Presentation is loading. Please wait.

Presentation is loading. Please wait.

Introduction to the Oracle GRC Platform

Published byRita Levering Modified over 9 years ago

Similar presentations

Presentation on theme: "Introduction to the Oracle GRC Platform"— Presentation transcript:

1 Introduction to the Oracle GRC Platform
4/14/2017 OIC Oracle Independent Consultants Oracle GRC Professionals We Implement GRC Solutions Using Oracle GRC Applications Introduction to the Oracle GRC Platform Welcome to the OIC Presentation, “Introduction to the Oracle GRC Platform.” I spend most of my time working on activities to improve and grow the OIC GRC Practice. Sometimes, I forget just how hard it was in the beginning just to be able to identify the applications, which are currently included in the Oracle GRC Platform. I developed this presentation to provide you with an overview of the Oracle Technology Products and Applications, which are included in the Oracle GRC Platform. You will learn that you simply can’t use the generic word “GRC” when you discuss GRC Requirements and/or Oracle GRC Solutions. The Oracle GRC Platform includes several suites of Oracle GRC Technology Products and Applications. You need to be able to map the company’s GRC requirements to a specific Oracle Technology Product or Application (e.g. Identity Management (IdM) and Configuration Controls Governor (CCG). 4/14/2017 We Implement GRC Solutions Using Oracle GRC Applications

2 4/14/2017 Story Board Identify and Describe the Oracle Governance, Risk and Compliance (GRC) Technology Products and Applications Links to Resources Introduction to OIC on YouTube OIC Contact Information Story Board In this short presentation, I will simply have time to identify and the Oracle Governance, Risk and Compliance (GRC) Technology Products and Applications that are included in the Oracle GRC Platform. I will only have time to review a couple of slides with you; however, you can download the PowerPoint presentation, “Introduction to the Oracle GRC Platform”, which includes more detail including my slide notes. I have also provided you with links to resources such as additional information, fact sheets, whitepapers, and videos. Oracle GRC is a fast growing discipline with scarce resources. If you have a background in Database Security, Auditing, Accounting, Oracle Financials, Non-Oracle GRC or Oracle GRC, then you may want to consider leveraging your current skills to learn how to implement GRC solutions using the Oracle GRC Technology Products and/or Applications. 4/14/2017 We Implement GRC Solutions Using Oracle GRC Applications

3 Oracle GRC Platform Applications
4/14/2017 Oracle GRC Platform Applications Oracle GRC Insight GRC Intelligence (GRCI) 3.0 Oracle GRC Process Management Enterprise GRC Manager (EGRCM) 8.0 Oracle GRC Application Controls Application Access Controls Governor (AACG) 8.5 Transaction Controls Governor (TCG) Configuration Controls Governor (CCG) 5.5.1 Preventive Controls Governor (PCG) 7.3.1 4/14/2017 We Implement GRC Solutions Using Oracle GRC Applications

4 Oracle GRC Platform Technology Products
4/14/2017 Oracle GRC Platform Technology Products Oracle Audit Vault Oracle Database Vault Oracle Identity & Access Management Suite Oracle Access Manager Oracle Identity Manager Oracle Identity Federation with Fedlet Oracle Directory Services Plus Oracle Enterprise Manager Application Management Products Middleware Management Products Database Management Products Hardware Management Products Heterogeneous Management Products 4/14/2017 We Implement GRC Solutions Using Oracle GRC Applications

5 Oracle GRC Platform Oracle GRC Insight Oracle GRC Process Management
4/14/2017 Oracle GRC Platform Oracle GRC Insight Oracle GRC Process Management Oracle GRC Application Controls Oracle GRC Technology Controls Oracle GRC Platform The Oracle GRC Platform currently includes Oracle GRC Technology Products and Applications that fail into one of the following Oracle GRC Core Capabilities: Oracle GRC Insight Oracle GRC Process Management Oracle GRC Application Controls Oracle GRC Technology Controls Fusion Governance, Risk, and Compliance Intelligence combines qualitative and quantitative information and presents this information in integrated dashboards and reports, thereby allowing executives and managers to confidently identify and focus efforts on key risks and control issues including access policy conflicts. The solution delivers both out-of-the-box dashboards as well as hundreds of pre-delivered metrics so that business users can quickly construct their own reports for on-the-spot analysis. Oracle GRC Process Management Oracle Enterprise Governance, Risk, and Compliance Manager - Fusion Edition, reduces overlapping and redundant policies, risks, and controls associated with overlapping GRC mandates and standards. With a central content repository, dynamic workflows for compliance and risk management processes, and pre-built integration to automated application controls, Oracle Enterprise GRC Manager solves the immediate requirements associated with current regulatory or industry mandates, while also providing a robust foundation to satisfy future needs. Minimize Reliance on Manual Controls. Reduce Risk of Fraud. Control User Access. Undetected changes to application and access controls can impact the reliability and integrity of financial reporting and flow of business activities. Given increased scrutiny from customers, regulators, auditors, investors, and partners, organizations need to monitor critical application access, configurations, and transactions to ensure that operations adhere to company or regulatory policy and that breaches are identified and attended to as early as possible. Oracle GRC Technology Controls deliver robust access and security controls for all levels of the IT infrastructure - from applications, middleware, and the database - and across heterogeneous environments. 4/14/2017 We Implement GRC Solutions Using Oracle GRC Applications

