Oracle HCM Security Lead - Contract

ABOUT THE ROLE We are seeking an experienced Oracle HCM Security Lead to join a high-profile Oracle Fusion HCM implementation. In this senior role, you will own the end-to-end security and authorisation workstream — from design and configuration through to post-go-live support — working closely with client stakeholders, functional consultants, and audit teams. This is an opportunity to shape and govern a complex, enterprise-scale security model across the full Oracle HCM suite and leave a lasting impact on the client's people systems landscape. WHAT YOU'LL DO 1. Strategic Leadership & Workshop Facilitation • Lead and drive the security workstream including end-to-end planning, resource allocation, and delivery governance. • Facilitate and chair client workshops to elicit business requirements, define access models, and align stakeholder expectations. • Prepare and present workshop outputs: decision logs, action trackers, and security design documentation. • Serve as the primary point of contact for all authorisation and security-related queries. 2. Authorisation Design & Governance • Define and govern the overall Authorisation Principles and Framework for the Oracle HCM SaaS implementation. • Design and enforce RBAC structures including job roles, duty roles, abstract roles, and data security policies. • Establish and maintain Segregation of Duties (SoD) conflict matrices and remediation frameworks. • Define data security policies governing Person, Payroll, and Workforce Management data access. • Ensure the authorisation model aligns with the client's risk appetite, regulatory requirements, and governance policies. 3. Configuration, Build & Validation • Configure and build authorisation rules, role hierarchies, and data security policies in Oracle HCM SaaS (Fusion). • Conduct structured validation exercises with business users, functional consultants, and IT stakeholders. • Perform iterative testing and refinement to address access gaps, over-provisioning, and SoD conflicts. . Manage and govern the Oracle Security Console and associated role management tooling. 4. Documentation & Standards • Author and maintain comprehensive Authorisation Configuration Documentation, role catalogues, and access matrices. • Produce and own the Security Design Document (SDD) throughout the project lifecycle. . Maintain traceability between business requirements, design decisions, and configured rules. 5. User Access Provisioning & Audit Readiness • Oversee user access provisioning ensuring adherence to the Joiner-Mover-Leaver (JML) framework. • Manage access remediation: SoD conflict resolution, excessive access removal, corrective action tracking. • Support internal and external audit activities with evidence packs, access reports, and control documentation. • Define and implement Periodic Access Review (PAR) processes operational post go-live. 6. Risk, Compliance & Governance • Ensure security controls align with applicable compliance frameworks and internal IT governance policies. • Collaborate with the client's Risk, Compliance, and Internal Audit functions to validate security design. • Identify, escalate, and track security risks and non-compliant configurations with remediation strategies. 7. Team Leadership & Mentorship • Manage and mentor junior and mid-level security team members with technical guidance and quality oversight. • Conduct QA reviews of security configurations, documentation, and deliverables. • Define workstream tasks, estimate effort, and assign responsibilities in alignment with project plans. 8. Testing & Post-Go-Live Support • Define and execute security testing strategies for SIT and UAT, including test scenario design and execution. • Triage and resolve complex access and security defects raised during testing cycles. • Support hypercare and post-go-live activities: break-fix resolution, access query management, and stabilisation. • Contribute to transition and handover of security operations to the client's support function. WHAT WE'RE LOOKING FOR 1. Essential Requirements • 10+ years of hands-on experience in Oracle HCM (Fusion) Security and Authorisation, with at least 2 full end-to-end implementations in a lead capacity. • Deep expertise in Oracle HCM SaaS security architecture: RBAC, Abstract Roles, Job Roles, Duty Roles, Data Roles, and Oracle Security Console. • Strong understanding of Oracle HCM modules: Core HR, Payroll, Talent Management, Absence Management, Workforce Management, and Recruiting. • Proven experience defining data security policies including Person Security Profiles, Payroll Security Profiles, and LDG security. • Demonstrated expertise in SoD conflict identification, management, and remediation within Oracle HCM. • Experience managing and facilitating client workshops, requirement sessions, and design reviews. • Proficiency in producing high-quality security documentation: Security Design Documents, Role Catalogues, Access Matrices. • Experience supporting SIT, UAT, and post-go-live security activities including defect triage and access validation. • Strong stakeholder management with the ability to engage business, IT, and audit functions at all levels. • Experience managing and mentoring security team members in a consulting or project delivery environment. 2. Desirable / Advantageous • Oracle Cloud HCM certification in Security or relevant functional modules. • Experience with GRC tooling for automated SoD conflict detection. • Background in Big 4 consulting or large-scale enterprise transformation programmes.