Oracle Cloud Application Security Administrator

Job#: 3020165

Job Description:

TITLE

Oracle Cloud Application Security Administrator

JOB SUMMARY

The Oracle Cloud Application Security Administrator is responsible for the design, administration, monitoring, and support of application-level security for the university's Oracle Cloud SaaS portfolio, including Human Capital Management (HCM), Financials (ERP), Supply Chain Management (SCM), and Enterprise Performance Management (EPM).

This role ensures that user access, roles, privileges, and data security configurations are properly implemented and maintained in alignment with the principles of least privilege, segregation of duties (SoD), data governance, and institutional compliance requirements. The position plays a critical role in protecting sensitive university data while enabling secure and efficient business operations.

The Oracle Cloud Application Security Administrator collaborates closely with functional teams, Identity and Access Management (IAM), Internal Audit, Compliance, and Infrastructure teams to ensure consistent, compliant, and auditable security practices across Oracle Cloud applications.

As a member of the Finance Strategy and Operations team, this individual is expected to uphold the division's mission and contribute positively to a collaborative, human-centered, innovative, accountable, transparent, and inclusive culture. This position is required to be on-site with alternative work options available as a benefit.

ESSENTIAL DUTIES - May include, but not limited to the following:

Application Security Administration and Support (75%)

Oracle Cloud Application Security Management:

Administer, maintain, automate, and monitor application security across Oracle Cloud SaaS modules including HCM, Financials (ERP), SCM, and EPM.

Configure, manage, standardize, and automate Oracle application security models including job roles, duty roles, abstract roles, and data roles.

Design, implement, and manage automated and workflow-driven provisioning and de-provisioning of user access in accordance with university policies, approval workflows, and audit requirements.

Manage the Oracle Security Console to standardize, automate, assign, and maintain roles, privileges, and access to application features and data.

Implement, monitor, and automate enforcement of data security policies to restrict access based on business unit, ledger, department, legal entity, cost center, or other relevant data dimensions.

Monitor, analyze, and continuously assess Segregation of Duties (SoD) conflicts using automated reports, monitoring tools, and periodic reviews; partner with functional teams to remediate risks.

Support onboarding, job changes, and terminations through automated access lifecycle processes.

Assist with application security testing during new implementations, enhancements, and quarterly Oracle updates.

Manage and resolve application security-related service requests and incidents through the university's ticketing system, leveraging automation, standardized request models, and trend analysis to improve response times.

Troubleshoot and resolve access, role, and data security issues in collaboration with functional, IAM, and technical teams.

Support security-related incidents, investigations, and access reviews.

Identity, Compliance, and Audit Support:

Collaborate with IAM and Infrastructure teams to support Single Sign-On (SSO), multi-factor authentication (MFA), and identity integrations while maintaining strong application-level controls.

Participate in internal and external audits by providing security documentation, access reports, SoD analysis, and supporting evidence.

Develop, maintain, and automate security-related reports and monitoring dashboards using Oracle BI Publisher (BIP) and SQL to support access reviews, audits, SoD analysis, and ongoing security monitoring.

Produce ad hoc and scheduled reports related to user access, role assignments, and data security for functional leadership and auditors.

Ensure compliance with university policies, data governance standards, and regulatory requirements (e.g., FERPA, HIPAA where applicable).

Maintain audit-ready documentation of role designs, security configurations, provisioning workflows, and automation processes.

Support periodic automated user access certifications and reviews.

Architecture and Leadership (15%)

Serve as the subject matter expert for Oracle Cloud application security architecture, automation capabilities, and best practices.

Design and maintain standardized and automation-ready security role models aligned with functional responsibilities and institutional governance.

Evaluate and recommend improvements to application security controls, automation frameworks, monitoring capabilities, and SoD governance.

Document security standards, operating procedures, automation workflows, and role governance models.

Stay current on Oracle Cloud security features, automation options, and higher education best practices.

Participation & Support (10%)

Actively participate in university-wide projects involving Oracle Cloud implementations, upgrades, and integrations as a representative of the Finance Strategy and Operations team.

Collaborate with functional leads, technical analysts, IAM, and compliance teams to translate business requirements into secure, automated access designs.

Serve as a point of contact for Oracle Support on application security-related issues.

Provide timely responses to service requests and incidents related to user access and application security.

EDUCATION

Bachelor's degree required. Additional job-related experience may substitute for the required education on a year-for-year basis.

EXPERIENCE

Minimum five years of relevant experience in Oracle application security including HCM, Finance, SCM and EPM security administration. Experience with Oracle Cloud SaaS application security is strongly preferred.

REQUIREMENT

Regular and reliable attendance at the University during regularly scheduled days and work hours is an essential function of this position.

EXPERIENCE, KNOWLEDGE, SKILLS, AND ABILITIES - The following are essential:

Strong experience administering and automating security for Oracle Cloud SaaS applications (HCM, ERP, SCM, and/or EPM).

Deep understanding of Oracle security concepts including job roles, duty roles, abstract roles, data roles, and privilege hierarchies.

Experience designing and supporting automated provisioning and de-provisioning processes.

Demonstrated experience with Segregation of Duties (SoD) analysis, continuous monitoring, and remediation.

Knowledge of data security policies and automated enforcement mechanisms within Oracle Cloud applications.

Experience supporting ticket-based service management with automation and reporting.

Experience creating, automating, and maintaining security reports and dashboards using Oracle BI Publisher (BIP).

Working knowledge of SQL for querying and monitoring Oracle Cloud security and user data.

Familiarity with identity integration concepts (SSO, MFA) and coordination with IAM teams.

Strong documentation, reporting, and communication skills.

Ability to work collaboratively with functional, technical, and compliance stakeholders.

Understanding of audit, compliance, and access certification processes.

Proactive, self-driven, and committed, with the ability to research, evaluate, and implement best practices.

Additional/Desirable Experience, Knowledge, Skills & Abilities

Experience supporting Oracle EPM security.

Experience in a higher education IT environment.

Knowledge of FERPA, HIPAA, or similar regulatory requirements.

Familiarity with Texas Administrative Code (TAC 202).

Experience supporting large, complex ERP security models.

Apex Systems is a world-class IT services company that serves thousands of clients across the globe. When you join Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRated's Best of Staffing in Talent Satisfaction in the United States and Great Place to Work in the United Kingdom and Mexico. Apex uses a virtual recruiter as part of the application process. Click for more details.

Apex Benefits Overview: Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our 'Welcome Packet' as well, which an Apex team member can provide.