SAP Security Administrator

Job#: 2017792

Job Description:

Apex Systems is Looking For: 
SAP Security Consultant
Position Overview:
This SAP Security position plays a critical role in ensuring the security and compliance administration of SAP systems within our clients organization. This position is responsible or a partner with internal IT Security team in implementing, and maintaining robust security measures to protect sensitive data, prevent unauthorized access, and mitigate potential risks related to SAP applications and environments.
Key Responsibilities:
  1. SAP Security Implementation:
    • Analyze business requirements for SAP systems, including roles, authorizations, and user access controls.
    • Implement security measures to protect data, applications, and critical business processes within SAP landscapes.
    • Collaborates with SAP functional consultants and project teams to align security requirements with business processes and system functionalities.
    • Identify continual improvement opportunities and, where appropriate, manage them through to successful implementation.
  2. User Access Management:
    • Monitor user access to ensure compliance with security policies and segregation of duties (SoD) rules.
    • Conduct periodic user access reviews and audits to identify and address any potential security risks.
  3. Security Auditing and Compliance:
    • Work with internal IT security team to provide necessary documentation and respond to security-related audit findings.
  4. Security Incident Management:
    • Investigate and respond to security incidents and breaches related to SAP systems.
    • Implement corrective actions to prevent the recurrence of security issues.
    • Collaborate with the IT Security team to integrate SAP security incidents into the organizations overall incident response plan.
  5. Security Patching and Upgrades:
    • Coordinate and execute security patches, updates, and system upgrades with SAP technical team to maintain a secure SAP environment.
    • Stay updated with the latest SAP security patches and advisories to address potential vulnerabilities proactively.
  6. Security Awareness and Training:
    • As directed from internal IT security team, conduct security awareness training for end-users and stakeholders to promote a security-conscious culture.
    • Educate users on best practices for password management, data protection, and other security-related topics.
    • Mentor and train other team members.
 
  1. Documentation and Reporting:
    • Maintain comprehensive documentation of SAP security configurations, processes, and procedures.
    • Generate regular reports on SAP security status, compliance, and incident management for management and auditors.

Required Skills and Qualifications:
  • Bachelor’s degree - Computer Science, Information Technology, or a related field.
  • Proven experience in an SAP Administration Security role or in a similar SAP security consultant role.
  • Solid understanding of SAP security concepts, including role-based access control (RBAC), authorization objects, and user provisioning.
  • Familiarity with SAP security administration tools and utilities including knowledge of SAP GRC (Governance, Risk, and Compliance) and/or Saviynt Identity Access Governance solutions.
  • Experience with security assessments, vulnerability scanning, and penetration testing.
  • Familiarity with relevant industry standards and regulatory requirements related to data security and privacy.
  • Strong analytical and problem-solving skills to identify and resolve security issues.
  • Excellent communication and collaboration skills to work effectively with cross-functional teams and stakeholders.
  • Certifications in SAP security or relevant cybersecurity certifications are desirable.
  • Must be adaptable and willing to stay updated with the latest SAP security trends and best practices to ensure the highest level of data protection and system security.
  • Experience in designing, building, testing, and deploying business and support roles with S/4 HANA and Fiori
  • Working knowledge of SAP business processes, structural authorizations, and organizational hierarchies.
  • Knowledge of SAP BTP and other SAP SAAS application related security a plus
  • Experience working with internal and external audit audiences and maintenance of controls and compliance a plus.
  • Must have detailed understanding and hands on experience in SAP Security, setting up master-derived roles, updating role authorizations, transporting security changes, usage, and maintenance.
  • Candidate must have hands on experience in user administration and Role administration, structural authorizations.
  • SAP authorization models: management of authorizations, profiles, roles at application level, Identification of Best Practices in application and product security and Digital Security solutions
  • Good knowledge of main SAP functional/transactions/App modules and Fiori Launchpad along with Segregation of Duties (SoD) at functional and application level.
  • Understand configuration of security elements of the SAP Basis module.
  • General IT controls (ITGC) and application controls (ITAC) in SAP environment gained in IT audit activities in SAP.
  • Proficient in security design, configuration, and deployment activities in SAP technologies including SAP S/4HANA, Fiori, SAP GRC, SAP Master Data Governance (MDG), and Central Finance
  • Experience with SAP Application Security and S/4 Hana Authorization Management
  • Knowledge of SAP authorization concept of On-Premise and Cloud systems such as S/4HANA, SAP Business suite, and HANA database.
  • Ability to work with business, SAP functional teams and project teams to define roles and gather security requirements.

 

 

 

 

 

 

 

 

EEO Employer

Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at [email protected] or 844-463-6178.

Apex Systems is a world-class IT services company that serves thousands of clients across the globe. When you join Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRated's Best of Staffing® in Talent Satisfaction in the United States and Great Place to Work® in the United Kingdom and Mexico.

Employee Type:
Contract

Location:
Omaha, NE, US

Job Type:
Applications and Data Management

Date Posted:
February 26, 2024