Oracle Cloud Applications Release 12 included many new areas of functionality. One in particular has had a major impact (positive) on those of us who implemented the product for our customers. This feature is called the "Security Console".
Since the earliest releases of Oracle Cloud, the security has been managed by the Fusion Middleware products Oracle Identity Manager (OIM) and Oracle Authorization Policy Manager (APM). Whilst extremely powerful tools for managing user accounts and role based access, the tools required a level of knowledge beyond standard application configuration. They were also displayed through a separate UI to the main applications and configuration of security rules involved using multiple screens and UIs.
Leading up to Release 12, Oracle has done a lot of work to transition onto a tool called the "Security Console". This tool is embedded in the application and is intended as a "one-stop shop" for security configuration. By Release 12, this transition is virtually complete.
Now, the Security Console allows us to see the holistic view of all aspects of functional and data security using a visual tool. We can focus on parts of the security configuration and drill down towards detailed privileges or up towards users. The Security Console includes functionality to copy roles and create custom versions, to add/remove functional data privileges, and to view detailed analytics about roles and role usage.
It has simplified the management of users and roles into a single UI and is a great advance for implementers and system administrators alike.
UPDATE (January 2018)
Now that Release 13 (17D) is available, we are seeing a move towards a completely unified and simplified UI. This will be based on a concept of 'Mobile First' in which the UI design is first constructed for mobile and then other devices (such as PCs) inherit the same style of UI. We think this is going to make for a great user experience.