SECURITY BY DESIGN: BUILDING A COMPLIANCE-READY ORACLE EBS IDENTITY ECOSYSTEM WITH FEDERATED ACCESS AND ROLE-BASED CONTROLS

Securing legacy enterprise systems such as Oracle E-Business Suite (EBS) remains a significant challenge for U.S. public sector organizations tasked with protecting sensitive citizen data while maintaining compliance with stringent federal and state regulations. This paper presents a security-by-design approach for building a compliance-ready identity ecosystem around Oracle EBS using federated access and role-based access controls (RBAC). The proposed architecture integrates modern Identity and Access Management (IAM) platforms such as Azure AD and Okta to enable Single Sign-On (SSO), dynamic role provisioning, and audit-ready access tracking. A comparative analysis of traditional and federated models is provided, highlighting measurable improvements in access governance, user accountability, and regulatory compliance. Drawing from real-world modernization efforts within U.S. government agencies, the article showcases the transformative impact of aligning Oracle EBS identity infrastructure with federal standards such as FISMA, HIPAA, and IRS Pub 1075. Emphasis is placed on the tangible benefits to local communities—including enhanced data security, streamlined public service delivery, and reduced risk of identity-related fraud. Additionally, the paper explores the emerging role of AI in role optimization and anomaly detection to support sustainable identity governance. This work aims to serve as a blueprint for government and regulated organizations seeking to modernize Oracle EBS securely and compliantly.