Putting Data Security
and Protection First

Automated, always-on,
architected-in security.

Oracle Software as a
Service Security

All Oracle SaaS solutions offer the benefits of a modern cloud suite. They provide complete, agile, secure, and open solutions for the entire organization without the caveats that come with updating and managing a costly, physical on-premises solution.

And with Oracle’s security-first approach, these solutions also offer complete peace of mind.


Response and remediation

Oracle Identity Cloud Service (IDCS) delivers automated behavioral monitoring across the full stack, and offers secondary authentication like multifactor authentication (MFA).

Oracle Cloud Access Security Broker Service (CASB) can also analyze behaviors and act according to the risk level assigned to a user or application. In cases where suspicious behavior is identified, Oracle CASB can block user access to high-risk services, automatically alert approved users, and take action based on pre-defined policies—for example, automatically notifying auditors about suspicious transactions.



Oracle delivers complete SaaS security controls to application owners, auditors, and security operations teams through three strategic technologies:

  • Oracle Identity Cloud Service (IDCS)
  • Oracle Cloud Access Security Broker (CASB)
  • Oracle Risk Management Cloud (RMC)

Together, they enable enterprise users to analyze how user credentials and entitlements are being used to better identify suspicious behavior and rapidly respond to it. This includes looking at user behavior, and cross-referencing it with historical data to create an advanced, automated monitoring and response model.


Integrated cloud-security services

Every Oracle Fusion SaaS application includes Oracle Identity Cloud Service (IDCS) built in by default. This ensures consistent, identity-based security is woven into all parts of the enterprise security fabric.

Oracle Cloud Access Security Broker (CASB) also acts as part of the security foundation for all Oracle SaaS applications, enabling greater visibility into the entire cloud stack—while giving IT the tools they need for automated threat detection, predictive analytics, and security configuration management.

For enhanced risk-mitigation controls and the enablement of application compliance standards, Oracle SaaS users can use Oracle Risk Management Cloud (RMC).

Oracle SaaS Security in retail.

A global ecommerce retailer develops and delivers customer-facing apps to users around the world as part of its core business. While it has to deal with the complexities of launching apps and services at a global scale, it also needs systems in place to deal with fraudulent purchases.

Oracle Identity Cloud Service (IDCS) helps ease the pressure by automatically identifying suspicious transactions. Using geolocation data, Oracle IDCS can flag when transactions come from unexpected locations (such as when a user’s IP address doesn’t match where their account is registered). It can then apply two-factor authentication via SMS to determine whether the transaction is valid.

By automatically flagging suspicious transactions and applying additional user verification, the retailer can protect its bottom line and brand image without having to dedicate significant IT resources.