Paul Toal
Field CISO, Senior Director
Paul has worked in security for around 27 years, and, after 18 years at Oracle, is amongst Oracle EMEA's most senior security experts, focusing on a number of areas within the field of cyber security. Paul works at all levels within organisations, from board level through to architects and developers, explaining and demonstrating the importance of security in the connected, cyber world. He also spends a lot of time helping companies to understand how security is used to reduce risk, as well as improve user experience and an organisation's security posture. Paul provides a strong link between customers and product engineering, to collate requirements, incubate new services and drive strategy.
Paul has been involved in several large cloud transformation programmes as the lead security architect of the solution. In addition, Paul was one of the original authors of the UK Government's Identity Assurance specification (Gov.UK Verify).
Recently, Paul has co-authored a whitepaper looking at how to approach zero trust security within Oracle Cloud.
Recent Blogs
Managing access across multiple Oracle SaaS and PaaS environments
This blog explains the recommended identity architecture for enabling single sign-on across multiple SaaS and PaaS resources within Oracle Cloud
Zero Trust Security – Not a buzz word; but elixir of Cyber Security
Oracle built Oracle Cloud Infrastructure (OCI) with a security-first design principle, implementing core Zero Trust security from the ground up, through controls including Hardware-based Root of Trust, Isolated Network Virtualization, and hyper-segmentation. In addition to this security-first design, security services are provided that can help our customers to follow this philosophy.
Identity-Aware Integration With Oracle Fusion
In this blog post we'll cover a solution for a use case around identity-aware integration with Oracle Fusion.
Enhancing EBS Security in Oracle Cloud - Part 6
Welcome to the final article in my series, where we have been discussing “Enhancing EBS Security on OCI”. We have covered a lot of ground in this series, looking at a range of threats that need addressing for your EBS (or any enterprise) application being moved to the Cloud. In this article, we will be looking at the final threat on my list, Database Bypass.
Enhancing EBS Security in Oracle Cloud - Part 3
Welcome to the third article in my series on “Enhancing EBS Security on OCI”. In the first article, I looked at the threats and risks associated with moving an application like EBS to the Cloud, and also discussed the first attack vector, Infrastructure Attack. The second article then looked at enhancing user security. In this article, I am going to talk about the threats to EBS itself, as an application exposed to the internet. I’ll then look at how you can apply Cloud-based security controls...