5 - 7 years
Posted 237 days ago
KSEA is currently seeking a Senior SAP Security Analyst to report to the Global SAP Manager. The Senior SAP Security Analyst will be responsible for working within the SAP Security Team within a global organization in all aspects of SAP Security including but not limited to role maintenance activities, adherence with segregation of duties requirements, and supporting the current organization level design. The selected candidate will act as a liaison between the SAP Security Team, SAP Application Analysts and Business Teams to meet business needs while providing a secure and auditable SAP environment. The selected candidate willensure the SAP Security Administration team achieves Audit compliance, management defined performance metrics, and provides input to all SAP Security related policies, procedures, control sets, and best practices. The candidate will also be responsible for coordinating continued deployment of ongoing projects and implementations to ensure compliance with security methodology and design requirements.
Duties & responsibilities:
Ensure confidentiality, integrity, and accessibility of information residing in SAP systems through SAP Security functionality
Responsible for administration of SAP Security including SOD resolution, role creation / maintenance based onbusiness direction, and Organizational levels creation / maintenance
Assist in Definition of and the Standardization of all SAP Security and Segregation of Duties related policies, procedures, work flows, and control sets based upon industry standard practices, experience, and business needs
Liaison between technical and functional teams relating to SAP Security, segregation of duties, roles, etc.
Ensure compliance to Security Policies, Procedures, and Control Sets
Work with internal and external auditors
Assist in the identification, evaluation, and implementation of SAP related security tools, techniques, and mechanisms to meet business needs
Production support to end-users as required
Perform system analysis, and SAP security and SoD reporting of multiple SAP systems
Remain abreast of industry standards and regulatory requirements for best practices in security and infrastructure technologies. Ability to analyze potential impact on company systems and inform management of actions needed or other recommendations
Add, move change SAP user accounts, when appropriate or when in an escalation situation
Maintain SAP groups, roles and transactions, when appropriate or when in an escalation situation
Ensure SAP programs are transported with appropriate security and do not conflict with company SoD standards
Assist in developing and publishing of company Information Security policies, procedures, standards and guidelines based on knowledge of best practices and compliance requirements and ability to promote and enforce these despite potential resistance.
Prepares department documentation, department policies and department procedures, company notifications.
Collaborate with IT management and other business units to manage SAP security.
Participate in SAP implementation and upgrade projects and support a designated Project Manager regarding all SAP Security aspects.
Lead and moderate project meetings related to SAP Security and provide SAP Security best practices to the project team.
Work with the SAP functional teams and business partners to gather the detailed security requirements at an early stage of any SAP implementation, roll-out or upgrade project.
Collaborate with the SAP Basis & Security Manager on creating and maintaining a global SAP Security roadmap in order to continuously harmonize and further improve the global SAP Security concepts and processes.
Assess and analyze impact of new systems and major changes on existing hardware and software architectures onthe SAP Security setup.
Assist in the Design, implementation, and operation of SAP security systems.
Ensure that solutions are tested properly from a security perspective prior to implementation
Work with external vendors and internal business units to evaluate and select software products that ensure security of our SAP systems.
Provide mentoring to junior team members – technical and non-technical
Governance of external SAP security resources working for Karl Storz North America
Completes special projects and priorities as assigned.
Evaluate changes in products per organizational risk management practices to ensure effective, safe and complaint devices are released to the market in accordance with current state and federal standards.
Bachelor's degree in Computer Science or related experience
SAP Security Training Courses & Certifications preferable
5+ years SAP Security Design, Implementation and Administration experience required,
preferably in a large fast-paced business environment
Extensive experience with SAP authorizations in with SAP authorizations in SAP ERP,
SAP CRM and SAP BW is mandatory
Experience with SAP authorizations in SAP HANA, SAP Fiori and SAP Business Objects is most preferable
Experience with SAP authorizations in SAP HCM, SAP MDG, SAP NetWeaver Portal and SAP ME/MII is preferable
Proven experience with the design and implementation of an entirely new SAP role concept in a global organization
Experience with Segregation of Duties (SOD) resolution and the usage of GRC tools
Experience with role creation and maintenance
Strong understanding of authorization concept, incl. SU24 and SU25 maintenance
Experience with Organizational Level creations and maintenance
Proven experience with analyzing and resolving complex authorization problems utilizing SAP standard tools
Proven ability to self-manage and work with minimal supervision
Experience managing multiple projects and tasks
Proven process analysis and improvement skills