• The Principal Cybersecurity Architect is responsible for driving enterprise-wide technology security strategy and providing technical expertise to business areas and project teams with an emphasis on implementation of innovative, leading-edge security technology solutions. • Proven Track Record of accomplishments and experience leading the design and deployment of AI Architectures (both On-Premise and Public Cloud) and driving and deploying Secure Cloud Adoption on an enterprise scale from Foundational Security Controls to Cloud migrations. • Extensive experience migrating from a large scale onprem datacenter to the cloud while maintaining the proper levels of security, compliance and regulatory adherence. • Bridging gaps between data scientists, engineers, AI Architects, Cloud Architects, Data Protection professionals, legal, and executive teams. • Promoting secure-by-design principles across AI and Cloud initiatives. • Leading security teams and establishing governance frameworks for AI and Public Cloud adoption.

Title: Oracle Cloud Security Engineer Location: Remote US Job Description: Bright Vision Technologies is a forward-thinking software development company dedicated to building innovative solutions that help businesses automate and optimize their operations. We leverage cutting-edge technologies to create scalable, secure, and user-friendly applications. As we continue to grow, we’re looking for a skilled Oracle Cloud Security Engineer to join our dynamic team and contribute to our mission of transforming business processes through technology. This is a fantastic opportunity to join an established and well-respected organization offering tremendous career growth potential. Oracle Cloud Security Engineer Job Title: Oracle Cloud Security Engineer Location: 100% Remote (Continental United States) Position Type: In-house Bright Vision Technologies SOW engagement (no third-party client or vendor) Salary: 100 k - 150 k Experience: 5+ years Sponsorship: No new H1B sponsorship available. H1B transfers welcomed for qualified candidates. Employment Type: Full-time, direct W2 with Bright Vision Technologies (no C2C, no 1099, no third-party) Engagement: Long-term, multi-year, aligned to the Bright Vision SOW delivery roadmap Compensation: Competitive base salary commensurate with experience, plus benefits. Employment Terms & Visa Policy This is a 100% remote, full-time, direct W2 position with Bright Vision Technologies. This role is part of Bright Vision Technologies’ in-house Statement of Work (SOW) engagement. The client, end customer, and employer for this position is Bright Vision Technologies — there is no third-party client, vendor, or implementation partner involved. We do not engage in C2C, 1099, or third-party arrangements for this role. BUT STRICTLY NO C2C/1099/3RD PARTY COMPANIES. ALL OUR ROLES ARE W2 AND NO 3RD PARTY BROKERING PLEASE. Candidates must be willing to work directly as a full-time W2 employee of Bright Vision Technologies and contribute to our in-house SOW deliverables. No new H1B sponsorship is available for this role. However, candidates who are currently on a valid H1B visa and require a transfer are welcome to apply. We will support H1B transfers for qualified candidates. For every role, a technical coding assessment is mandatory. Please apply only if you are confident in your technical abilities and hands-on experience. Job Summary We are seeking an experienced Oracle Cloud Security Engineer responsible for designing, implementing, and operating security controls across Oracle Cloud Infrastructure (OCI), Oracle Cloud Applications, and hybrid Oracle environments. In this role you will define security architecture, harden cloud workloads, manage identity and access, lead vulnerability and compliance programs, and respond to security incidents. The ideal candidate will combine deep technical expertise in OCI security services with strong experience in cloud-native security frameworks, regulatory compliance, and threat detection. In this role you will work closely with cross-functional partners — product, design, engineering, operations, and business stakeholders — to translate ambiguous requirements into well-engineered solutions, and will be expected to raise the bar through code review, design review, and mentorship of more junior engineers. The successful candidate brings strong engineering discipline, a clear communication style, and a track record of shipping meaningful work that holds up well in production. Key Responsibilities - Design and implement enterprise security architectures for OCI tenancies, including landing-zone guardrails, security zones, and compartment policies. - Configure and operate OCI Identity Domains, federation with corporate IdPs, and strong RBAC strategies across the tenancy. - Implement strong key management and secrets handling using OCI Vault, including key rotation and HSM integration where appropriate. - Harden OCI compute, networking, and database workloads using CIS benchmarks, OCI Security Zones, and internal security standards. - Operate OCI Cloud Guard for continuous detection and response, tuning detectors and remediating findings. - Configure and operate OCI Logging, OCI Audit, and integration with SIEM platforms for centralized monitoring and forensics. - Implement data security controls using OCI Data Safe, including data masking, sensitive data discovery, and privileged user analysis. - Lead vulnerability management programs, including image scanning, patching, and remediation tracking. - Drive compliance with regulatory frameworks such as PCI-DSS, HIPAA, SOC 2, ISO 27001, or FedRAMP. - Conduct threat modeling and architecture reviews for new OCI workloads. - Lead security incident response on OCI, including containment, investigation, and post-incident review. - Develop security automation tooling using Python, Terraform, and OCI CLI/SDK. - Maintain comprehensive, current technical documentation — including architecture diagrams, design decisions, configuration references, runbooks, and operational procedures — so that the system remains supportable, auditable, and easy to onboard new engineers onto over time. - Provide mentorship and security guidance across application and infrastructure teams. Required Qualifications - Bachelor’s degree in Cybersecurity, Computer Science, Engineering, or a related discipline. - Five or more years of cloud security experience, with strong hands-on time on OCI. - Deep experience with OCI Identity, IAM policies, and identity federation. - Hands-on experience with OCI Cloud Guard, Security Zones, Vault, and Data Safe. - Solid understanding of cloud-native security frameworks and CIS benchmarks. - Experience with vulnerability management and patching tooling. - Working knowledge of regulatory frameworks (PCI-DSS, HIPAA, SOC 2, ISO 27001). - Strong scripting skills (Python, Bash) and Terraform. - Experience integrating cloud workloads with SIEM platforms. - Excellent troubleshooting, communication, and documentation skills. Preferred Qualifications - Oracle Cloud Security Professional certification. - CISSP, CCSP, or equivalent industry security certifications. - Experience with multi-cloud security architectures. - Familiarity with SOAR platforms and automated incident response. - Exposure to zero-trust architecture patterns. -

