Deloitte | India Offices of the US

Work you’ll do

Key responsibilities include:

• Operate and sustain scalable, SOX-compliant security controls for Oracle OCI/IaaS and PaaS/SaaS-adjacent services; support audits with evidence, traceability, and control testing.
• Perform advanced troubleshooting and root-cause analysis for identity, access, and integration issues; coordinate with Oracle and other vendors as needed.
• Operate and enhance Single Sign-On (SSO) and federation patterns across Oracle services (SaaS/PaaS), including certificate lifecycle, IDP changes, and authentication policy updates.
• Configure and administer security for Oracle PaaS services such as Oracle Integration Cloud (OIC), Visual Builder Cloud Service (VBCS), and Fusion Analytics Warehouse (FAW), including ongoing access governance and environment support.
• Administer OCI Identity and Access Management (OCI IAM / Identity Domains): manage users/groups, dynamic groups, policies, compartments, and service access using least privilege; support periodic access recertifications.
• Operate Cloud Guard and Data Safe (and related services such as Vault/Key Management) as part of security monitoring and governance; tune detectors/recipes, triage findings, and drive remediation.
• Lead run-state requirements intake (incidents/requests/enhancements), maintain security design documentation/runbooks, and facilitate stakeholder working sessions in an onsite/offshore model.
• Drive continuous improvement: identify recurring issues, implement preventive controls, automate repeatable tasks, and promote reusable patterns across environments/projects.

Required skills (Operate-focused)

• 2–5+ years in Oracle OCI/IaaS and PaaS security with hands-on experience in run/operate (production support) plus exposure to assessments/design/implementations (implementation experience preferred).
• Strong understanding of Identity and Access Management (IAM) concepts: SSO, federation, OAuth/OIDC/SAML, API authentication/authorization, and cloud security posture principles.
• Working experience with IAM tools such as Oracle Identity Cloud Service (IDCS)/OCI IAM Identity Domains, SailPoint, or Saviynt (preferred).
• Hands-on with OCI Identity Domains operations: user/group administration, group mappings, policy updates, and identity lifecycle processes such as SCIM provisioning.
• Experience operating and configuring security capabilities such as Cloud Guard, Data Safe, Vault/Key Management, database authentication controls (e.g., Autonomous Transaction Processing (ATP/ATB) auth patterns), SFTP security, and VBCS identity propagation.
• Experience with OCI logging/audit and integrations to a SIEM; able to support access reviews, permissions audits, and risk mitigation activities (including SOD considerations where applicable).
• Strong collaboration skills across developers, cloud/platform teams, functional leads, and information security/risk stakeholders.
• Excellent communication skills; able to create and maintain SOPs, runbooks, and audit-ready documentation.
• Solid project management/organizational skills in an operate model (prioritization, SLAs, release coordination, and change management).

Preferred skills

• Broader experience across Oracle IaaS/PaaS security services and reference architectures.
• Deeper experience with OCI Identity Domains (multi-domain patterns, tenancy/compartment strategy, policy design).
• Prior consulting/Big 4 experience preferred.
• Certifications such as CISSP, CCSP, and OCI Foundations (plus).
• Automation with Terraform and/or scripting to support repeatable operate tasks (e.g., policy baselines, drift checks, evidence collection).
• Troubleshooting/analysis skills using PL/SQL (as applicable to investigations and validation)