SUMMARY:

Over 18 years of Oracle project experience. Past projects in a range of industries Financial, IT, Automotive, Local and Federal Government to the Olympics. Implemented, supported or managed projects for such companies. Senior Governance Risk and Compliance EBS Security Administrator, Human Capital Management and Oracle Applications DBA in implementations, upgrades and production support.

TECHNICAL SKILLS:

• 11.0.3 thru R12.1.2
• Application System Administration
• Application of Application and Database patch Maintenance of Applications and Databases (Oracle Application and Custom)
• Export and Imports Database Cloning
• Installation of application development tools and utilities
• Backup and Recovery using Veritas and Oracles
• RMAN Creation of backup process
• Performance
• Administrative Utilities (AD)
• AD admin
• AD Patch
• AD Merge patch
• Tuning
• OBIEE
• RBAC and UMX
• GRC Suite
• EGRC
• OACG
• OPCG
• OTCG
• OCCG
• Workflow
• Business Intelligence
• IPayments
• Discoverer
• Alerts
• Applications Reporting
• Workflow iSetup\Setup Manager
• Supply Chain
• CRM
• Contracts
• Inventory
• IProcurement iSupplier Portal
• Order Entry
• Order Management
• Purchasing
• Shipping
• Warehouse Management
• Assets
• Cash Management
• Collections
• Customers Online
• General Ledger
• Accounting Engine
• Internet Expenses iStore iPayment
• MRC
• MOAC Reporting Currencies
• Payables
• Human Capital Management iRecruitment
• Payroll
• Service HRMS
• Time and Labor
• SETS/UTILITIES:
• Oracle UPK
• Oracle 8i, 9i, 10g, 11g
• 9i 10g RAC
• Microsoft SQL Server
• Mobile Server
• AS Portal and AS Mobile
• Oracle Financials
• Federal Financials
• Oracle Enterprise Manager
• Discoverer
• Oracle Data Integrator
• Oracle Internet Directory
• Linux
• HP3000
• SUN Solaris
• Windows 95,97,98,NT,2000
• Applications System Administration
• Applications Technology Stack
• Service Web Apps & Framework
• MS Office
• Business Objects
• Microsoft SQL Server
• SQL and SQL PLUS
• Quicken
• Some AutoCAD, and WERS

PROFESSIONAL EXPERIENCE:

Confidential

Sr. Oracle EBS Security RBAC and GRC Consultant

Responsibilities:

• Implement RBAC to current EBS production system. Structure and implementation RBAC for R12.2 upgrade project and national roll out.
• A multi layer EBS rollout and upgrade. Construct a Multi role management method, to accommodate the unique business model and regulatory demands of the spirits industry.

Confidential

Sr. Oracle EBS Security RBAC and GRC Consultant /Oracle Apps DBA

Responsibilities:

• Install and configuration of Oracle GRC. Utilizing Confidential for current and future access control, CCG for upgrade and implementation of Additional modules.
• Analyzation of current physical configuration. Setup/configuration of new rules in compliance with HIPAA, SOX, PCI DSS.
• Lead security compliance program activities as specified. Maintain and enforce policies, standards, and procedures to ensure compliance with internal standards and regulatory requirements.
• Coordination with departments and management to develop and evaluate disaster recovery and business continuity planning exercises.
• Partnered with stakeholders in an Access Review program. Validation of viability and effectiveness of business continuity plans and other recovery testing activities. Worked with PMO for project management of project and provided analytical support for security - focused projects and initiatives.

Confidential

Sr. Oracle EBS Security RBAC and GRC Consultant /Oracle Apps DBA

Responsibilities:

• Corrective Action addressing internal audit of Oracle R12 Upgrade. Compliance with National Laboratory, National Nuclear Security Administration Contract according to federal regulations OMB A-123, and SAE’s 13-004, and 13-04. Compliance with HIPAA, SOX, PCI and DSS.
• Comprehensive Risk Assessment related to the business processes and controls within the Oracle EBS environment. Access control improvements identified as part of the audit. Review of Financial CEMLI’s.
• Design reductions of Responsibilities via RBAC. Move from seeded menus created in implementation to secured access utilizing UMX and RBAC. Redesign and removal of personalization’s to properly secure and maintain true security of forms and web interface modules.
• Implementation of GRC to maintain federal compliance as stated under. Track security deficiencies, documentation of monitoring and process. Manage follow through of the remediation and reduce overall risk. Business process mapping. Access review. Functional Access review. Functional setup testing.
• Coordination with internal and external auditors and ensure that compliance assessments (i.e. HIPPA, PCI DSS) are completed on a regular basis.

