Oracle Security Project Implementation (no infrastructure OCI or DBA backup)

Consultant 3+ years of experience

Senior Consultants 5+ years of experience

Work youll do

As a Senior Consultant in our Cyber & Strategic Risk Application Security team, you will be part of our Oracle practice and will be responsible for delivering application security for Oracle Cloud ERP, HCM, SCM and business process controls implementations and assessments. Responsibilities will include assessment, design and implementation of application security, automated controls and governance, risk and compliance (GRC).

Qualifications

Required:

• 3+ years of experience in large and complex projects with multiple rollouts for countries/regions
• 3+ years of experience in leading security design workshops
• Experience with business process risks & controls design
• BA/BS Degree in Computer Science, Cyber Security, Information Security, Engineering, Information Technology, Management Information Systems, Finance, Accounting & Technology or Business

• Experience with designing Oracle Cloud roles across functional areas for Oracle Cloud Financials, Supply Chain Management (SCM), Human Capital Management (HCM) or Enterprise Performance Management (EPM)
• Experience leading end to end Oracle Cloud Security and controls implementation projects (or) Experience in managing Oracle Cloud security operate engagements across functional areas (ERP, HCM, SCM or EPM)

• Experience in designing, configuring, and implementing Oracle Risk Management Cloud

Preferred:

• Previous Consulting or Big 4 experience preferred
• Certifications such as: CISSP, CISM or CISA is desired
• Experience with Oracle Cloud role design across functional (ERP, HCM, SCM and EPM)
• Experience with Oracle Cloud Infrastructure (OCI) security
• Knowledge of Oracle Cloud security design and implementation methodology
• Experience analyzing Segregation of Duties (SOD) and Sensitive access (SA)
• Knowledge on patch regression testing and impact analysis as part of release management activity across the functional areas (ERP, HCM, SCM or EPM)
• Understand implications of Service level Agreements (SLAs) and change management process
• Strong understanding of Segregation of Duties (SOD) frameworks and personally identifiable information (PII)
• Knowledge of identifying key risks and controls, knowledge of Sarbanes Oxley (SOX) readiness, controls optimization, as well as configuration of controls around security, business process and within the Oracle Cloud RMC modules
• Knowledge of business process, controls optimization, user provisioning and security lifecycle maintenance
• Expertise with Oracle Risk Management Cloud Advanced Access Controls (AAC), Advanced Financial Controls (AFC) and Financial Reporting Controls (FRC)
• Strong understating of Single Sign-on (SSO) and Multi-factored authentication (MFA)

• Knowledge/experience in identity access management tools and/or Oracle Identity Cloud Service (IDCS)
• Knowledge/experience in data protection tools and techniques

• Oracle Risk Management Cloud Certified Implementation Professional certification is desired
• Oracle Cloud Infrastructure Security Professional certification is desired