6 4/14/2017 Oracle GRC Insight Oracle Fusion Governance, Risk, and Compliance Intelligence (Fusion GRC Intelligence) Oracle GRC Intelligence (GRCI) 3.0 Oracle GRC Intelligence (GRCI) 3.0 is also referred to as Oracle Fusion Governance, Risk, and Compliance Intelligence (Fusion GRC Intelligence). The OIC has installed Oracle GRCI on our server hosted by The Planet. Contact Us at to learn more about GRCI and how you can gain access to our instance of Oracle GRC Intelligence 3.0, which is integrated with Application Access Controls Governor (AACG) We will also integrate GRCI 3.0 with GRC Manager (GRCM) 3.0. 4/14/2017 We Implement GRC Solutions Using Oracle GRC Applications

7 Oracle GRC Process Management
4/14/2017 Oracle GRC Process Management Centralize GRC Content. Automate Risk and Compliance Processes. Monitor Control Status. Benefits Single central repository for policies, risks, and controls Automation of compliance and risk management workflows Oversight of automated and manual control activities Resources Oracle Enterprise Governance, Risk, and Compliance Manager - Fusion Edition Data sheet: Oracle Enterprise Governance, Risk, and Compliance Manager - Fusion Edition (PDF) Download your FREE exclusive Open Compliance and Ethics Group (OCEG) white paper "CIO at the Center: Critical Conversations for Driving Principled Performance The Economist Intelligence Unit white paper, "Fortifying the Enterprise: GRC Strategies" Centralize GRC Content. Automate Risk and Compliance Processes. Monitor Control Status. Oracle Enterprise Governance, Risk, and Compliance Manager - Fusion Edition, reduces overlapping and redundant policies, risks, and controls associated with overlapping GRC mandates and standards. With a central content repository, dynamic workflows for compliance and risk management processes, and pre-built integration to automated application controls, Oracle Enterprise GRC Manager solves the immediate requirements associated with current regulatory or industry mandates, while also providing a robust foundation to satisfy future needs. Benefits Single central repository for policies, risks, and controls Map regulations to policies, objectives, risks, and controls to provide evidence of compliance; Reduce redundant information silos and overlapping tasks, while allowing separate lines of business to address the distinct risk and compliance requirements of their organization; and Utilize date-effective audit trails that track the "who, what, and when" of changes made to risk-control matrices, work papers, and other evidence Automation of compliance and risk management workflows Establish an enterprise understanding of risk with a disciplined process to identify, assess, and treat risks; Streamline the full compliance lifecycle from documentation and assessment to remediation, certification, and reporting; and Provide a common workspace to enable a cross-enterprise team approach to compliance and risk management Oversight of automated and manual control activities Identify emerging risk exposures by monitoring results from both automated and manual controls; Shorten remediation and certification cycles with closed-loop integration to controls monitoring solutions; and Integrate with business applications such as Enterprise Performance Management (EPM) and Enterprise Resource Planning (ERP) to support Finance, IT, and industry-focused GRC requirements 4/14/2017 We Implement GRC Solutions Using Oracle GRC Applications