Confidential

Sr. Oracle EBS Security RBAC and GRC Consultant /Oracle Apps DBA

Responsibilities:

• Recommended and advised on expected results from each of the desired modules and paired requirements to modules.
• Presented FMO with a synopsis of the abilities of GRC, breaking down the responsibilities of each individual module, how that modules interacts with the other modules. How the information gained and governed by the different modules is or can be utilized across and between the modules.
• Requirements review to ensure selected technology would deliver desired results.
• Advised Confidential on best practices in implementing Oracle GRC. Developed a step by step plan and script for implementation. Advisement and rendering of prototypes for GRC modules, including CCG, ACG and Confidential . Presented a strong recommendation on utilization of TCG, and auditing of sensitive data.
• Confidential has a very complex network and environment with unique methods of managing the EBS. Advisement and troubleshooting of resolutions and workarounds to contractor implementing GRC because of these anomalies.
• Remediation of current security of the EBS, securing responsibilities and roles in the 11i system. Recommended methods of closing current security gaps in 11i. Recommendation on how to remediate those gaps and prepare for R12.
• Recommendation and remodeling security in their current 11i instance so that it conforms to the needs of R12 security model, and Oracle’s current course of security for the EBS. Advised on differences in the R12 offering. Remediation of work that will need to be done in the move to R12 model. Remediation in the effort to move to MOAC. Remediation of the work that will need to be done to responsibilities that will have to be built in R12 because of the utilization of RBAC and UMX in release 12.

Confidential

Sr. Oracle EBS Security RBAC and GRC Consultant /Oracle Apps DBA

Responsibilities:

• Segregation of Duties Remediation. Audit of application controls effectiveness to ensure the integrity and security of data and design.
• User provisioning redesign and Security audit of the EBS roles and responsibilities identifying risk and SOD violations.
• Setup and Support of user provisioning and Identity Management for R12 upgrade.
• During the post go-live security audit of their R12 upgrade.
• Closed security gaps in the implementation, cutover and go-live.
• Introduced the new security model implemented for release 12 of the EBS.
• Presented and implemented proper security model for R12 with the proliferation of web based pages in the e-business suite.
• Gave recommendations for post go-live security measures.
• Demo and presentation of Oracle’s GRC. Advocated the benefits of ACG, TCG and CCG in their environment.

Confidential

Sr. Oracle EBS Security RBAC and GRC Consultant /Oracle Apps DBA

Responsibilities:

• Introduction of RBAC/ UMX security module for R12 and modules that require its usage.
• OLM install with content server.
• Cash Management UMX transition.
• Implementation of Oracle GRC modules Confidential & Confidential for access and provisioning, TCG for transaction integrity and auditing, and CCG to effectively manage R12 implementation.
• Remediation of Audit and SOX compliance attestation.
• Remediation of SOD (Segregation of Duties) conflicts.
• Managed and remediated Confidential external audit findings. Identified and closed security gaps.
• Demonstrated and gave a sold recommendation to implement oracles GRC suite to help avoid and manage future compliance issues.
• Setup encryption and secured credit card processing in the EBS. Encrypted credit card information.
• Secured access to credit card numbers and information.
• Implemented audit tracking to fill gaps in human capital and satisfy compliance with HIPAA, SOX, PCI and DSS.

Confidential

Sr. Oracle EBS Security RBAC and GRC Consultant /Oracle Apps DBA

Responsibilities:

• Implementation of Oracle’s ERP R12 with RBAC/UMX and GRC. Architecture and installations to support implementation.
• Installation and Instance management, patching, cloning data migration and RICE development support in a MOAC environment.
• Gathered security requirements.
• Identified and managed information security risks in business processes around Oracles EBS systems.
• Implored user provisioning best practices. Designed around SOD, risk-based controls and management.
• Compliance with HIPAA, SOX, PCI and DSS.
• Advised business to help them understand security in Oracles EBS.
• So that they could make decisions that will enhance their security posture.
• OBIEE reporting. Usage of Oracles UPK toolkit. Go live and Production support rendered.

Confidential

Sr. Oracle EBS Security RBAC and GRC Consultant /Oracle Apps DBA

Responsibilities:

• Implementation of Oracle R12 RBAC/UMX and GRC security model in R12 re-implementation. Lead governance team for Systems Support Division that services the nation.
• Built model for implementation of RBAC, Human Resources, Benefits, Time and Labor, Accounts Payable, Accounts Receivable, Inventory, and General Ledger.
• Structured project plan and framework to follow for divisional roll-on to RBAC model.
• Structured model roles for iteration 2 (CRP2). Setup structure for road forward implementations as additional clients (users) are rolled on.
• Oracle Governance, Risk & Compliance (GRC) Modules, Oracle Access Controls Governor ( Confidential ), Oracle Configuration Controls Governor (CCG).
• Gathered requirements data and mapped current and future state business processes to the application .
• Documented plans to address functional gaps between the packaged application and the redesigned processes.
• POC of redesigned user access and controls. Identified opportunities for improvement in the areas of Oracle Advanced Controls, Oracle security, and Oracle User access and provisioning.

Confidential

Sr. Oracle EBS Security RBAC and GRC Consultant /Oracle Apps DBA

Responsibilities:

• Governance and Presentation of benefits in implementing Oracle UMX and RBAC and or GRC. Emphasizing UMX and RBAC’s streamlining of responsibilities, simplification of management and ease of global roll out and management of E-Business Suite system, and GRC’s clear audit layout for SOX compliance.
• Structured implementation plan and setup for Oracle R12 re-implementation taking advantage of the use of RBAC and UMX for User provisioning and GRC for security monitoring, prevention and risk.
• Demonstrated the benefits of its use in a global roll out focusing on Australia, New Zealand and South Africa affiliates first. Audited users and responsibilities.
• Normalized responsibilities to SOD (segregation of duties) compliance and least privileged.
• Mentored client employees on usage, function and setup of RBAC, GRC and UMX. APAC, EMEA, Canada and the Americas to follow.