Summary:
The Oracle Fusion Cloud Security Architect is responsible for designing, implementing, and governing end-to-end security for Oracle Fusion Cloud applications, tightly integrated with Oracle Cloud Infrastructure (OCI) security services and enterprise SIEM and CASB platforms.
This role ensures secure access, data protection, regulatory compliance, and continuous monitoring across SaaS, PaaS, and IaaS layers, while aligning Oracle Fusion security architecture with enterprise security standards and zero-trust principles.
Key Responsibilities
1. Oracle Fusion Cloud Security Architecture
- Design and govern security architecture for Oracle Fusion Cloud (HCM, ERP, SCM, CX) environments.
- Define role-based access control (RBAC) using job roles, duty roles, and data security policies.
- Ensure least-privilege access and segregation of duties (SoD) across all Fusion modules.
- Lead security design for Redwood UI, REST APIs, and Fusion extensibility frameworks.
2. Identity & Access Management (IAM)
- Architect end-to-end IAM using OCI IAM integrated with enterprise identity providers.
- Design SSO, MFA, adaptive authentication, and lifecycle access provisioning.
- Implement federation between OCI IAM, Fusion SaaS, and third-party identity platforms.
- Govern privileged access and service accounts.
3. OCI Security & Network Architecture
- Design secure OCI landing zones for Fusion integrations and extensions.
- Define network segmentation, VCNs, subnets, security lists, NSGs, and private endpoints.
- Ensure secure connectivity via FastConnect, VPN, and private service endpoints.
4. SIEM Integration & Security Monitoring
- Design and implement log ingestion pipelines from Oracle Fusion and OCI into enterprise SIEM platforms.
- Integrate Audit Logs, Access Logs, IAM logs, and OCI Flow Logs with SIEM tools.
- Define security use cases..
- Enable continuous compliance monitoring and audit readiness.
5. CASB & SaaS Security Posture
- Integrate Oracle Fusion Cloud with CASB solutions for SaaS visibility and governance.
- Define data loss prevention (DLP), shadow IT detection, and anomaly detection policies.
- Monitor user behavior and risky access patterns across Fusion applications.
- Enforce enterprise SaaS security policies and regulatory controls.
6. Integration & API Security
- Secure Fusion REST/SOAP APIs and OCI Integration flows.
- Define OAuth, token management, certificate lifecycle, and API throttling.
- Ensure secure integration with external systems and enterprise platforms.
- Architect secure retry, replay, and error-handling mechanisms.
7. Incident Response & Security Operations
- Define incident response procedures for Fusion and OCI environments.
- Support forensic investigations using audit and access logs.
- Coordinate with SOC, IAM, and Cloud Operations teams during security events.
- Drive root-cause analysis and continuous improvement.
8. Advisory & Stakeholder Collaboration
- Act as trusted security advisor to business, IT, and program leadership.
- Review solution designs and provide inputs.
- Partner with integration, data, and infrastructure architects.
- Mentor security analysts and junior architects.
Required Skills & Qualifications
Technical Skills
- Deep expertise in Oracle Fusion Cloud Security (HCM / ERP preferred).
- Strong understanding of OCI architecture and security services.
- Hands-on experience with SIEM platforms (Splunk, Sentinel, QRadar, etc.).
- Working knowledge of CASB solutions (Defender for Cloud Apps, Netskope, etc.).
- Strong knowledge of IAM, RBAC, federation, MFA, OAuth, SAML.
- Experience securing SaaS, APIs, integrations, and cloud networks.
Compliance & Security Knowledge
- Strong understanding of enterprise compliance and regulatory frameworks.
- Experience with audit controls, SoD analysis, and access certification.
- Familiarity with zero-trust and defense-in-depth principles.
Soft Skills
- Strong communication and stakeholder management skills.
- Ability to translate security risks into business impacts.
- Comfortable working in large, global transformation programs.
Never miss an opportunity! Create an alert based on the job you applied for.