8 Oracle GRC Application Controls
4/14/2017 Oracle GRC Application Controls Application Access Controls Governor (AACG) 8.5 Transaction Controls Governor (TCG) 8.5 Configuration Controls Governor (CCG) 5.5.1 Preventive Controls Governor (PCG) 7.3.1 Oracle GRC Application Controls Oracle GRC Application Controls is a suite of four (4) Governors, which provide Oracle Application Controls. Oracle recently released Oracle GRC Controls (GRCC) 8.5, which includes both Application Access Controls Governor (AACG) 8.5 and Transaction Controls Governor (TCG) I believe that the most current release is patched to “Hands On” Experience The OIC is looking for Talented Oracle Professionals who are Oracle GRC Contract Professionals who have “hands on” experience using the most current release of the Oracle GRC Application Controls Suite of Applications. Need Oracle GRC Application Controls Training? The OIC provides training for the Oracle GRC Application Controls Suite of Applications. All of our Oracle GRC Training includes FREE access for ninety (90) days to Release of the Oracle Vision Instance and one or more of the following Oracle GRC Applications: AACG 8.5, TCG 8.5, CCG and PCG In addition, all students are able to access our Oracle GRC Tutor Author Courseware. We convert all Oracle GRC Training Documentation to both pdf and html formats. Students are given read only access to our GRC Courseware. At some point in the near future, we will also provide the OIC Oracle GRC Courseware in UPK format. Non OIC Member Contractors can register for one or more of our Oracle GRC Courses at OIC Member Contractors receive a 25% discount off the retail price of all OIC Training Tools and Services and they can register for our courses at Access Oracle GRC Application Controls You can simply become an OIC Member Contractor by registering for “90 Days Access to Oracle GRC Controls” at You will be given access to the Oracle Documentation as well as physical access to our dedicated Release Oracle Vision Instance AND to the entire Oracle GRC Application Controls Suite of Applications for ninety (90) days. This provides you with sufficient time to gain the “hands on” experience you need working with the Oracle GRC Application Controls Suite of Applications to work on projects to implement these applications. 4/14/2017 We Implement GRC Solutions Using Oracle GRC Applications

9 Application Access Controls Governor (AACG) 8.5
4/14/2017 Application Access Controls Governor (AACG) 8.5 Real-Time Enforcement of Segregation of Duties and Access Policies Benefits Real-time monitoring and enforcement of SOD controls, including prevention of access provisioning that would jeopardize SOD Graphical simulation to look into access points, detect SOD conflicts, and evaluate treatment options Comprehensive library of best practice SOD controls Resources Data sheet: Oracle Application Access Controls Governor (PDF) Real-Time Enforcement of Segregation of Duties and Access Policies The ability to fine-tune user access—and to track that access—is key to complying with regulatory requirements and ensuring corporate security. Oracle Application Access Controls Governor provides real-time monitoring and proactive enforcement of crucial access policies, such as those that support segregation of duties (SOD). The system anticipates potential SOD conflicts before they arise, and even prevents any assignment of roles or responsibilities within an application that would compromise proper segregation of duties. Application Access Controls Governor also extends key access controls to "super-users" and temporary or contract workers. Benefits Real-time monitoring and enforcement of SOD controls, including prevention of access provisioning that would jeopardize SOD Simplifiy SOD maintenance through automated simulation and remediation Graphical simulation to look into access points, detect SOD conflicts, and evaluate treatment options Preview the effects of clean up and sensibly advise on the best remediation Comprehensive library of best practice SOD controls Rapid deployment and time to value using pre-delivered, best-practice controls library 4/14/2017 We Implement GRC Solutions Using Oracle GRC Applications

10 Transaction Controls Governor (TCG) 8.5
4/14/2017 Transaction Controls Governor (TCG) 8.5 Continuous Monitoring of Business Transactions Benefits Continuous monitoring of transactions across processes including Procure-to-Pay, Order-to-Cash, Hire-to-Retire, and Record-to-Report Statistical logic to systematically uncover inappropriate or suspicious transactions and control violations Intuitive authoring of access, master data, and transaction controls Resources Data sheet: Oracle Transaction Controls Governor (PDF) Continuous Monitoring of Business Transactions Oracle Enterprise Transaction Controls Governor continuously monitors transactions against policies to detect suspicious transactions or redundant business practices that get in the way of performance. By spotting anomalies in everyday transactions, the system prevents cash leakage. Escalation of risk, fraud, and costly remediation are avoided—Oracle Enterprise Transaction Controls Governor tracks events that indicate: Potential violation of internal controls - for example, an employee raises multiple requisitions for a single purchase totaling an amount greater than her approval level; Heightened levels of risk - for instance, an unexpected delay in anticipated cash receipts which would result in a shortfall in projected cash flow; and Reportable events - for example, a foreign subsidiary writes off a significant bad debt Benefits Continuous monitoring of transactions across processes including Procure-to-Pay, Order-to-Cash, Hire-to-Retire, and Record-to-Report Increase visibility into the actual operations of the controls environment Statistical logic to systematically uncover inappropriate or suspicious transactions and control violations Mitigate exposure to error, misuse, and fraud from out-of-policy business transactions Intuitive authoring of access, master data, and transaction controls Create policies and analyze controls using an intelligent and interactive interface 4/14/2017 We Implement GRC Solutions Using Oracle GRC Applications

