques in lab and production-like environments, generate telemetry, identify detection gaps, and translate findings into detection logic. - Design, validate, and tune detection and prevention mechanisms with attention to coverage, explainability, false positives, customer impact, and production stability. - Build research infrastructure, analysis workflows, and internal tools using Python. - Produce robust data features that can later be used by machine learning models, detection logic, rules, dashboards, and customer-facing insights. - Work with model training pipelines, evaluate model behavior, compare training and validation results, and help determine whether new features improve detection quality. - Collaborate closely with data science, engineering, and product teams to take ideas from research hypothesis through validation, implementation, monitoring, and production feedback. - Stay up to date with fraud trends, attacker tooling, automation frameworks, browser abuse techniques, mobile abuse techniques, malware behavior, phishing techniques, and underground ecosystem developments. - Communicate findings clearly to technical and non-technical stakeholders, including recommended actions, tradeoffs, expected impact, and model/detection quality considerations. Our Next Steps - ✅ Intro call with a Recruiter - ✅ Intro call with client - ✅ Technical interview - ✅ CTO interview - ✅ HR interview - ✅ Reference check - ✅ Offer