SAP Security Administrator

About The Position

Requirements

• Minimum 8 years of experience in SAP application security and administration.
• Minimum 8 years of hands-on experience with SAP GRC Access Control.
• Minimum 8 years of experience with SAP Application Security (AppSec) across multiple SAP components.
• Minimum 5 years of AppSec or SAP GRC experience within a DoD environment.
• Strong understanding of SAP Basis principles, including system installation, configuration, performance tuning, and troubleshooting.
• In-depth knowledge of SAP GRC Access Control, including role design, user provisioning, and access risk analysis.
• Experience with AppSec tools and techniques for SAP systems.
• Deep knowledge of SAP role design, profiles, SU24, PFCG, and authorization objects.
• Experience in GRC Firefighter management and Firefighter ID/role creation.
• Experience in analyzing authorization issues through trace SU53 and adjusting authorization objects via PFCG.
• Knowledge about security related tables (SE16/SE16N) and critical authorizations.
• Familiarity with Single Sign-On mechanisms, Authentication protocols, User Provisioning systems, and Segregation of Duties frameworks.
• Hands-on experience with SAP security design, build, deployment, and audits for standard role based security for ECC and S4HANA.
• Hands-on experience identifying critical risks in Production system job roles and risk mitigation/remediation.
• Hands-on experience with role change transport creation and migration.
• Hands-on experience with periodic access reviews, user access certifications, and security audits.
• DoD 8570 Baseline Certification: IAT Level II (CompTIA Security+ CE).
• SAP Certification in one or more of the following: C_AUDSEC_731, C_GRCAC_10, C_SECAUTH_20, P_TSEC10_75.

Nice To Haves

• Experience with DLA or other Department of Defense (DoD) programs.
• Experience with SAP S/4HANA.
• Experience with Agile/SAFe methodologies.
• Familiarity with Risk Management Framework (RMF), SOX/FISCAM, and NIST standards.

Responsibilities

• Configure, monitor, tune, and troubleshoot the SAP technical environment (e.g., ECC, BW, HANA, Fiori, etc.).
• Schedule and execute the SAP transport management system (TMS).
• Manage the installation, upgrades, and maintenance of SAP systems and related components.
• Maintain the SAP Data Dictionary and database objects.
• Administer and maintain the SAP GRC application, managing roles and account access.
• Implement and enforce security policies and procedures within the SAP environment.
• Collaborate to resolve SAP transport and source code security vulnerabilities.
• Evaluate and design secure interfaces between SAP and external systems.
• Monitor and respond to security alerts and incidents within the SAP landscape.
• Maintain documentation for the SAP GRC environment and security configurations.
• Manage the migration of SAP database and application configurations through the landscape.
• Analyze, develop, and maintain data architectures and process models within SAP.
• Generate documentation for the existing SAP environment and updates.
• Work with IT and business units to modernize the SAP environment.
• Quickly adjust to new processes and policies/guidelines.
• Be flexible in shifting responsibilities as workload of particular areas shift.
• Subsume additional AppSec systems that impact day-to-day activities.
• Communicate accurate information.

Benefits

• Medical, Dental, and Vision Plans (PPO & HSA options available)
• Flexible Spending Accounts (Health Care & Dependent Care FSA)
• Health Savings Account (HSA)
• 401(k) with matching contributions
• Roth
• Qualified Transportation Expense with matching contributions
• Short Term Disability
• Long Term Disability
• Life and Accidental Death & Dismemberment
• Basic & Voluntary Life Insurance
• Wellness Program
• PTO
• 11 Holidays
• Professional Development Reimbursement