Overview
Skills
Job Details
Job at a Glance
Title: IT - Security Analyst
Location: Remote; 8 AM – 4:30 PM EST
Pay: $140,000-$170,000
Responsibilities
The Cybersecurity organization advances the overall state of security through critical initiatives and coordination of large security and customer-focused projects. Cybersecurity also develops systems to monitor and respond to attacks against our systems, provides educational awareness to the corporation on security best practices, and ensures data sharing relationships with third parties securely protect information.
The ERP Security Senior Analyst will serve as a hands-on guide and technical expert, responsible for defining and implementing robust security controls in our HR and Finance platforms. This position will play a critical role in ensuring the secure operation and governance of our SAP landscape, with particular focus on role design, access controls, and regulatory compliance. The ideal candidate will have hands-on experience with ECC and S/4HANA systems, SAP GRC, and integration with modern IAM platforms.
Core Responsibilities:
-
Design, implement, and maintain SAP security roles and authorizations (PFCG, SU24, SU01).
-
Analyze and manage segregation of duties (SoD) risks using SAP GRC Access Control.
-
Secure custom transactions, RFCs, BAPIs, and ABAP developments.
-
Collaborate with business process owners to ensure roles align with least privilege principles.
-
Monitor SAP security logs (SM20, STAD) and perform forensic investigations as needed.
-
Support Fiori and SAP S/4HANA application security, including OData and catalog roles.
-
Integrate SAP systems with identity providers like EntraID, Okta, or Ping for SSO.
-
Drive improvements in SAP security posture through continuous monitoring and proactive remediation.
-
Evaluate, enhance, and document security configurations, procedures, and standards.
-
Stay informed of SAP security trends, vulnerabilities, and best practices.
Qualifications
Education:
-
Bachelor’s degree in computer science, Information Security, and/or a related field or an equivalent level of work-related experience
Experience:
-
7+ years of SAP security experience, including ECC and/or S/4HANA.
-
Hands-on experience with SAP GRC Access Control modules.
-
Strong understanding of RBAC, SoD principles, and SAP authorization concepts.
-
Familiarity with SAP Fiori security and cloud security models.
-
Experience with integration into identity management platforms (e.g., EntraID, Okta, CyberArk).
-
Ability to interpret audit and compliance requirements into SAP controls.
-
Excellent communication and collaboration skills.
-
Deep hands-on knowledge of Microsoft Purview, MIP, and DLP
-
Familiarity with secure AI data handling, e.g., TDE, DP, FHE, vector store hardening
-
Experience with classification, taxonomy design, and data lineage tracking
-
Understanding of data lifecycle, retention, archiving, and deduplication at enterprise scale
Licensure / Other Qualifications:
Preferred Qualifications:
-
Previous experience with utilities or highly regulated industries
-
Experience with conversions from legacy HR and Finance systems to SAP
-
Experience with upgrades to existing versions of SAP
-
Good communications skills with HR and Finance professionals as well as cybersecurity professionals
-
Ability to translate business and compliance concerns into actionable protections within SAP
About the Client
The client’s Cybersecurity organization is dedicated to advancing the overall state of security through critical initiatives, large-scale security and customer-focused projects, secure monitoring and response systems, educational awareness on best practices, and safe data sharing with third parties.
#INDREM