Software Engineering Manager - DDoS Protection...

Oracle Cloud Infrastructure (OCI) is seeking a Manager to lead the engineering team building and operating OCI's cloud-scale DDoS protection platform and customer-facing DDoS product. You will collaborate on strategy, roadmap, and delivery for globally distributed detection and mitigation systems, while developing a high-performing team and driving operational excellence. Manage a team that designs, develops, troubleshoots and debugs software programs for databases, applications, tools, networks etc.

What you'll own

• Define multi-quarter roadmap and quarterly plans for DDoS platform and product, aligned to OCI priorities and revenue goals.

• Make data-driven tradeoffs across feature velocity, resiliency, and cost; manage build-vs-buy with clear ROI.

• Lead new service development from concept and business case through GA: PRDs, architecture, stage gates, resourcing, and launch readiness.

• Deliver low-latency, high-availability backend services for detection, classification, and mitigation across OCI's global edge.

• Drive scalable data and control planes (policy, signaling, telemetry, orchestration) with strong fault isolation and resiliency.

• Guide anycast routing, BGP signaling, and traffic steering; integrate with OCI Networking, DNS, and edge services.

• Oversee capacity modeling, scale testing, and multi-region readiness.

• Establish and meet SLOs/SLAs and KPIs; ensure on-call health, incident readiness/response, and rigorous post-incident improvements.

• Champion automation-first operations: CI/CD, test frameworks, canary/blue-green releases, and infrastructure-as-code.

• Build robust observability (metrics, logs, traces) and near-real-time telemetry/streaming pipelines for detection at scale.

• Security, compliance, and risk

• Govern threat modeling, architecture reviews, and risk remediation; ensure auditability and policy adherence for Tier 0 services.

• Embed security and privacy by design; enforce zero trust principles and secure service-to-service communication (mTLS, policy).

• Hire, onboard, and grow a diverse, high-performing team; set clear OKRs, provide ongoing coaching and feedback, and drive career paths and succession planning.

• Mentor senior ICs and emerging leaders; establish technical ladders, design reviews, and knowledge-sharing rituals.

• Cross-functional leadership and communications

• Partner closely with Product, SRE, Networking, Architecture, and Security to land integrated capabilities and resilient outcomes.

• Provide crisp executive updates on status, risks, mitigations, and outcomes., + Protect OCI's infrastructure availability with resilient, automated DDoS detection and mitigation at hyperscale.

• Launch and evolve customer-facing DDoS offerings that provide self-service policy, visibility, and strong SLAs.

• Raise engineering quality, automation coverage, and compliance maturity across the stack.

• Build and scale a world-class engineering organization grounded in security-by-design and operational excellence.

Ways of working

• Security and privacy by design with auditable controls; policy adherence from day one.

• Data-driven delivery with clear KPIs, SLOs, and stage gates from prototype to GA.

• Collaborative, inclusive engineering culture with design docs, code reviews, and continuous learning.

Responsibilities

• Define multi-quarter roadmap and quarterly plans for DDoS platform and product, aligned to OCI priorities and revenue goals.

• Make data-driven tradeoffs across feature velocity, resiliency, and cost; manage build-vs-buy with clear ROI.

• Lead new service development from concept and business case through GA: PRDs, architecture, stage gates, resourcing, and launch readiness.

• Deliver low-latency, high-availability backend services for detection, classification, and mitigation across OCI's global edge.

• Drive scalable data and control planes (policy, signaling, telemetry, orchestration) with strong fault isolation and resiliency.

• Guide anycast routing, BGP signaling, and traffic steering; integrate with OCI Networking, DNS, and edge services.

• Oversee capacity modeling, scale testing, and multi-region readiness.

• Establish and meet SLOs/SLAs and KPIs; ensure on-call health, incident readiness/response, and rigorous post-incident improvements.

• Champion automation-first operations: CI/CD, test frameworks, canary/blue-green releases, and infrastructure-as-code.

• Build robust observability (metrics, logs, traces) and near-real-time telemetry/streaming pipelines for detection at scale.

• Security, compliance, and risk

• Govern threat modeling, architecture reviews, and risk remediation; ensure auditability and policy adherence for Tier 0 services.

