Journey SAP Security Administrator

About The Position

Requirements

• BA/BS degree from an accredited college or university majoring in Computer Science, MIS, Business or related field or equivalent experience. If no degree, seven or more (7+) years of relevant experience are required.
• Three or more (3+) years of progressively responsible relevant work experience in technical analysis, design, development, installation, modification and maintenance of security in a SAP application environment.
• Safety policies, practices and procedures; standard operating procedures for modern office equipment including a computer and applicable software; English grammar, punctuation and vocabulary standards; methods and techniques for planning, organizing and overseeing work activities; characteristics and operational needs of various organizational units; concepts and principles related to implementing problem solutions; techniques and practices for problem research and resolution; techniques and practices for resolving complex technical issues; characteristics and operational needs of various organizational units; procedures and practices related to system security; SMUD operations related to SAP security; SMUD policies and procedures related to system security; techniques and practices for cost benefit analyses; functionality of SAP security; requirements for Business Process control; functionality of client/server web computing environment; ABAP/4 computing platforms and networks and their security features and vulnerabilities; concepts of internet and firewall security as it relates to SAP; data encryption; legal requirements related to data security, federal, state and local laws, codes and regulations governing; data security, privacy and other legal or regulatory issues; concepts of technical security issues.
• Utilize a personal computer and/or computer terminal, systems and software relevant to the job; communicate effectively orally and in writing internally/externally; establish and maintain effective working relationships internally/externally; evaluate and resolve technical or management issues; determine the potential long-term outcomes of a change in operations; evaluate and resolve technical issues; write new and revised policies and procedures; schedule and prioritize own work assignments to meet expected timeframes; work effectively in a team; weigh the relative costs and benefits of a potential action; read and interpret plans, diagrams and specifications; serve as reference person for other employees; develop an estimation of how a system should work under ideal conditions; analyze complex issues and develop/implement resolution alternatives; provide on-the-job training; express ideas/facts clearly and concisely to individual or groups, taking into account the audience and nature of information; write new and revised policies and procedures; maintain high level of integrity in protecting privacy and confidentiality of information; provide end-to-end security solutions.

Nice To Haves

• Minimum 4+ years SAP security administration experience, including S/4HANA, ECC6.0, SAP CRM, BW 7.x, and cloud-based SAP applications.
• Hands-on experience (2+ years) with latest SAP cloud technologies such as SAP Analytics Cloud (SAC), Datasphere, SAP BTP, and integration tools (e.g., CPI, Cloud ALM).
• Led at least two full-cycle SAP Security implementations, with direct involvement in user provisioning, role management, policy design, and regulatory compliance.
• Experience in S/4HANA migrations, including Selective Data Transition, and supporting hybrid SAP environments (on-premise and cloud) is added advantage.
• Strong expertise in SAP Segregation of Duties (SoD) processes, internal/external audit mitigation, and SAP HANA DB security.
• Advanced familiarity with SAP RISE, cloud models, and SuccessFactors suite (Employee Central, Payroll, Workforce Software).
• Proven ability with Identity and Access Management (IAM) tools, such as SailPoint, and integrating IAM procedures across multi-cloud SAP solutions.
• Experience designing and maintaining SAP security for C4HANA, SAP HANA DB, and SAP BDC , SAC and datasphere.
• Demonstrated leadership of complex security projects, including cross-functional coordination and stakeholder management.
• Deep understanding of license and security audit procedures, with ability to optimize licensing and ensure security compliance in SAP cloud and hybrid platforms.
• Commitment to professional development—actively engages with emerging technologies and SAP security trends (e.g., Zero Trust, AI-driven threat detection, automation).
• Familiarity with best practices for securing SAP Fiori, mobile applications, and API-based integrations.
• In-depth understanding of SAP security principles, authorization concepts, user lifecycle and role administration for S/4HANA, ECC, CRM, SuccessFactors, and cloud platforms SAP BDC, BTP, SAC, Datasphere.
• Familiarity with security architecture, including ABAP, Fiori, and web-based client solutions, and SAP system integration best practices.
• Strong grasp of regulatory compliance requirements (affecting enterprise IT and SAP security; ability to advise on and implement controls.
• Solid analytical skills for troubleshooting, risk assessment, root-cause analysis, and remediation in multi-layered SAP environments.
• Ability to design and implement security policies, procedures, and new auditing tools to enhance the integrity, availability, and confidentiality of enterprise applications.
• Proficient in translating complex technical concepts to business stakeholders and working collaboratively with cross-functional teams (IT, operations, business units).
• Demonstrated aptitude for project leadership, including planning, execution, status reporting, and delivery of security solutions within schedule and budget.
• Innovative mindset with passion for continuous improvement—proactively identifies opportunities for automation, simplification, and enhancement of security controls.
• Excellent interpersonal and communication skills, with emphasis on clarity, influence, and the ability to build strong internal and external business partnerships.

Responsibilities

• Monitors, controls and safeguards SMUDs information technology by offering technical and analytical expertise in areas such as security protection, security awareness and security audits including identifying intentional or inadvertent modification, disclosure or destruction of SAP system information; monitoring SAP application access and security violations; conducting security incident investigations; participating in security audits; maintaining and reviewing incidence reports; reviewing audit findings and adjusting security monitoring and self-assessment tools as needed; recommending changes to auditing criteria; and developing security policies and procedures. To ensure SMUDs SAP infrastructure is secure and protected.
• Supports the security of SMUD’s information technology infrastructure by offering technical expertise in areas such as security design, develop, and configuration; defining and maintaining SAP activity groups, user profiles and authorizations/system access privileges; developing SAP application and BASIS security including coordinating with the Business Process Support Group and BASIS analysts; reviewing ABAP/4 programs to ensure authority modules are included, tested and signed-off; configuring SAP for corporate security standards; maintaining authorization object class, authorization objects and standard naming conventions for security profiles and objects; processing SAP access requests; establishing security levels; developing procedures and forms for SAP user ID application; and processing SAP user access requests; troubleshooting complex access problems To support SMUDs strategic information technology security goals and direction while enhancing the reliability and integrity of the SAP infrastructure.
• Analyzes the need for new information technology security systems, upgrades, expansions and modifications by evaluating the effectiveness of the current controls; conducting feasibility studies; analyzing the effects of system upgrades on the access security strategy; conducting cost analysis; recommending changes; defining system requirements; designing modifications; performing installations; changing or modifying operations and maintenance procedures; and conducting post- implementation review. To ensure SMUDs information technology infrastructure meets the current and future business needs.
• Assists in planning, reviewing and conducting work activities and researching required project information associated with department internal/external projects in accordance with established task objectives and schedule as outlined in the project plan/contract. To support the overall achievement and completion of department projects.
• Performs related duties as required.

Benefits

• As a member of the California Public Employees’ Retirement System (CalPERS), SMUD offers eligible employees access to a defined benefit pension plan along with other valuable retirement and health benefits.