ERP Compliance Officer
We are seeking an experienced ERP Compliance Officer to safeguard the integrity, security, and regulatory compliance of our Oracle Fusion ERP environment within a government entity. This role goes beyond system functionality — it ensures that the ERP ecosystem operates in full alignment with government financial regulations, national cybersecurity frameworks, public accountability standards, and audit authority requirements. Reporting directly to the ERP Director, you will serve as the critical link between IT security, enterprise risk management, finance, internal audit, and external regulatory bodies. You will champion the principles of transparency, segregation of duties, least-privilege access, and defensible audit readiness across all ERP modules. If structured governance, strong control frameworks, and risk-based oversight define your professional DNA, this role is designed for you.
Key Accountabilities Oracle Fusion Governance & Risk Management Serve as the Subject Matter Expert (SME) for Oracle Fusion Risk Management Cloud (RMC). Design, implement, and maintain risk libraries, controls, and automated monitoring rules aligned with government compliance frameworks. Configure and manage RMC roles, advanced controls, financial reporting controls, and access certifications. Align ERP governance controls with national public-sector financial management regulations and cybersecurity directives. Maintain comprehensive documentation of control frameworks, risk registers, and governance processes.
Segregation of Duties (SoD) & Access Governance Own and continuously enhance the ERP Segregation of Duties (SoD) framework. Design risk matrices tailored to government finance, procurement, payroll, and budget execution processes. Proactively identify, assess, and remediate SoD conflicts using preventive and compensating controls. Conduct periodic user access reviews and certification campaigns in coordination with department heads. Ensure strict enforcement of least-privilege principles and delegation of authority matrices.
Internal Controls & Compliance Monitoring Conduct regular compliance reviews of ERP configurations, user access, and system controls. Ensure IT General Controls (ITGCs) are properly designed, implemented, and operating effectively. Monitor adherence to:Government financial control regulations National cybersecurity frameworks Data protection and privacy regulations Public procurement governance standards Lead quarterly and annual ERP compliance assessments. Maintain evidence repositories for audit and regulatory review. Audit Liaison & Regulatory Coordination Act as the primary liaison for internal audit, state audit authorities, and external regulatory auditors. Prepare and present ERP security documentation, control evidence, and risk assessments. Lead remediation initiatives for audit findings and ensure timely closure of action plans. Support investigations related to access misuse, control failures, or policy violations. Provide executive-level compliance reports to senior leadership and governance committees.
IT Controls & Environment Oversight Ensure change management, access provisioning, and privileged access controls comply with ITIL and government governance standards. Oversee environment segregation (DEV, TEST, UAT, PROD) and control migration processes. Monitor privileged and emergency access usage and enforce strict review protocols. Support quarterly patching and upgrade cycles from a compliance and control perspective.
Qualifications & Experience
Education Bachelor’s degree in Information Systems, Information Security, Accounting, Finance, or related discipline. Master’s degree in IT Governance, Risk Management, or Cybersecurity is preferred.
Professional Certifications (Preferred / Highly Desirable) CISA (Certified Information Systems Auditor) CRISC (Certified in Risk and Information Systems Control) CISM or CISSPOracle Fusion Cloud Security or Risk Management Certification ISO 27001 Lead Implementer or Lead Auditor ITIL Certification
Experience Requirements Minimum 8–12 years of professional experience, with at least 5+ years focused on Oracle Fusion ERP governance and security. Demonstrated experience working in government entities, public sector institutions, or highly regulated environments. Proven experience supporting:State audit authorities or government oversight bodies Public sector financial management systems Budgetary control, procurement governance, and payroll compliance Hands-on experience with:Oracle Fusion Risk Management Cloud (RMC) Segregation of Duties (SoD) design and remediation IT General Controls (ITGC) implementation and testing Access certification campaigns and control automation Experience managing ERP compliance within environments subject to:National cybersecurity mandates Data protection laws Public accountability and transparency regulations Strong understanding of government delegation of authority frameworks and approval hierarchies. Experience preparing compliance dashboards and executive-level governance reporting.