11 Configuration Controls Governor (CCG) 5.5.1
4/14/2017 Configuration Controls Governor (CCG) 5.5.1 Powerful, Flexible Control over Application Integrity and Functionality Benefits Monitor key setups for any change, track "Who, What, Where and When," and receive notification of critical setup changes Document application setup with point-in-time snapshots Identify changes and discrepancies with snapshot comparisons, to manage changes that can have significant financial or regulatory impact Resources Data sheet: Configuration Controls Governor (PDF) Powerful, Flexible Control over Application Integrity and Functionality Oracle Configuration Controls Governor is an automated solution that controls and tracks changes to key application setup data, using notifications and detailed reports to facilitate change management without burdening core business operations. The solution enables tracking of all changes, providing a detailed audit history, and records designated setup values, permitting quick comparison of values from different points in time or environments. With Oracle Configuration Controls Governor, you can ensure application integrity, audit changes, and continuously monitor setups. As a result, you can reduce financial loss, regulatory cost, audit effort, and the risks associated with them. Adding Preventive Controls Governor enhances these benefits by blocking unwanted changes, requiring third-party approval and/or reason codes for sensitive changes, and logging change attempts. Benefits Monitor key setups for any change, track "Who, What, Where and When," and receive notification of critical setup changes Complete audit trail for changes to key configurations Document application setup with point-in-time snapshots Accelerated analysis and audit Identify changes and discrepancies with snapshot comparisons, to manage changes that can have significant financial or regulatory impact Consistent setup and operating standards across multiple environments 4/14/2017 We Implement GRC Solutions Using Oracle GRC Applications

12 Preventive Controls Governor (PCG) 7.3.1
4/14/2017 Preventive Controls Governor (PCG) 7.3.1 Ensure Data Quality and Privacy with Granular Control Benefits Enforcement of data quality policies such as mandatory fields, customizable LOVs (Lists of Values) and insertion of default values Enforcement of tolerance limits, such as maximum values for transactions required to meet regulatory or corporate requirements Restriction of user views, allowing users to view only the fields needed to complete a legitimate transaction Resources Data sheet: Oracle Preventive Controls Governor (PDF) Ensure Data Quality and Privacy with Granular Control Control over the quality of applications data starts at the user level. Without such control, your company is left open to mistakes, loss of data, and fraud. The Oracle Preventive Controls Governor provides fine-grained control over user viewing and editing of key data, while tracking changes (or attempted changes) by users. With it, you can limit or control which data fields applications users can change or see, define the types of data users can input in various fields, and limit the values of transactions to enforce regulatory or corporate guidelines. The Oracle Preventive Controls Governor provides not only assured regulatory compliance and protection against fraud, but also the prevention of many common data-entry errors. Benefits Enforcement of data quality policies such as mandatory fields, customizable LOVs (Lists of Values) and insertion of default values Monitor and prevent unauthorized changes to critical application setup and data Enforcement of tolerance limits, such as maximum values for transactions required to meet regulatory or corporate requirements Enforce data integrity with field, block, and form change control Restriction of user views, allowing users to view only the fields needed to complete a legitimate transaction Protect sensitive information from unauthorized viewers 4/14/2017 We Implement GRC Solutions Using Oracle GRC Applications

13 Oracle GRC Technology Controls
4/14/2017 Oracle GRC Technology Controls Oracle Audit Vault Oracle Database Vault Oracle Identity Manager (IdM) Oracle Enterprise Manager Oracle GRC Technology Controls Unlike Oracle GRC Applications, you must have an Oracle technical background including experience as an Oracle Database Administrator (DBA) to effectively and efficiently install and implement Oracle GRC Solutions as the Server and Database Levels. The GRC Applications provide GRC solutions at the Application level. 4/14/2017 We Implement GRC Solutions Using Oracle GRC Applications

14 Oracle Database Vault Reduce the Cost of Protecting Data Benefits
4/14/2017 Oracle Database Vault Reduce the Cost of Protecting Data Benefits Pro-actively safeguard application data stored in the Oracle database Address regulatory requirements Restrict ad-hoc access to application data Deploy with confidence Resources Data sheet: Oracle Database Vault for Oracle E-Business Suite (PDF) Data sheet: Oracle Database Vault (PDF) Oracle Database Vault with Oracle Database 11g Release 2 (PDF) Cost Effective Security and Compliance with Oracle Database 11g Release 2 (PDF) Reduce the Cost of Protecting Data Regulations such as Sarbanes-Oxley, Payment Card Industry (PCI) Data Security Standard (DSS), Health Insurance Portability and Accountability Act (HIPAA), Gramm-Leach-Bliley Act (GLBA) and similar global directives call for separation-of-duties and other preventive controls to ensure data integrity and data privacy. With Oracle Database Vault, organizations can pro-actively safeguard application data stored in the Oracle database from being accessed by privileged database users. Application data can be further protected using Oracle Database Vault's multi-factor policies that control access based on built-in factors such as time of day, IP address, application name, and authentication method, preventing unauthorized ad-hoc access and application by-pass. Pro-actively safeguard application data stored in the Oracle database-Restrict access by unauthorized database users - even privileged users - by using powerful access controls built into the Oracle database. Address regulatory requirements—Implement separation-of-duty and other real-time preventive controls. Restrict ad-hoc access to application data— Prevent application-bypass with multi-factor policies that are enforced in the database for high security and performance. Deploy with confidence—Use certified default policies for Oracle E-Business Suite, Oracle PeopleSoft, and Oracle Siebel CRM applications. Resources-Download this PowerPoint so that you can utilize the links for Resources. 4/14/2017 We Implement GRC Solutions Using Oracle GRC Applications

