SAP Security Operations Analyst

Brixton Group - Tallahassee, FL

posted 5 months ago

Full-time - Mid Level
Tallahassee, FL
Performing Arts, Spectator Sports, and Related Industries

About the position

The SAP Security Operations Analyst will be responsible for providing comprehensive SAP Security Administration support for the CAMS SAP Landscape. This role is critical in ensuring the security and integrity of the SAP systems, which includes a variety of tasks such as security and report development, system upgrades, patching, and problem support. The position is a full-time contract role based in Tallahassee, FL, with a duration of over 24 months. The analyst will engage in technical design, development, testing, implementation, and support of SAP Security Roles across all SAP landscapes. This includes addressing internal and external audits, performing system measurements for SAP licensing, and conducting readiness checks for migrations to S/4, BW/4 HANA, or ON HANA. In addition to these responsibilities, the analyst will be tasked with maintaining the Central User Administration (CUA) and Single Sign-On (SSO) systems, providing day-to-day support for SAP GRC (Governance Risk & Compliance) Access Controls, and managing user provisioning and termination processes. The role also involves creating and maintaining security-related documentation, supporting the configuration and migration to SAP GRC, and collaborating with various teams to establish security controls and remediate issues identified in EarlyWatch reports. The analyst will also be expected to monitor and perform auditing functions, application testing, and identify system vulnerabilities. This position may require off-hours work, including weekends and holidays, as well as 24/7 on-call responsibilities.

Responsibilities

  • Provide SAP Security Administration support for CAMS SAP Landscape.
  • Responsible for Technical Design, Development, Testing, Implementation and Support of SAP Security Roles across all SAP landscapes.
  • Address internal and external audits with supporting audit logs.
  • Perform system measurement for SAP licensing purposes.
  • Perform system readiness checks for S/4, BW/4 HANA or ON HANA migrations.
  • Report any deviations of Internal Controls/Segregation of Duties Framework.
  • Set up, maintenance and use of Central User Administration (CUA) and Single-sign on (SSO).
  • Provide day-to-day support of SAP GRC (Governance Risk & Compliance) Access Controls in an SAP environment.
  • Manage user provisioning and termination using SAP CUA and GRC.
  • Create and maintain SAP roles and user administration.
  • Maintain configuration, role mapping and security controls, and create security-related documentation.
  • Support the Configuration and migration to SAP GRC including any plug-ins needed.
  • Work on tickets through the full process from estimation of level of effort to closure as per SLAs.
  • Support project managers with the ticketing process and project maintenance deliverables.
  • Collaborate with various teams for establishment of security controls and remediation of EarlyWatch report outcomes.
  • Monitor and perform auditing functions, application testing, and identify system vulnerabilities.
  • Provide SAP Security support off-hours as required, including weekends, holidays, and 24/7 on-call responsibilities.

Requirements

  • 8 years of SAP Security experience in handling brownfield implementation of migrating SAP NetWeaver suite of products such as ECC, CRM and BW systems to S/4, B/4, FIORI.
  • FIORI / UI5 Security Experience with gateway role design to include Catalogs, Groups and ODATA.
  • Experience with Backend role design to include transaction code(s), ODATA, CRM Web UI Web Dynpro authorizations.
  • Experience with Fiori Designer to create and maintain business catalog and business group.
  • Experience with Fiori application to troubleshoot authorizations and research notes in application library.
  • Experience with trace error log analysis for missing Services and Backend authorizations.
  • Experience with SAP HANA security both at DB & Application level.
  • Experience with Implementing HANA DB audit policies.
  • Experience with enabling HANA DB encryption.
  • Evaluate and provide detailed options paper for third party product integrations with SAP for products such as but not limited to credential manager and access & identity management.
  • Design, Develop and implement security practices required for migration of on-prem SAP servers to cloud.
  • Technical knowledge of SAP architecture and role-based authorization models for SAP components ECC, BW, CRM, Enterprise Portal, Solution Manager, BOBJ and SAP RCS UI Logging.
  • Proficient in SAP security principles, delivering services on time to meet business needs.
  • Proficient in IT security controls and IRS 1075 (FTI) and OCSE requirements as they relate to security administration.
  • Knowledge of security on the ABAP stack (Users, Roles, Groups Profiles, and SNC etc.).
  • Knowledge of security on the Java stack (Users, Roles, and UME etc.).
  • Knowledge of the SAP Enterprise Portal architecture and administration.
  • Knowledge of Portal content design (Roles, Groups, Worksets, iViews etc.).
  • Ability to communicate technical information verbally and in writing.
  • Knowledge of both the ABAP and Java stacks of the SAP Web Application Server (SAP WAS).
  • Ability to establish and maintain effective working relationships with different Teams.
  • Coordinate all security designs with various Business Units and project teams.
  • Experience as a project lead in SAP Security Administration.
  • Experience developing SAP security administration reports and utilities.
  • Ability to design GRC Access and Security controls for business and security processes.
  • Generate access review documents and support internal and external audit.
  • Bachelor's Degree in Computer Science, Management Information Systems (MIS) or other technology related field or equivalent work experience.

Nice-to-haves

  • Knowledge of the Information Technology Infrastructure Library (ITIL) and how ITIL maps to SAP solutions.
  • SAP Certifications and Trainings.
  • Certifications CISA or CISSP.
  • Experience with the Florida Department of Revenue's CAMS project or Florida Department of Revenue's SUNTAX project.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service