Architect and implement secure frameworks for AI usage, oversee technical security for cloud environments, and enhance automated security controls within CI/CD pipelines to ensure robust security across developer workflows and infrastructure.

Role Description We are looking for experienced Cybersecurity Experts to contribute to the development of advanced evaluation environments for frontier AI systems. In this role, you will create realistic security-focused coding scenarios that assess how AI models understand software vulnerabilities, exploit chains, secure coding practices, and complex attack surfaces. The work combines elements of offensive security, application security, software engineering, and AI evaluation. This is a highly technical, hands-on opportunity focused on building reproducible security benchmarks and adversarial testing environments inspired by real-world vulnerability patterns. - Commitments Required: 8 hours per day with an overlap of 4 hours with PST. - Employment type: Contractor assignment (no medical/paid leave) - Duration of contract: 4 weeks+ - Location: Bangladesh, Brazil, Colombia, Egypt, Ghana, India, Pakistan, Indonesia, Kenya, Nigeria, Turkey, Vietnam - Interview: 2x technical interviews Responsibilities - Design vulnerable multi-component applications and security challenge environments across languages such as Go, Python, Node.js, or Rust - Develop realistic exploit chains combining multiple vulnerability categories and attack vectors - Build deterministic evaluation environments using Docker and automated validation tooling - Create security-focused test cases and verification logic for vulnerability detection and remediation workflows - Review and analyze AI-generated outputs to identify gaps in reasoning, security understanding, or exploit detection - Develop adversarial scenarios involving misleading documentation, obfuscated code, edge cases, and hidden attack paths - Model real-world vulnerability classes inspired by CVEs, bug bounty findings, and production security incidents - Ensure evaluation tasks remain scalable, reproducible, and resistant to contamination from public datasets - Collaborate with cross-functional teams working on AI evaluation, benchmarking, and automated testing systems Qualifications - 4+ years of experience in cybersecurity, application security, vulnerability research, or offensive security - Hands-on experience with vulnerability discovery, exploit development, secure code review, or patch validation - Strong understanding of web security, authentication, sessions, OAuth, JWT, SSRF, injection attacks, and access control vulnerabilities - Experience with cryptographic vulnerabilities, filesystem attacks, or privilege escalation scenarios - Experience using security tools such as SAST, fuzzers, IAST, or similar security testing frameworks - Strong coding skills in at least two of the following languages: Go, Python, Node.js, Rust - Experience working with Docker and containerized environments - Familiarity with Linux internals and system-level behavior - Experience with bug bounty programs, CTFs, red teaming, or CVE research is a strong plus