15 4/14/2017 Oracle Audit Vault Reduce the Cost of Compliance Reporting and Database Monitoring Benefits Simplify compliance reporting Detect threats quickly Lower IT costs with audit policies Transparently collect and consolidate audit data Provide a secure and scalable repository Resources Data sheet: Oracle Audit Vault (PDF) Oracle Audit Vault (PDF) Oracle Audit Vault – Technical Information Reduce the Cost of Compliance Reporting and Database Monitoring Oracle Audit Vault provides a secure and highly scalable audit warehouse, enabling simplified reporting, analysis, and threat detection on audit data. In addition, database audit settings are centrally managed and monitored from within Audit Vault, reducing IT security cost. With Oracle Audit Vault, organizations are in a much better position to enforce privacy policies, guard against insider threats, and address regulatory requirements such as Sarbanes-Oxley and PCI. Benefits Simplify compliance reporting—Easily analyze audit data and take action in a timely fashion with out-of-the-box reports or custom reporting via the industry's only open warehouse schema for audit information Detect threats quickly—Quickly and automatically detect unauthorized activities that violate security and governance policies; thwart perpetrators from covering their tracks Lower IT costs with audit policies—Centrally manage audit settings across all databases from a single console Transparently collect and consolidate audit data—Collect audit data in a timely fashion across disparate systems Provide a secure and scalable repository—Leverage Oracle's industry-leading security and data warehousing technology to provide a secure and scalable audit warehouse 4/14/2017 We Implement GRC Solutions Using Oracle GRC Applications

16 Oracle Identity and Access Management Suite Plus
4/14/2017 Oracle Identity and Access Management Suite Plus Comprehensive, Best-in-Class, Hot-Pluggable Solution Benefits Faster deployments Improved security Lower TCO Resources Data sheet: Introduction to Oracle Identity Manager (PDF) Attestation of Identity Information Oracle Identity Federation Oracle Identity Management Solutions – Technical Information Data sheet: Introduction to Oracle Identity Management 11g (PDF) Core Technology for User Provisioning and Cost-Efficient Compliance Oracle Audit Vault provides a secure and highly scalable audit warehouse, enabling simplified reporting, analysis, and threat detection on audit data. In addition, database audit settings are centrally managed and monitored from within Audit Vault, reducing IT security cost. With Oracle Audit Vault, organizations are in a much better position to enforce privacy policies, guard against insider threats, and address regulatory requirements such as Sarbanes-Oxley and PCI. Benefits Faster deployments—An integrated suite approach enables faster deployments and streamlined day-to-day operations Improved security—Proven, best-in-class solutions work together as a single solution by abstracting and centralizing security for applications and web services Lower TCO—A single solution cuts the time spent integrating disparate components, and provides a single point of contact for support, a single license contract, and the backing of the world's largest enterprise software company 4/14/2017 We Implement GRC Solutions Using Oracle GRC Applications

17 Oracle Identity and Access Management Suite Applications
4/14/2017 Oracle Identity and Access Management Suite Applications Oracle Access Manager Oracle Identity Manager Oracle Identity Federation with Fedlet Oracle Directory Services Plus Oracle Identity and Access Management Suite Applications The Oracle Identity and Access Management Suite of Applications includes: Oracle Access Manager Oracle Identity Manager Oracle Identity Federation with Fedlet Oracle Directory Services Plus The next slide describes the Oracle Access Manager. 4/14/2017 We Implement GRC Solutions Using Oracle GRC Applications

18 4/14/2017 Oracle Access Manager User Access Management for Secure Business Interactions Benefits Strong authentication for secure access control Seamless interoperability for the heterogeneous enterprise Identity administration combined with access control Resources Oracle Access Manager Feature overview: Oracle Access Manager FAQ: Oracle Access Manager (PDF) Data sheet: Introduction to Oracle Access Manager (PDF) Data sheet: Oracle Access Management Solution (PDF) Oracle Access Manager (PDF User Access Management for Secure Business Interactions Oracle Access Manager allows users of your applications or IT systems to log in once and gain access to a broad range of IT resources. Oracle Access Manager provides an identity management and access control system that is shared by all your applications. The result is a centralized and automated single sign-on (SSO) solution for managing who has access to what information across your entire IT infrastructure. Benefits Strong authentication for secure access control—Eliminating latency in changes to identity policy information and improves authentication flexibility across mission critical applications Seamless interoperability for the heterogeneous enterprise—Supports the widest range of third party platforms including IBM Websphere, BEA Weblogic and SAP; thereby providing scalability and reducing TCO Identity administration combined with access control—Protects resources at the point of access and delegates authentication and authorization decisions to a central authority to help enforce compliance 4/14/2017 We Implement GRC Solutions Using Oracle GRC Applications

