Purpose
To perform specialized technical and analytical support in the area of SAP information technology security to ensure the availability, integrity and security of SMUD's SAP infrastructure.
Nature and Scope
Serves as a journey-level resource in a relevant professional discipline; works independently on projects of minor to moderate complexity; exercises independent judgment and discretion within established broad guidelines.
Duties and Responsibilities
- Monitors, controls and safeguards information technology by offering technical and analytical expertise in areas such as security protection, security awareness and security audits including identifying intentional or inadvertent modification, disclosure or destruction of SAP system information; monitoring SAP application access and security violations; conducting security incident investigations; participating in security audits; maintaining and reviewing incidence reports; reviewing audit findings and adjusting security monitoring and self-assessment tools as needed; recommending changes to auditing criteria; and developing security policies and procedures. To ensure the SAP infrastructure is secure and protected.
- Supports the security of information technology infrastructure by offering technical expertise in areas such as security design, develop, and configuration; defining and maintaining SAP activity groups, user profiles and authorizations/system access privileges; developing SAP application and BASIS security including coordinating with the Business Process Support Group and BASIS analysts; reviewing ABAP/4 programs to ensure authority modules are included, tested and signed-off; configuring SAP for corporate security standards; maintaining authorization object class, authorization objects and standard naming conventions for security profiles and objects; processing SAP access requests; establishing security levels; developing procedures and forms for SAP user ID application; and processing SAP user access requests; troubleshooting complex access problems To support SMUDs strategic information technology security goals and direction while enhancing the reliability and integrity of the SAP infrastructure.
- Analyzes the need for new information technology security systems, upgrades, expansions and modifications by evaluating the effectiveness of the current controls; conducting feasibility studies; analyzing the effects of system upgrades on the access security strategy; conducting cost analysis; recommending changes; defining system requirements; designing modifications; performing installations; changing or modifying operations and maintenance procedures; and conducting post- implementation review. To ensure the information technology infrastructure meets the current and future business needs.
- Assists in planning, reviewing and conducting work activities and researching required project information associated with department internal/external projects in accordance with established task objectives and schedule as outlined in the project plan/contract. To support the overall achievement and completion of department projects.
- Performs related duties as required.
Required Education
BA/BS degree from an accredited college or university majoring in Computer Science, MIS, Business or related field or equivalent experience. If no degree, 7 or more (7+) years of relevant experience required.
Required Experience
Three or more (3+) years of progressively responsible relevant work experience in technical analysis, design, development, installation, modification and maintenance of security in a SAP application environment.
Knowledge Of
Safety policies, practices and procedures; standard operating procedures for modern office equipment including a computer and applicable software; English grammar, punctuation and vocabulary standards; methods and techniques for planning, organizing and overseeing work activities; characteristics and operational needs of various organizational units; concepts and principles related to implementing problem solutions; techniques and practices for problem research and resolution; techniques and practices for resolving complex technical issues; characteristics and operational needs of various organizational units; procedures and practices related to system security; operations related to SAP security; policies and procedures related to system security; techniques and practices for cost benefit analyses; functionality of SAP security; requirements for Business Process control; functionality of client/server web computing environment; ABAP/4 computing platforms and networks and their security features and vulnerabilities; concepts of internet and firewall security as it relates to SAP; data encryption; legal requirements related to data security, federal, state and local laws, codes and regulations governing; data security, privacy and other legal or regulatory issues; concepts of technical security issues.
Skills To
Utilize a personal computer and/or computer terminal, systems and software relevant to the job; communicate effectively orally and in writing internally/externally; establish and maintain effective working relationships internally/externally; evaluate and resolve technical or management issues; determine the potential long-term outcomes of a change in operations; evaluate and resolve technical issues; write new and revised policies and procedures; schedule and prioritize own work assignments to meet expected timeframes; work effectively in a team; weigh the relative costs and benefits of a potential action; read and interpret plans, diagrams and specifications; serve as reference person for other employees; develop an estimation of how a system should work under ideal conditions; analyze complex issues and develop/implement resolution alternatives; provide on-the-job training; express ideas/facts clearly and concisely to individual or groups, taking into account the audience and nature of information; write new and revised policies and procedures; maintain high level of integrity in protecting privacy and confidentiality of information; provide end-to-end security solutions.
Desirable Qualifications
- Four or more (4+) years of ECC6.0, SAP CRM and BW 7.X SAP security administration experience
- Two or more (2+) years of experience in BOBJ Business Intelligence
- Experience in at least two end to end SAP project implementation as SAP Security Administrator
- Experience in SAP SOD process
- Experience with CUA for user access provisioning
- Experience in SAP BPC security
- Experience in SAP Solution Manager security
- Experience in SAP Internal/External Audits
- Experience in SAP License Audits
- Experience in SAP HANA DB Security
- Experience in S4HANA Security
- Experience in SuccessFactors Employee Central Security
- Experience in SuccessFactors Employee Central Payroll Security
- Experience in Work Force Software (WFS) Security
- Experience in C4HANA is an added advantage
- Experience in Identity Access Management tools (SailPoint) is an added advantage
Sacramento Municipal Utility District
6201 S St
Sacramento
California United States
www.smud.org
