SAP Security Analyst

SAP Security Analyst
Position Summary:
Under general supervision design, implement, and maintain effective methods to protect ADM applications. Use established procedures to assist in the deployment and maintenance of ADM Application Security used around the globe. Interface with the solution teams and business to provide recommendations of operational and technical solutions to enable the business, and maintain the security posture to appropriate risk levels.

Must display Enthusiasm and interest in Information Security and draw recommendations based on real world experience.

Job Responsibilities:

• Building, deploying, and administering role-based security for SAP Applications following the business role concept.
• Segregation of duties mitigation for application related business functions.
• SAP Security Incident Management Process Management.
• Maintain security roles within on-premises and cloud SAP Applications.
• Privileged access management definition, implementation, and maintenance.
• Support Data Protection Requirements to meet policy and security framework requirements.
• Interface within the broader Information Security function to help design and implement SAP security improvements.
• Anticipates problems and identifies long-term implications of decisions and actions.

Job Requirements:

• 3 to 6 years experience in SAP Security, including experience with security principles, role-based security approach, and identity management practices.
• Bachelors degree or equivalent work experience.
• Experience working on S4HANA, FIORI, EWM, SAP GRC, HANA DB, SuccessFactors and Cloud Applications.
• Hands on experience designing, building, deploying, and administering complex application security roles.
• Hands-on experience with SAP Cloud Identity Services in configuring authentication and maintaining IPS transformations.
• Strong SAP Security experience related to concepts of least privilege, risk management, vulnerability management, identity and access management, access controls, and segmentation.
• Experience maintaining access and roles to control application rights within SAP Applications.
• Experienced in GRC Administration, maintaining and configuring MSMP workflows, Access Controls, Risk IDs etc.
• SAP Security incident management experience.
• Bolt-on application security management.
• Experience troubleshooting authorization issues with end users.
• Experience working with internal and external auditors, evidence collection for Audit.
• Ability to communicate and collaborate effectively with other team members in a geographic and culturally diverse workforce
• Expected to complete projects within specified deadlines.
• Expected to work occasional nights, weekends, holidays, and overtime.
• Expected to perform on-call duties.
• Occasional Travel may be required.
• Strong sense of professionalism and ethics.

Desired Skills:

• Application security or role-based security experience or knowledge in SAP or other on-premise and Cloud applications is a plus.
• Application security experience in SAP SuccessFactors, BODS, SalesForce, Coupa, SAP Concur, SAP SAC, BTP, other SAP on-premise and cloud applications and Role Management.
• Microsoft Active Directory and/or Azure Active Directory Experience.