SAP Security Analyst with in-depth experience with user, role, and table maintenance. This position will be responsible for security administration for a variety of SAP modules including CRM, HCM, FICO and BW. This position will also support portal security for SSF, Biller Direct and MSS/ESS.
This individual is responsible for SAP security access and compliance for the organization in all SAP instances. In addition, this role will work with the application owners, develop and support security priorities, create and maintain standards and procedures, and provide expertise in the area of SAP and other non-SAP applications as they relate to the security of any SAP instance. The duties encompass security administration of SAP and non-SAP applications that are connecting to SAP instances, assisting in the design and build of security authorizations, ensure compliance to security policies and procedures, resolve access problems and handle security incidents. This is a cross-functional support role to the organization and will interface within and outside of IT departments. In this role it is critical to build and maintain internal relationships and possibly also with external business partners.
Job Duties/Essential Functions
Gathers requirements from internal clients and provides security and technical expertise to support the development of security objects to satisfy business requirements.
Develops security objects that meet business requirements while adhering to the principle of least privilege.
Prepares and maintains documentation as needed.
Works with business areas and project teams to troubleshoot issues with security objects and identify and implement appropriate solutions.
Commitment to upholding government and corporate security guidelines including Segregation of Duties (SoD), Sarbanes-Oxley (SOX) and Payment Card Industry (PCI) standards.
Understands compliance requirements that may impact security and works with business areas and project teams to develop security solutions that address these requirements.
Demonstrates a logical and structured approach to time management and task prioritization.
Demonstrates a high level of communication skills, verbal and written.
Participates in team activities and team planning in regards to improving team skills, awareness and quality of work.
Responsible for continued personal growth in the areas of technology, business knowledge, and policies and platforms.
Regular and reliable workplace attendance at your assigned location.
Experience, Skills, Education & Licenses/Certifications
3 5 years security experience using SAP in a professional environment.
Experience with one or more of the following SAP modules:
CRM, FICO, MM, BW, HCM, MSS/ESS, Portal
Experience with SAP's role-based security concepts and the Profile Generator.
Understanding of SAP security best practice.
Ability to assess business role requirements, design authorization roles and manage supporting authorizations.
Experience with portals authorizations; preferred knowledge of ESS, Biller Direct and/or SSF systems.
Experience testing authorizations for multiple environments and coordinating testing with business and technical users.
Knowledgeable regarding transaction auditing; ability to work with and support internal and external audit teams.
Basic knowledge of SAP NetWeaver security; ability to speak to infrastructure level security concerns and to work with technical team to ensure such concerns are addressed.
Experience with Solution Manager
Set up, maintenance and use of Central User Administration (CUA) and Single-sign on (SSO)
Self-motivated, Flexible, Openness to learn new things, Strong focus on customer needs.
Must have the ability to work with limited supervision and exhibit a strong sense of urgency.
Ability to effectively mentor less experienced team members on SAP security.
Experience in successful project implementation and follow-up.
Strong conceptual, analytical, problem-solving, troubleshooting and resolution skills
Ability to monitor and manage the progress of tasks.
Good Decision making skills
Able to support off-hours work as required, including weekends, holidays, and 24/7 on call responsibilities on a rotational basis.