Security Operations Analyst

Apton - Tallahassee, FL

posted 5 months ago

Full-time - Senior
Tallahassee, FL
Textile Mills

About the position

We are searching for a Senior Security Operations Analyst to provide SAP Security Administration support for the CAMS SAP Landscape. This role is expected to last for a duration of 2 years and will be performed onsite in Tallahassee, FL. The primary responsibility of this position is to ensure the security and integrity of the SAP systems by managing security roles, conducting audits, and supporting system upgrades and maintenance tasks. The analyst will be involved in technical design, development, testing, implementation, and support of SAP Security Roles across all SAP landscapes. This includes addressing internal and external audits with supporting audit logs, performing system measurements for SAP licensing purposes, and conducting system readiness checks for migrations to S/4, BW/4 HANA, or ON HANA. The Senior Security Operations Analyst will also be responsible for reporting any deviations from the Internal Controls/Segregation of Duties Framework, setting up and maintaining Central User Administration (CUA) and Single Sign-On (SSO), and providing day-to-day support for SAP GRC (Governance Risk & Compliance) Access Controls in an SAP environment. User provisioning and termination using SAP CUA, SAP role creation, and user administration are key tasks, along with maintaining configuration, role mapping, and security controls. The analyst will create and maintain security-related documentation and support the configuration and migration to SAP GRC, including any necessary plug-ins. In addition, the analyst will work on tickets through the full process from estimation of level of effort to closure as per SLAs, support project managers with the ticketing process, and collaborate with various teams to establish security controls and remediate EarlyWatch report outcomes. Monitoring and performing auditing functions, application testing, and identifying system vulnerabilities are also part of the role. The position may require off-hours work, including weekends, holidays, and 24/7 on-call responsibilities.

Responsibilities

  • Provide SAP Security Administration support for CAMS SAP Landscape.
  • Responsible for Technical Design, Development, Testing, Implementation and Support of SAP Security Roles across all SAP landscapes.
  • Address internal and external audits with supporting audit logs.
  • Perform system measurement for SAP licensing purposes.
  • Perform system readiness checks for S/4, BW/4 HANA or ON HANA migrations.
  • Report any deviations of Internal Controls/Segregation of Duties Framework.
  • Set up, maintain and use Central User Administration (CUA) and Single-sign on (SSO).
  • Provide day-to-day support of SAP GRC (Governance Risk & Compliance) Access Controls in an SAP environment.
  • User provisioning and termination using SAP CUA and GRC.
  • Create SAP roles and manage user administration.
  • Maintain configuration, role mapping and security controls, and create security-related documentation.
  • Support the Configuration and migration to SAP GRC including any plug-ins needed.
  • Work on tickets through the full process from estimation of level of effort to closure as per SLAs.
  • Support project managers with the ticketing process and project maintenance deliverables.
  • Collaborate with various teams for establishment of security controls and remediation of EarlyWatch report outcomes.
  • Monitor and perform auditing functions, application testing, and identify system vulnerabilities.
  • Provide SAP Security support off-hours as required, including weekends, holidays, and 24/7 on-call responsibilities.

Requirements

  • 8 years of SAP Security experience in handling brownfield implementation of migrating SAP NetWeaver suite of products such as ECC, CRM and BW systems to S/4, B/4, FIORI.
  • FIORI / UI5 Security Experience with gateway role design to include Catalogs, Groups and ODATA.
  • Experience with Backend role design to include transaction code(s), ODATA, CRM Web UI Web Dynpro authorizations.
  • Experience with Fiori Designer to create and maintain business catalog and business group.
  • Experience with Fiori application to troubleshoot authorizations and research notes in application library.
  • Experience with trace error log analysis for missing Services and Backend authorizations.
  • Experience with SAP HANA security both at DB & Application level.
  • Experience with Implementing HANA DB audit policies.
  • Experience with enabling HANA DB encryption.
  • Evaluate and provide detailed options paper for third party product integrations with SAP for products such as but not limited to credential manager and access & identity management.
  • Design, Develop and implement security practices required for migration of on-prem SAP servers to cloud.
  • Technical knowledge of SAP architecture and role-based authorization models for SAP components ECC, BW, CRM, Enterprise Portal, Solution Manager, BOBJ and SAP RCS UI Logging.
  • Proficient in SAP security principles, delivering services on time to meet business needs.
  • Proficient in IT security controls and IRS 1075 (FTI) and OCSE requirements as they relate to security administration.
  • Knowledge of security on the ABAP stack (Users, Roles, Groups Profiles, and SNC etc.).
  • Knowledge of security on the Java stack (Users, Roles, and UME etc.).
  • Knowledge of the SAP Enterprise Portal architecture and administration.
  • Knowledge of Portal content design (Roles, Groups, Worksets, iViews etc.).
  • Ability to communicate technical information verbally and in writing.
  • Knowledge of both the ABAP and Java stacks of the SAP Web Application Server (SAP WAS).
  • Ability to establish and maintain effective working relationships with different Teams.
  • Coordinate all security designs with various Business Units and project teams.
  • Experience as a project lead in SAP Security Administration.
  • Experience developing SAP security administration reports and utilities.
  • Ability to design GRC Access and Security controls for business and security processes.
  • Generate access review documents and support internal and external audit.
  • Bachelor's Degree in Computer Science, Management Information Systems (MIS) or other technology related field or equivalent work experience.

Nice-to-haves

  • Knowledge of the Information Technology Infrastructure Library (ITIL) and how ITIL maps to SAP solutions.
  • SAP Certifications and Trainings.
  • Certifications CISA or CISSP.
  • Experience with the Florida Department of Revenue's CAMS project or Florida Department of Revenue's SUNTAX project.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service