19 Oracle Identity Manager
4/14/2017 Oracle Identity Manager Core Technology for User Provisioning and Cost-Efficient Compliance Benefits Increase enterprise productivity and security Sustainable compliance Proven scalability Resources Oracle Identity Manager – Technical Information Data sheet: Introduction to Oracle Identity Manager (PDF) Attestation of Identity Information Oracle Identity Management for SAP Applications (PDF Core Technology for User Provisioning and Cost-Efficient Compliance The rights and attributes of each person who accesses your IT system continually change as roles, rules, and policies evolve within your enterprise. The challenge is compounded during mergers and acquisitions, and when sharing IT privileges with business partners and customers. Add to that, the burden associated with meeting regulatory and privacy requirements such as SOX, HIPAA, HSPD12, and many others. Oracle Identity Manager is a best-in-class user provisioning and administration solution that automates the process of adding, updating, and deleting user accounts from applications and directories; and improves regulatory compliance by providing granular reports that attest to who has access to what. Benefits Increase enterprise productivity and security—The industry's most comprehensive identity administration solution features automated user provisioning and de-provisioning, password management, and approval workflow to cut costs and improve security Sustainable compliance—The first solution to integrate comprehensive auditing, attestation, reporting, diagnostics, and separation of duties enforcement, makes meeting compliance and privacy requirements easier, affordable, and repeatable Proven scalability—Based on open architecture, Oracle supports some of the largest provisioning deployments in the industry today; managing thousands of resources and millions of users across geographies 4/14/2017 We Implement GRC Solutions Using Oracle GRC Applications

20 Oracle Identity Federation with Fedlet
4/14/2017 Oracle Identity Federation with Fedlet Cross-Domain User Access for Seamless Business Integration Benefits Rapid deployment Securely extend business capabilities Standards based interoperable architecture offers scalability Resources Oracle Identity Federation – Technical Information Data sheet: Introduction to Oracle Identity Federation 11g (PDF) Oracle Identity Federation 11g (PDF) Federated Identity Management (video, 3 min.) Solving Directory Integration Issues (video, 3 min.) Cross-Domain User Access for Seamless Business Integration Oracle Identity Federation 11g provides a self-contained and flexible multi-protocol federation server that can be rapidly deployed with your existing identity and access management systems. With its support for leading standards-based protocols, it ensures the interoperability to securely share identities across vendors, customers, and business partners without the increased costs of managing, maintaining, and administering additional identities and credentials. Benefits Rapid deployment—Accelerates federation by enabling identity providers and service providers to connect seamlessly within minutes. Deploy with minimal configuration and IT support with an out-of-the-box federated solution Securely extend business capabilities—Create trust relationships between partners and agencies by connecting users seamlessly and securely Standards based interoperable architecture offers scalability—Simplify the integration process between business domains with open architecture for better security, increased compliance and privacy, and lower costs 4/14/2017 We Implement GRC Solutions Using Oracle GRC Applications

21 Oracle Directory Services Plus
4/14/2017 Oracle Directory Services Plus Oracle Directory Server Enterprise Edition Benefits Rapid deployment Securely extend business capabilities Standards based interoperable architecture offers scalability Resources Oracle Directory Server EE - Data Sheet – Technical Information Oracle Directory Server EE – Features – Technical Information Benefits of Using Solaris 10 OS with Oracle Directory Server EE - Whitepaper Benefits of an Exclusive Multimaster Deployment of Oracle Directory Server EE - Whitepaper Oracle Directory Server Enterprise Edition (Formerly SUN Directory Server Enterprise Edition) is the best known directory server with proven large deployments in carrier and enterprise environments. It is also the most supported directory by ISVs, so it is ideal for heterogeneous environments. ODSEE provides a core directory service with embedded database, directory proxy, Active Directory (AD) synchronization and a Web administration console. Benefits Rapid deployment—Accelerates federation by enabling identity providers and service providers to connect seamlessly within minutes. Deploy with minimal configuration and IT support with an out-of-the-box federated solution Securely extend business capabilities—Create trust relationships between partners and agencies by connecting users seamlessly and securely Standards based interoperable architecture offers scalability—Simplify the integration process between business domains with open architecture for better security, increased compliance and privacy, and lower costs 4/14/2017 We Implement GRC Solutions Using Oracle GRC Applications

