Oracle Security Architect

Oracle Security Architect

We are seeking an experienced Oracle Security Architect to design, implement, and oversee our global Oracle Cloud Fusion security framework. This role will define the enterprise security architecture strategy for Oracle Cloud Applications and ensure robust, compliant, and efficient access controls across the enterprise. The ideal candidate will be a strategic thinker with hands-on experience in Oracle Fusion role design, access management, and compliance controls, who can drive modernization from legacy security models to leading-practice role-based access.

Essential Functions

Strategy and Architecture

• Develop and maintain the Oracle Cloud Security Architecture Strategy, aligning with corporate IT security, audit, and compliance standards.
• Define guiding principles, frameworks, and governance for role design, segregation of duties (SoD), and least-privilege access.
• Serve as the enterprise authority on Oracle Fusion security models, data protection, and access control best practices.
• Partner with business stakeholders to design functional security requirements and lead global expansion security implementations.
• Design, implement and operate governance, risk and compliance tools that enable SOD analysis and remediation.

Role Design and Modernization

• Lead the redesign of legacy Fusion roles into leading practice, least-privilege roles aligned to job functions and business processes.
• Collaborate with functional and technical teams to implement role changes in a controlled and documented manner.
• Oversee the security configuration lifecycle, from design to testing and deployment.
• Drive adoption of standardized role templates and reduce custom roles where possible to simplify administration.

Access Management and Governance

• Oversee the user provisioning and de-provisioning process across Oracle Cloud environments.
• Implement and manage tools and workflows for access certification, segregation of duties monitoring, and compliance reporting.
• Establish access governance controls consistent with SOX, GDPR, and corporate audit requirements.
• Partner with Internal Audit and IT Risk teams to support periodic access reviews and remediation efforts.

Operational Leadership

• Provide subject matter expertise to system administrators, business process owners, and auditors on Oracle security policies and standards.
• Define and manage security operations procedures for incident management, access issues, and role administration.
• Develop and deliver training and documentation to enable self-service and awareness across IT and business teams.
• Stay current on Oracle security updates, new features, and emerging threats, recommending proactive improvements.

Desired Skills and Experience:

• Thrives in a hands-on, fast-paced dynamic environment.
• Ability to develop consistent processes that meet compliance and business partner needs.
• Excellent communication, documentation, and cross-functional collaboration skills and the ability to understand finance and operations business functions supported by Oracle Fusion.
• Lead a regionally diverse team to deliver high-quality stakeholder experience while maintaining the SOX compliance security program.

Qualifications:

• Experience developing and managing Oracle SoD rulesets and performing risk remediation.
• Bachelor's degree in Information Systems, Computer Science, or a related field.
• 8+ years of experience in ERP security (Oracle, SAP)
• Demonstrated expertise in Oracle Security Console, role-based access control (RBAC), and data security policies.
• Strong knowledge of SOX, ITGC, and audit frameworks related to ERP systems.