Overview

Global Physical Security is responsible for defining, developing, implementing, and managing all aspects of physical security for the protection of Oracle’s employees, facilities, business enterprise, and assets. Oracle’s physical security standards and policies have been developed to align with various physical security industry initiatives, including the International Organization for Standardization (ISO), United States Customs Trade Partnership Against Terrorism (CTPAT), American Institute of Certified Public Accountants (AICPA) Statement on Standards for Attestation Engagements (SSAE) No. 18, and the Payment Card Industry Security Standards Council.

Risk-Based Approach

Oracle uses a risk-based approach to physical and environmental security to effectively balance, prevention, detection, protection, and response, while maintaining a positive work environment that fosters innovation and collaboration among Oracle employees and partners.

Oracle Global Physical Security regularly performs risk assessments to confirm that the correct and effective mitigation controls are in place and maintained.

Global Security Operations Center

Oracle operates Global Security Operations Centers (GSOC) in diverse geographical locations. These GSOCs are an integral part of a multi-faceted Global Physical Security (GPS) controls designed to enable security and safety for Oracle facilities and personnel. The GSOCs handle communications for business continuity and crisis management activities.

GSOC personnel are experienced, skilled analysts who monitor and respond to Oracle’s global footprint of facilities’ security alarms and provide personal safety assistance to employees 24/7.

The GSOC operating principle is ‘interoperability sustains.’ In practice, this means that staff are capable of serving, remotely if needed, any of the GSOC operations globally. This practice supports real time staffing adjustments that support resiliency and operational continuity in a variety of challenging circumstances.