• Embed security and privacy by design; enforce zero trust principles and secure service-to-service communication (mTLS, policy).

• Hire, onboard, and grow a diverse, high-performing team; set clear OKRs, provide ongoing coaching and feedback, and drive career paths and succession planning.

• Mentor senior ICs and emerging leaders; establish technical ladders, design reviews, and knowledge-sharing rituals.

• Cross-functional leadership and communications

• Partner closely with Product, SRE, Networking, Architecture, and Security to land integrated capabilities and resilient outcomes.

• Provide crisp executive updates on status, risks, mitigations, and outcomes.

Disclaimer:

Certain U.S. based or U.S. customer or client-facing roles may be required to comply with applicable requirements, such as immunization/occupational health mandates, and/or drug testing requirements.

• 10+ years in network/security or backend engineering, including 4+ years leading engineering teams delivering production-critical services at scale.

• Proven delivery of large-scale DDoS or network security programs in cloud, hyperscale, or ISP environments.

• Strong systems and distributed design skills: concurrency, performance, resiliency, API design, and fault isolation.

• Deep networking fundamentals: TCP/IP, IPv4/IPv6, BGP; DNS/DHCP understanding; ability to guide architectural decisions.

• Hands-on fluency with automation-first operations and DevOps at scale: CI/CD, automated testing, rollout/rollback, config management, and IaC (e.g., Terraform).

• Proficiency with one or more: Java, Go, Python, C++, or Rust; strong preference for Java for control-plane/services.

• Demonstrated leadership in incident management, resilience engineering, observability, and operational maturity.

• Excellent stakeholder management and executive communication; data-driven prioritization and tradeoff decision-making.

Preferred qualifications

• Experience with anycast routing, traffic steering, multi-region service readiness, and capacity/scalability modeling.

• Exposure to SDN, programmable data planes, or hardware mitigation platforms.

• Advanced telemetry/streaming for near-real-time detection (e.g., high-rate packet/flow analytics).

• Containerization/orchestration and secure service-to-service communication (mTLS, policy).

• Familiarity with zero trust, segmentation, and modern security architectures.

• Track record building inclusive teams; coaching frameworks; performance management best practices.

Oracle uses Artificial Intelligence in our recruiting process. Read more about it in our Recruiting Privacy Policy (https://www.oracle.com/legal/privacy/recruiting-privacy-policy/) .

Range and benefit information provided in this posting are specific to the stated locations only

CA: Hiring Range in CAD from: $139,700 to $233,900 per annum.

US: Hiring Range in USD from: $122,500 to $355,400 per annum. May be eligible for bonus, equity, and compensation deferral.

Oracle maintains broad salary ranges for its roles in order to account for variations in knowledge, skills, experience, market conditions and locations, as well as reflect Oracle's differing products, industries and lines of business.

Candidates are typically placed into the range based on the preceding factors as well as internal peer equity.

Oracle US offers a comprehensive benefits package which includes the following:

1. Medical, dental, and vision insurance, including expert medical opinion

2. Short term disability and long term disability

3. Life insurance and AD&D

4. Supplemental life insurance (Employee/Spouse/Child)

5. Health care and dependent care Flexible Spending Accounts

6. Pre-tax commuter and parking benefits

7. 401(k) Savings and Investment Plan with company match

8. Paid time off: Flexible Vacation is provided to all eligible employees assigned to a salaried (non-overtime eligible) position. Accrued Vacation is provided to all other employees eligible for vacation benefits. For employees working at least 35 hours per week, the vacation accrual rate is 13 days annually for the first three years of employment and 18 days annually for subsequent years of employment. Vacation accrual is prorated for employees working between 20 and 34 hours per week. Employees working fewer than 20 hours per week are not eligible for vacation.

9. 11 paid holidays

10. Paid sick leave: 72 hours of paid sick leave upon date of hire. Refreshes each calendar year. Unused balance will carry over each year up to a maximum cap of 112 hours.

11. Paid parental leave

 Oracle offers integrated suites of applications plus secure, autonomous infrastructure in the Oracle Cloud. For more information about Oracle (NYSE: ORCL), please visit us at www.oracle.com.

Our mission is to help people see data in new ways, discover insights, unlock endless possibilities.