Chief Security Officer

Overview

The Chief Security Officer (CSO) defines policies for the management of information security across Oracle. The CSO provides direction and advice to help Lines of Business (LoBs) protect Oracle information assets (data), as well as the data entrusted to Oracle by our customers, partners, and employees. The CSO also coordinates the reporting of information security risk to senior leadership such as the Oracle Security Oversight Committee and Board of Directors. CSO programs direct and advise on the protection of data developed, accessed, used, maintained, and hosted by Oracle.

The CSO also oversees Oracle’s Integrated Cyber Center (ICC), the entity responsible for centralized coordination of security incident response, customer trust and security communications matters.

Information Security Manager Program

The Information Security Manager (ISM) Program objectives are to raise information security awareness and reduce risk. The program provides a formal context through which Oracle employees collaborate and work collectively to promote good security practices and an understanding of Corporate Information Security Policies within their respective Lines of Business.

More Information

• Oracle Information and Assets Classification
• Oracle Corporate Security Architecture Oversight
• Oracle Security Incident Reporting and Response