JOINT BASE SAN ANTONIO - RANDOLPH AFB, Tex. -- The Department of the Air Force (DAF) took a leading role in expanding secure cloud options for the entire Department of Defense (DoD) by spearheading the authorization of Oracle Fusion Software as a Service (SaaS) on Oracle Cloud Infrastructure (OCI) Gen 2 at Impact Level 4 (IL4).
This significant achievement, marked by a Defense Information Systems Agency (DISA)-granted Provisional Authorization (PA) on Feb. 6, 2025, is the result of a collaborative effort between the Business and Enterprise Systems Directorate’s Human Resources Division (GBH), DISA, and Oracle.
Although Oracle Fusion SaaS has held an IL4 authorization since 2020, this new PA is groundbreaking. It enables the platform to operate within the latest security framework.
GBH guided the vendor through each demanding phase of the Boundary Cloud Access Point (BCAP) process to include:
- Champions of Innovation: GBH championed its inclusion in the BCAP ecosystem, advocating for enhanced capabilities across the department.
- Navigating the Labyrinth: GBH served as the critical link between Oracle and DISA, meticulously managing timelines, documentation, and action items to ensure a seamless and successful authorization process.
- Tailoring Security Documentation: GBH provided mission-critical DoD context, seamlessly integrating specific security details and ensuring all documentation aligned with both stringent DISA requirements and DAF mission needs.
- Guardians of Continuous Compliance: GBH proactively manages the Authority to Operate, relentlessly pursuing timely renewals and ensuring unwavering adherence to stringent security requirements.
This collaborative achievement, driven by the DAF’s leadership and DISA's robust security framework, paves the way for accelerated and highly secure cloud adoption across the DoD.
By enabling secure access to Oracle Fusion SaaS on OCI Gen 2, the DAF has unlocked new possibilities for modernizing critical Human Capital Management systems while ensuring the highest levels of data security and compliance.