Industrial Security Analyst ensuring compliance with federal security regulations and administering security programs for classified materials. Collaborating with internal and external stakeholders in a high - profile setting.
About the role
- Senior SAP Security Analyst designing and managing security controls in SAP environments for Boeing. Collaborating across teams to enhance security posture and compliance in aerospace operations.
Responsibilities
- Lead design, implementation, and operation of SAP security controls across SAP Enterprise Resource Planning Central Component (ECC) and S/4HANA environments, including role design, role mining, and role optimization
- Provide expert guidance on RBAC and ABAC configuration for S/4HANA, Master Data Governance (MDG), SAP Global Trade Services (GTS), Business Warehouse (BW), HANA Database environments, and custom ABAP developments, review transportation and change controls for security impact
- Ensure SAP RBAC and ABAC support export control data handling International Trade Arms and Regulations (ITAR), U.S. Export Administration Regulations (EAR), United Kingdom Ministry of Defense regulations (UK MOD) and program-specific access restrictions
- Assist with attestation and evidence collection for internal audit, external auditors, Global Trade Compliance (GTC) reviews, and Sarbanes-Oxley Act (SOX) compliance reviews
- Understand legal privacy requirements managing Personally Identifiable Information (PII) and General Data Protection Regulation (GDPR) requirements and how to apply appropriate security controls
- Understand enterprise policies and processes and apply to SAP application RBAC and ABAC controls
- Enforce, and continuously improve Segregation of Duties (SoD) rules and remediate violations in partnership with business process owners
- Implement and manage privileged access controls, including privileged account discovery, monitoring, and logging
- Drive security risk assessments, perform access reviews and attestations, and report compliance status to internal audit and external regulators
- Stay current with SAP security best practices and help deploy roadmap items such as S/4HANA security hardening, Fiori security, and cloud or Software as a Service (SaaS) integration
- Mentor, coach, and identify development opportunities for a team of SAP security analysts
- Support incident response, investigate potential access breaches, and lead post-incident reviews
- Document processes, update runbooks, standardize security implementation methodology and develop implementation playbook, and develop quick reference guides for user self-service
Requirements
- 5 + years of experience with SAP Security and/or SAP GRC
- 5+ years of experience in Role Based Access Control (RBAC) leveraging Panorama
- 5+ years of experience with SAP S/4HANA, and ERP operational processes
- 5+ years of Fiori experience
- 5+ years of experience in SOX, SOX audits, process improvements, and policy creation
- 5+ years of experience with cross-functional teams, involving key stakeholder relationship management
- Bachelor's degree or equivalent work or military experience (preferred)
- Active government clearance (e.g., Secret, Top Secret) (preferred)
- Certifications such as SAP Certified Technology Associate/Professional in security topics, Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), or Identity and access management (IAM) related (preferred)
Benefits
- Health insurance
- Flexible spending accounts
- Health savings accounts
- Retirement savings plans
- Life insurance
- Disability insurance
- Paid time off
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Staff Cybersecurity Analyst responsible for safeguarding cloud assets and leading security assessments for Southern Glazer’s. Collaborating with teams to develop cloud security policies and addressing cybersecurity incidents.
Senior Threat Intelligence Analyst working with Bupa's cybersecurity team. Focused on threat management and defensive strategies to enhance cyber security posture.
Senior Information Security Analyst at Field Nation leading SOC 2 and ISO 27001 compliance programs. Collaborating with teams to embed security and leverage AI in GRC workflows.
Analista de Ciberseguridad en CRG Solutions responsable de monitorear amenazas y gestionar vulnerabilidades en la organización. Identificación de riesgos y mejora continua de la postura de seguridad.
Compliance & Information Security Analyst at beqom managing GRC and TPRM functions. Overseeing client governance, risk, and compliance requests, and vendor due diligence at a SaaS company.
Security Compliance Analyst responsible for ensuring compliance with security regulations and collaborating on security measures across teams.
Senior Technical Expert in Cyber Defense Center at ZEISS analyzing global cyber threats. Collaborating with SOC, CIRT, and ensuring proactive defense strategies.
Information Security Analyst focusing on vulnerability research and data analysis at Flexera. Involves analyzing, verifying vulnerabilities, and maintaining high - quality content standards.
Oversee the testing lifecycle and provide cyber security solutions at Xcel Energy. Engage in various testing techniques and collaborate with teams to enhance quality practices.