Title β Oracle Cloud Environments Manager - Application Architect-Oracle Applications
Location: \"Remote within UK - Project is based in Scotland and there maybe travel to Edinburgh/Glasgow as required
Base location will be nearest client office. Expenses would be paid for travel to offices other than base\"
Eligibility β 5 years unbroken residency / Minimum 5 years of continuous UK residency
Required Skills
Oracle Cloud tenancy expertise, managing Oracle Cloud environments, SSO, LBAC, cloning, PaaS tenancy\"
'SaaS
Oracle Cloud Infrastructure β SaaS Tenancy Expertise Required:-
β’ Provisioning of two new Fusion development instances, along with ongoing support aligned to the SSS/IBM deployment plans.
β’ Configuration of IDCS SSO Federation and OKTA Preview SSO Federation.
o Oracle will introduce a mandatory IAM upgrade in June, impacting access management, confidential applications, and OAuth. Support will be required to implement necessary changes across the PAS landscape in collaboration with my team.
β’ Configuration of LBAC and Access Control Lists (ACLs), ensuring IP allow-listing is restricted to the required actor groups.
β’ Management of instance cloning, aligned with maintenance windows and cloning availability. Ongoing requests are expected as defined in the SSS/IBM plans.
β’ Execution of post-clone activities, including enforcing access restrictions and removal of production URLs (supporting documentation will be provided).
β’ Data masking requirements (to be discussed in further detail) including:
o Documentation and auditing of all changes.
PaaS
Oracle Cloud Infrastructure β PaaS Tenancy Expertise Required:-
β’ Provisioning of two new Gen 3 Oracle Integration Cloud (OIC) instances and configuration of required services.
β’ Implementation of secure IP whitelisting within each instance.
β’ Load balancer configuration with strict ACLs, including connectivity to SFTP servers.
β’ Creation and management of users within OCI and OIC.
β’ Creation of service accounts and assignment to appropriate groups for OIC access.
β’ Setup of confidential applications to ensure integration with SaaS environments.
β’ Network configuration updates to enable connectivity from SSS source systems.
β’ Deployment of SSH, PGP, and X.509 keys for SFTP server named accounts, as required.
β’ Documentation and auditing of all changes.\"