22 Oracle Enterprise Manager
4/14/2017 Oracle Enterprise Manager Application Performance Management Lifecycle Management Configuration and Change Management Application Quality Management Benefits Greater business value Maximum return on IT investment Unparalleled customer satisfaction Resources Oracle Enterprise Manager – Technical Information Oracle Enterprise Manager Resource Center Oracle Directory Server Enterprise Edition (Formerly SUN Directory Server Enterprise Edition) is the best known directory server with proven large deployments in carrier and enterprise environments. It is also the most supported directory by ISVs, so it is ideal for heterogeneous environments. ODSEE provides a core directory service with embedded database, directory proxy, Active Directory (AD) synchronization and a Web administration console. Benefits Greater business value—Improve application users' productivity and enhance business transaction availability. Oracle Enterprise Manager is the only IT management solution that delivers integrated user experience management, business transaction management and business service management in a single management console. This integrated approach helps you understand user experiences, track their transactions and relate performance issues to underlying IT infrastructure. Maximum return on IT investment—Simplify management and lower management-related labor costs for your entire application stack. Oracle Enterprise Manager is the only solution that manages applications, middleware, database, and hardware while also providing broad solutions for application performance management; configuration and change management; lifecycle management; and application quality management. This integrated approach eliminates unnecessary tools and delivers true end-to-end management visibility and control. Unparalleled customer satisfaction—Resolve IT issues proactively. Oracle Enterprise Manager is the industry’s first and only IT management solution to integrate support services. Within a single console you can manage your IT, interact with Oracle on support-related issues, exchange ideas and learn from your peers at other companies, and implement recommendations and fixes using automated workflows 4/14/2017 We Implement GRC Solutions Using Oracle GRC Applications

23 Oracle Enterprise Manager Products
4/14/2017 Oracle Enterprise Manager Products Application Management Products Middleware Management Products Database Management Products Hardware Management Products Heterogeneous Management Products 4/14/2017 We Implement GRC Solutions Using Oracle GRC Applications

24 Resources Oracle GRC Portal OIC Oracle GRC Training Portal
4/14/2017 Resources Oracle GRC Portal OIC Oracle GRC Training Portal OIC YouTube Channel OIC Blog Oracle GRC Portal If you are interested in learning more about the Oracle Governance, Risk and Compliance (GRC) Technology Products and/or Applications, then I do encourage you to visit the Oracle GRC Portal at I obtained most of the information for this presentation directly from the Oracle GRC Portal. It doesn’t cost anything to access this information and you don’t need an Oracle username or password to access the Oracle GRC Portal. OIC Oracle GRC Training Portal I also encourage you to visit the OIC Oracle GRC Training Portal at We use Moodle as our training platform. You can also use this OIC E-Learning Portal to register for any Oracle GRC Courses that we offer. I also suggest that you visit and post discussions on our forum at OIC YouTube Channel We have prepared and uploaded several presentations to the OIC YouTube Channel at These are audio presentations. You can also download the PowerPoint version of each presentation. Currently, the list of presentations available on the OIC YouTube Channel include: Introduction to OIC Create a New Account for My Oracle Support Accessing the OIC Oracle Partner Network (OPN) Portal Accessing the OIC Dedicated Release Oracle Vision Instance Introduction to Oracle GRC Platform 4/14/2017 We Implement GRC Solutions Using Oracle GRC Applications

25 4/14/2017 OIC Contact Information Roger Drolet, CPA, MBA, CISA, CITP I encourage you to contact me if you have questions, comments, or suggestions. I also encourage you to visit our website at and our YouTube channel at You can also review the current Oracle GRC courses that we offer at Use Your Resources I encourage you to take the time to learn how to access and use your OIC resources. The time and effort it takes to setup these resources and your investment in time to leverage these resources is nothing compared to the time and money you will save and/or potentially earn. You will significantly improve your Oracle skills and have the confidence knowing that you have access to My Oracle Support, Oracle Partner Network, and Release of the Oracle Vision Demo Instance. In addition, you have access to many other resources. We provide links to many of these resources on the Resource tab on our website at If you use the resources, which are available to our OIC Member Contractors, you will soon realize that you have thousands of dollars worth of tools and resources that are available to your 24/7 and 365 days a year. 4/14/2017 We Implement GRC Solutions Using Oracle GRC Applications

26 4/14/2017 Conclusion Thank you for taking the time to learn more about the OIC and Oracle Governance, Risk and Compliance (GRC) Technology Products and Applications. Conclusion Thank you for taking the time to learn more about the OIC and Oracle Governance, Risk and Compliance (GRC) Technology Products and Applications. Please do not hesitate to contact me if you have any questions, comments, suggestions, etc. 4/14/2017 We Implement GRC Solutions Using Oracle GRC Applications We Implement GRC Solutions Using Oracle GRC Applications

Download ppt "Introduction to the Oracle GRC Platform"

Similar presentations

ManageEngine IT360 Product Overview

ManageEngine IT360 Product Overview
Pennsylvania Banner Users Group 2008 Fall Conference Campus Identity Management in a Banner World.

