IOUG at Oracle Security Customer Advisory Council

By Michelle Malcher, IOUG Director of Membership

The purpose of the Security Customer Advisory Council is to provide feedback on the security roadmaps for Oracle products, as well as advise Oracle as it relates to various Oracle Software Security Assurance activities and how customers are implementing best practices in the realms of security.

IOUG has been involved in the council to provide feedback from the members and get direction for training. It is also a good opportunity to discuss best practices and what different companies are focusing on related to security.

Topics discussed include:

1. Database security - We reviewed what is available now in Oracle 11gR2 and the priorities for security issues for future releases.

2. Application security - We talked about Fusion Applications and the role of security and what is new with IDM.

3. The Oracle Software Security Assurance team is working on providing standards for secure configuration. They continue with internal training for security best practices. They have released white papers on secure configuration and continue to work with IOUG on Webcasts for members.

4. Security patching and patch sets - how to take advantage of My Oracle Support and configuration management.

5. Compliance and governance issues - what are the top issues?

We are discussing with the Oracle Software Security Assurance team about having continued Webcasts and an upcoming security patching survey. These things help provide members best practices and solutions for issues they might be facing.

Also, the discussions on roadmap for Oracle products helped plan the security Bootcamp at COLLABORATE and gave us a great chance to give information back about the products, what is working and where there is room for improvement.