Cloud 101CircleEventsBlog

Download Publication

Critical Controls Implementation for Oracle E-Business Suite
Critical Controls Implementation for Oracle E-Business Suite

Critical Controls Implementation for Oracle E-Business Suite

Release Date: 04/05/2021

Oracle E-Business Suite (EBS) clients should address cloud migration as much more than a data center migration project. Cloud migration is a significant opportunity to “start over” regarding security by using best practices, tools, services, and techniques unique to the cloud. Moving an EBS implementation to the cloud can significantly strengthen an organization’s security posture.


However, deploying EBS in the cloud can also bring severe risks if not done right. This paper outlines 20 critical controls that will help an organization determine what security changes are needed when deploying Oracle EBS in the cloud. These controls map to CSA’s overarching Top 20 Critical Controls for Cloud Enterprise Resource Planning Customers.


Please note that this is a reference document whose purpose is to promote best practices for cloud deployments of the Oracle E-Business Suite. It does not replace Oracle Corporation's documentation and specific instructions. Specifically, this document is to be used as part of the Enterprise Resource Planning Working Group's ongoing dialogue.


Key Takeaways:
  • The control implementation (rationale) for 20 critical controls, including: segregation of duties, change management, continuous monitoring, data encryption, and more
  • The specific requirements and steps needed to implement the 20 critical controls
Who It’s For: Information security professionals, compliance professionals, and database and system administrators who belong to organizations that deploy (or want to deploy) EBS in the cloud.
Download this Resource

Prefer to access this resource without an account? Download it now.

Bookmark
Share
Related resources
What is IAM for the Cloud?
What is IAM for the Cloud?
CSA Code of Conduct Gap Resolution and Annex 10 to the CSA Code of Conduct for GDPR Compliance
CSA Code of Conduct Gap Resolution and Annex 10...
State of Financial Services in Cloud
State of Financial Services in Cloud
How the CISO Drives Value Across the Enterprise
How the CISO Drives Value Across the Enterprise
Published: 09/22/2023
What is Cloud Repatriation?
What is Cloud Repatriation?
Published: 09/22/2023
Data Security Platforms: 9 Key Capabilities and Evaluation Criteria
Data Security Platforms: 9 Key Capabilities and Evaluation Criteria
Published: 09/19/2023
Reshaping Security Landscapes: The Essence of Cyber Transformation
Reshaping Security Landscapes: The Essence of Cyber Transformation
Published: 09/15/2023

Acknowledgements

Shamun Mahmud
Shamun Mahmud
Senior Research Analyst, CSA

Shamun Mahmud

Senior Research Analyst, CSA

This person does not have a biography listed with CSA.

Bowen Close Headshot Missing
Bowen Close

Bowen Close

This person does not have a biography listed with CSA.

Juan Perez-Etchegoyen
Juan Perez-Etchegoyen

Juan Perez-Etchegoyen

Juan-Pablo Perez-Etchegoyen is the chief technology officer of Onapsis, where he leads the innovation team to ensure the company stays on the cutting edge of the business-critical application security market. He serves as co-chair of the CSA Enterprise Resource Planning (ERP) working group, where he leads the development of multiple documents and surveys to help organizations secure their ERP applications while migrating to the cloud. He is...

Read more

Frederik Weidemann Headshot Missing
Frederik Weidemann

Frederik Weidemann

This person does not have a biography listed with CSA.

Dan Hiestand Headshot Missing
Dan Hiestand

Dan Hiestand

This person does not have a biography listed with CSA.

Michael Miller Headshot Missing
Michael Miller

Michael Miller

This person does not have a biography listed with CSA.

Are you a research volunteer? Request to have your profile displayed on the website here.

Interested in helping develop research with CSA?

Related Certificates & Training