1. Security Guide
  2. Introduction

1 Introduction

Software-as-a-Service (SaaS) is changing technology today. SaaS applications shift responsibilities from retailers and their data centers to cloud service providers. The cloud service provider is responsible for upgrades, uptime and security. Oracle provides many retail clouds services, including Oracle Retail Process Orchestration and Monitoring Cloud Service.

The Oracle Retail Process Orchestration and Monitoring Cloud Service is a product that helps to run the batches for other retail products offered as cloud service like Merchandising, Retail Insights, and so on.

This document is divided into six main sections:

  • Responsibilities - The Responsibilities section of the document discusses the shared responsibility model of security.

  • Oracle Retail SaaS Security - This section of the document outlines the policies and procedures Oracle Retail uses to meet its security responsibilities.

  • Process Orchestration and Monitoring Cloud Service Architecture - This section details the architecture of the Process Orchestration and Monitoring Cloud Service, particularly as it relates to security.

  • Process Orchestration and Monitoring Cloud Service Authentication, Authorization and Data Filtering - This section describes how Process Orchestration and Monitoring Cloud Service performs authentication and authorization, as well as how data filtering can be applied.

  • Additional Secure Set Up for Process Orchestration and Monitoring Cloud Service Suite - This section describes other security set up that must be performed by retailers and Oracle Retail.

  • Frequently Asked Questions - This section includes a number of specific questions related to security that are frequently asked by prospects, customers and implementers.

The goals of this document are to:

  • Explain the security responsibilities of Oracle and the Retailer in the SaaS model

  • Educate retailers about Oracle's cloud security policies and controls

  • Describe Process Orchestration and Monitoring Cloud Service's

    • general architecture, particularly as it relates to security

    • security features

  • Define additional steps customer IT staff must perform to communicate securely with Process Orchestration and Monitoring Cloud Service

  • Guide Customer administrators in the actions they need to perform to

    • create application users

    • assign roles to application users

  • Provide answers to frequently asked questions about Process Orchestration and Monitoring Cloud Service security