SAP Security Analyst & SAP Junior Security Analyst

About The Position

Requirements

• University graduation in a related field such as Business Administration, Information Technology, Computer Science.
• Minimum of 2 years of progressively responsible related experience in: User management and access provisioning, user risk monitoring, role development in the SAP system.
• Role Based user Security, using SAP Governance, Risk & Controls (GRC).
• User Security using Documentum or other Content Management systems.
• User security in other systems such as Opentext, PeopleSoft.
• No experience required for Junior SAP Security Analyst.
• Experience in ERP system security; this is distinct from general cybersecurity experience.

Nice To Haves

• Strong computer knowledge, including Java, Microsoft Office Document Imaging (MODI), Documentum.
• Experience working with regulations and policies related to records management.
• Experience working with reporting tools such as Documentum Query Language (DQL), Delilah for ECM Documentum, SAP QM 4 reporting, SuccessFactors reporting, GRC Reporting tools or similar.
• Experience in a variety of MS office software (Visio, PowerPoint, Excel, Word, MS Project, etc.)
• Experience with ERP applications and interaction between various modules and components of applications (e.g., HR, SCM, Finance).
• Experience in project planning and management methodologies and best practices.
• Experience in resource management, risk analysis, controls, change and issues management, and progress monitoring and reporting.
• Experience in research, analysis, and interpretation e.g., research issue related to user data protection, or risk assessment and using data analysis tools and techniques to interpret the data and translate into user friendly training.
• Adaptable, forward-thinker, with an eagerness to learn and leverage Artificial Intelligence and emerging technologies to drive operational efficiency.

Responsibilities

• Lead complex security controls across GRC, ERA, HCM/Payroll, Finance, LMS, and SCM platforms.
• Act as a strategic advisor, translating business needs into robust security requirements and solutions.
• Define, interpret, and evolve security policies, standards, and access management practices.
• Play a key role in Security Threat & Risk Assessments (STRA) throughout system lifecycles.
• Collaborate closely with IT, security teams, system integrators, and service providers.
• Resolve escalated access and security issues while safeguarding critical enterprise data.
• Engage with diverse stakeholders and contribute to major initiatives, including ERA service-provider selection.
• Support the day-to-day security operations across 1GX and ERA environments.
• Administer access, monitor risks, and support audits, testing, and ongoing system maintenance.
• Apply security, GRC, and access management processes while analyzing issues and escalating risks as needed.
• Collaborate with IT, ADS, and GOA Security teams to resolve access needs for hires, transfers, and terminations.
• Use AI-enabled tools to analyze and resolve security and GRC issues in production systems.
• Provide informed input on escalated issues and support ERA initiatives, including RFP and vendor evaluation.

Benefits

• Public Service Pension Plan (PSPP)
• Management Employees Pension Plan (MEPP)
• Alberta Public Service Benefit Information
• Professional learning and development
• Positive workplace culture and work-life balance.
• Leadership and mentorship programs.