DDOS Software Engineer

Edge Security Team Position

Join OCI's Edge Security team to help build and operate cloud-scale DDoS protection. You'll contribute to high-performance detection and mitigation services, automate operational workflows, and learn how we deliver secure, reliable customer-facing capabilities at global scale.

Implement and enhance low-latency backend services that support DDoS detection, classification, and mitigation across OCI's edge.

Contribute to scalable data and control planes (policy, signaling, telemetry, orchestration) with a focus on resiliency and fault isolation.

Help develop and integrate traffic engineering features (e.g., BGP signaling, routing policy) with OCI networking, DNS, and edge services under guidance from senior engineers.

Participate in operational readiness: support SLO/SLA tracking, on-call rotations with mentorship, incident response, runbooks, and post-incident improvements.

Build and maintain automation-first workflows: CI/CD pipelines, test suites, safe deployments (canary/blue-green), and infrastructure-as-code.

Instrument services for observability (metrics, logs, traces) and contribute to capacity/scale testing for high-availability systems.

Collaborate with product, SRE, and network engineering to deliver features from design to GA with security-by-design practices.

Participate in threat modeling, design reviews, and audit/compliance readiness activities for critical services.

Basic qualifications:

1-2 years of experience (or strong internships/co-ops) building production backend systems or services.

Proficiency in at least one of: Java, Python, Go, C++, or Rust; willingness to work primarily in Java for control-plane/services.

Understanding of core systems concepts: concurrency, performance, API design, and distributed systems fundamentals (coursework or practical projects).

Hands-on experience with DevOps fundamentals: CI/CD, automated testing, rollout/rollback, and configuration management.

Familiarity with infrastructure-as-code (e.g., Terraform) and cloud fundamentals.

Basic networking knowledge: TCP/IP, IPv4/IPv6, and DNS; eagerness to learn BGP concepts.

Experience instrumenting services with metrics/alerts and a strong operational mindset.

Strong problem-solving skills, curiosity, and willingness to learn from code reviews and design discussions.

Preferred qualifications:

Exposure to DDoS or network security concepts and common attack/defense patterns.

Familiarity with anycast routing, traffic steering, or multi-region service patterns.

Experience with containers and orchestration, plus secure service-to-service communication (e.g., mTLS, policy).

Exposure to SDN, programmable data planes, or high-rate telemetry/stream processing.

Interest in resilience engineering, chaos testing, and capacity planning.

Understanding of zero trust principles and modern security architectures.

How you'll have impact:

Help deliver core DDoS detection and mitigation capabilities that protect OCI's infrastructure availability.

Contribute to customer-facing features that provide self-service policy and visibility.

Improve engineering quality, automation, and compliance maturity across the stack.

Ways of working:

Security and privacy by design with auditable controls and policy adherence from day one.

Data-driven delivery with clear KPIs, SLOs, and stage gates from proto@type to GA.

Collaborative, inclusive engineering culture emphasizing mentorship, code reviews, design docs, and knowledge sharing.