Gordon Food Service - Wyoming, MI
posted 23 days ago
Full-time
Remote - Wyoming, MI
Merchant Wholesalers, Nondurable Goods
About the position
The ERP Application Security Engineer at Gordon Food Service, Inc. is responsible for developing and implementing security architecture across various SAP systems. This role focuses on ensuring robust security measures, governance, and compliance within the SAP ecosystem while collaborating with the Enterprise Information Security team to mitigate cyber risks. The engineer will also provide technical support for role implementation, conduct security reviews, and assist in training customers on SAP security concepts.
Responsibilities
- Develop ERP Security Architecture across SAP systems including SAP S/4HANA, SAP Ariba, SAP Hybris, Fiori, SAP MDG, PO/PI.
- Implement SAP role-based security test approaches and governance.
- Collaborate with the Enterprise Information Security team on cyber risk strategy within the SAP ecosystem.
- Provide technical support for customer role implementation and redesign, assisting in defining roles and remediating potential SoD conflicts.
- Enforce information security policies by performing periodic reviews of security reports for customers.
- Conduct privacy gap analysis within business processes enabled by SAP.
- Support customer implementation of SAP-based technology like Centralized User Administration and SAP GRC.
- Assist with integration to third-party corporate IdM and GRC solutions.
- Conduct customer training for SAP security and controls concepts, including user and role maintenance and implementing SAP GRC Access Control.
- Identify trends in reported SAP security violations and recommend changes in policies or user training to address these trends.
- Maintain SAP security users and roles according to business requirements.
- Implement and maintain SAP user IDs across non-production and production landscapes.
- Conduct SAP Role-Based security, Identity and Access Management solution tests.
- Assist the ERP Tech Lead in defining application security project objectives.
- Develop awareness and understanding of SAP Security products.
- Maintain clear and concise documentation.
- Participate as an active member of the IT policy committee.
Requirements
- Experience with SAP security architecture and governance.
- Strong understanding of SAP systems including S/4HANA, Ariba, Hybris, Fiori, MDG, and PO/PI.
- Knowledge of role-based security and segregation of duties (SoD) concepts.
- Experience in conducting security reviews and privacy gap analysis.
- Technical support experience in SAP-based technologies and GRC solutions.
- Ability to conduct training sessions on SAP security and controls.
Nice-to-haves
- Experience with third-party corporate IdM solutions.
- Familiarity with SAP GRC Access Control and other SoD tools.
- Knowledge of identity and access management solutions.
Benefits
- Telecommuting options available.
- Participation in IT policy committee.
