Back to jobs
What you will be doing.
Job Description
Description
Enphase Energy is a global energy technology company and a leading provider of solar, battery, and electric vehicle charging products. Founded in 2006, our innovative microinverter technology revolutionized solar power, making it a safer, more reliable, and scalable energy source. Today, the Enphase Energy System enables users to make, use, save, and sell their own power. Enphase is also one of the most successful and innovative clean energy companies in the world, with more than 80 million products shipped across 160 countries.
Join our dynamic teams designing and developing next-gen energy technologies and help drive a sustainable future!
This role at Enphase requires working onsite 3 days a week, with plans to transition back to a full 5 day in office schedule over time.
We are seeking an experienced GRC Security Manager to lead Oracle Fusion access governance with a strong focus on SOX compliance, audit readiness, and control integrity. Reporting to the Senior Manager, Accounting, this role will oversee SOD, sensitive access, and user access review activities while partnering with business and IT teams to assess risk, drive remediation, and maintain a strong access control environment.
What you will be doing.
- Lead day-to-day Oracle Fusion access governance activities, including SOD ruleset maintenance, sensitive access monitoring, user access reviews, issue tracking, and compliance reporting.
- Maintain and enhance Oracle Fusion SOD and sensitive access rulesets and perform user- and role-level risk analyses aligned to business changes and control requirements.
- Partner with business process owners, controllership, and IT to evaluate access risks and update Oracle Fusion roles and entitlements using least-privilege and risk-based design principles.
- Govern Oracle Fusion role design and access changes by validating requests, assessing control impacts, enforcing approvals, and coordinating testing and implementation.
- Conduct SOD and sensitive access risk assessments to identify conflicts, excessive access, and control gaps, and drive timely remediation or mitigating control design.
- Manage recurring SOD, sensitive access, and user access reviews, including exception identification, reviewer follow-up, remediation tracking, evidence retention, and escalation of unresolved issues.
- Support internal and external audits and SOX testing by maintaining clear documentation of access decisions, review results, exceptions, mitigating controls, approvals, and remediation status.
- Assess the control implications of business changes, system updates, and new role requirements, and update access governance practices as needed.
- Maintain strong knowledge of Oracle Fusion business processes, role structures, and reference data to support practical, risk-based access decisions.
Who you are and what you bring.
- Bachelor’s degree in accounting, information systems, computer science, or related field.
- Professional certification such as CISA, CRISC, or CISSP is preferred.
- 10+ years of experience in Oracle Fusion access governance, including SOD ruleset design, sensitive access monitoring, user and role-level risk analysis, remediation, and audit support.
- Hands-on experience managing recurring Oracle Fusion SOD, sensitive access, and user access review cycles, including issue triage, reviewer coordination, remediation tracking, and audit evidence retention.
- Experience partnering with business and IT teams to design, test, update, and rationalize Oracle Fusion roles and entitlements based on risk, control, and operational needs.
- Strong understanding of SOX, internal controls, and audit expectations related to ERP access governance, including exception documentation, approvals, mitigating controls, and remediation governance.
- Strong knowledge of Oracle Fusion role architecture, provisioning concepts, and business process configurable controls.
- Strong ability to manage cross-functional stakeholders, prioritize remediation, and drive issues to closure in a fast-paced environment.
- Self-starter who can navigate change, learn new technologies, and solve business problems in a fast-paced environment.