Pennsylvania Banner Users Group 2008 Fall Conference Campus Identity Management in a Banner World.
DIGIDOC A web based tool to Manage Documents. System Overview DigiDoc is a web-based customizable, integrated solution for Business Process Management.

DIGIDOC A web based tool to Manage Documents. System Overview DigiDoc is a web-based customizable, integrated solution for Business Process Management.
May 2009 Oracle GRC Strategy – Barry Greenhut

May 2009 Oracle GRC Strategy – Barry Greenhut
© 2007 IBM Corporation Enterprise Content Management Integrating Content, Process, and Connectivity for Competitive Advantage Malcolm Holden October 2007.

© 2007 IBM Corporation Enterprise Content Management Integrating Content, Process, and Connectivity for Competitive Advantage Malcolm Holden October 2007.
Windows Server Deployment and Management With System Center.

Windows Server Deployment and Management With System Center.
Xavier Verhaeghe Vice President Oracle Security Solutions

Xavier Verhaeghe Vice President Oracle Security Solutions
Current impacts of cloud migration on broadband network operations and businesses David Sterling Partner, i 3 m 3 Solutions.

Current impacts of cloud migration on broadband network operations and businesses David Sterling Partner, i 3 m 3 Solutions.
Validata Release Coordinator Accelerated application delivery through automated end-to-end release management.

Validata Release Coordinator Accelerated application delivery through automated end-to-end release management.
11© 2011 Hitachi Data Systems. All rights reserved. HITACHI DATA DISCOVERY FOR MICROSOFT® SHAREPOINT ® SOLUTION SCALING YOUR SHAREPOINT ENVIRONMENT PRESENTER.

11© 2011 Hitachi Data Systems. All rights reserved. HITACHI DATA DISCOVERY FOR MICROSOFT® SHAREPOINT ® SOLUTION SCALING YOUR SHAREPOINT ENVIRONMENT PRESENTER.
© 2004 Visible Systems Corporation. All rights reserved. 1 (800) 6VISIBLE www.visible.com Holistic View of the Enterprise Business Development Operations.

© 2004 Visible Systems Corporation. All rights reserved. 1 (800) 6VISIBLE Holistic View of the Enterprise Business Development Operations.
Federal Student Aid Technical Architecture Initiatives Sandy England

Federal Student Aid Technical Architecture Initiatives Sandy England
On Privacy-aware Information Lifecycle Management (ILM) in Enterprises: Setting the Context Marco Casassa Mont Hewlett-Packard.

On Privacy-aware Information Lifecycle Management (ILM) in Enterprises: Setting the Context Marco Casassa Mont Hewlett-Packard.
Agile insurance carrier - What the carrier has to look like? Glenn Lottering Senior Director, EMEA Insurance Product Strategy and Sales Consulting.

Agile insurance carrier - What the carrier has to look like? Glenn Lottering Senior Director, EMEA Insurance Product Strategy and Sales Consulting.
Www.lumension.com © Copyright 2008 - Lumension Security Lumension Security PatchLink Enterprise Reporting™ 6.4 Overview and What’s New.

© Copyright Lumension Security Lumension Security PatchLink Enterprise Reporting™ 6.4 Overview and What’s New.
Creating a Secured and Trusted Information Sphere in Different Markets Giuseppe Contino.

Creating a Secured and Trusted Information Sphere in Different Markets Giuseppe Contino.
Realising the Potential of Service Oriented Architecture Kris Horrocks Connected Systems Division Microsoft.

Realising the Potential of Service Oriented Architecture Kris Horrocks Connected Systems Division Microsoft.
Contact Center Security Strategies Grant Sainsbury Practice Director, Dimension Data.

Contact Center Security Strategies Grant Sainsbury Practice Director, Dimension Data.
Access and Identity Management for Enterprise Portals Rohit Gupta Director, Identity Management Product Management Oracle Corporation.

Access and Identity Management for Enterprise Portals Rohit Gupta Director, Identity Management Product Management Oracle Corporation.
Become a Certified Oracle Identity Management PreSales and /or Sales Champion August 3, 20151Copyright © Oracle Independent Consultants (OIC) LLC, 2009.

Become a Certified Oracle Identity Management PreSales and /or Sales Champion August 3, 20151Copyright © Oracle Independent Consultants (OIC) LLC, 2009.

Similar presentations

Ads by Google