Information Security Engineer
Job in
Duluth, St. Louis County, Minnesota, 55806, USA
Listed on 2026-06-04
Listing for:
Hollstadt Consulting
Full Time
position Listed on 2026-06-04
Job specializations:
-
IT/Tech
Cybersecurity, Systems Engineer, Security Manager, IT Consultant
Job Description & How to Apply Below
Rate
: $56.15-$62.06/hour W2, dependent on skills and qualifications
The client is seeking an Information Security Engineer with Oracle security expertise to implement, configure, and operationalize security controls for the migration from Oracle E-Business Suite (EBS) to Oracle Fusion Cloud, supported by Oracle Cloud Infrastructure (OCI) and PaaS services such as Oracle Integration Cloud (OIC) and Visual Builder Cloud Service (VBCS).
This role is responsible for executing and validating security implementations across Oracle platforms, including RBAC configuration, Segregation of Duties (SoD) enforcement, system hardening, identity integration (SSO/MFA), and monitoring. The Engineer works closely with architects, implementation partners, and business teams to ensure controls are deployed correctly, tested thoroughly, and audit-ready at go-live and beyond.
Key Responsibilities- Implement security controls across Oracle Fusion, OCI, and PaaS (OIC, VBCS) environments.
- Configure:
- Fusion roles, privileges, and data security policies
- OCI IAM users, groups, compartments, and policies
- PaaS security settings and service configurations
- Translate architectural designs into working, enforceable controls.
- Troubleshoot and resolve security configuration issues and defects during build and testing.
- Execute and configure:
- RBAC models aligned to job roles and least privilege
- SoD and Sensitive Access (SA) rules within Oracle and supporting tools
- Support and facilitate:
- Role build, configuration, and iterative refinement
- System Integration Testing (SIT) and User Acceptance Testing (UAT)
- Perform:
- Access validation and conflict testing (positive/negative scenarios)
- Remediation of SoD conflicts in coordination with business owners
- Assist in maintaining accurate and audit-ready role and access documentation.
- Configure automated business process controls (ABPC) within Oracle Fusion.
- Execute:
- Control testing and validation of effectiveness
- Audit policy configuration for high-risk transactions
- Implement compensating controls where automation is not feasible:
- Document procedures and evidence requirements
- Support control owners in execution and validation
- Configure and validate identity integration across:
- Oracle Fusion
- OCI and OIC
- Implement:
- Federation with enterprise identity provider
- SSO and MFA enforcement policies
- Conditional access and session controls
- Configure and test:
- Break-glass/emergency access accounts
- Authentication logging and traceability
- Support end-to-end identity testing across environments.
- Implement OCI security configurations, including:
- IAM policies, dynamic groups, and least-privilege access
- Configure network security controls:
- Security lists, private endpoints, service gateways
- Firewall rules and egress restrictions
- Deploy and tune:
- OCI Web Application Firewall (WAF)
- CIS-aligned configurations
- Vault/key management and secrets protection
- Secure object storage settings
- Enable logging and monitoring:
- OCI audit logs, WAF logs, and service telemetry
- Integration with enterprise SIEM and alerting pipelines
- Configure security for integrations across OIC, Fusion, OCI, and external systems.
- Implement:
- API authentication and authorization mechanisms
- Secure credential storage (vaults/secrets management)
- Encryption of data in transit and message integrity controls
- Enforce:
- Least-privilege access for integration accounts
- Separation of duties across service accounts
- Configure:
- Secure endpoints (private endpoints, API gateways where applicable)
- Logging of API calls and integration events
- SIEM ingestion and alerting for anomalies
- Maintain integration security documentation and evidence artifacts.
- Execute security testing across all environments, including:
- Access validation and role-based testing
- Control effectiveness testing
- Identify and remediate:
- Security defects, misconfigurations, and control gaps
Success Measures
- Security controls successfully implemented and functioning across Oracle environments
- RBAC and SoD models enforced with minimal access defects in testing and production
- SSO/MFA fully operational across Fusion, OCI, OIC, and VBCS
- OCI and PaaS environments hardened and aligned to security baselines
- Automated and manual controls tested, evidenced, and audit-ready
- Security issues identified and resolved early through testing cycles
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
Search for further Jobs Here:
×