Senior SAP Functional Security Analyst (Remote)

Senior SAP Functional Security Analyst (Remote)

Vacancy expired!

Are you looking to elevate your cyber career? Your technical skills? Your opportunity for growth? Deloitte's Government and Public Services Cyber Practice (GPS Cyber Practice) is the place for you! Our GPS Cyber Practice helps organizations create a cyber minded culture and become stronger, faster, and more innovative. You will become part of a team that advises, implements, and manages solutions across five verticals: Strategy, Defense and Response; Identity; Infrastructure; Data; and Application Security. Our dynamic team offers opportunities to work with cutting-edge cyber security tools, and grow both vertically and horizontally at an accelerated rate. Join our cyber team and elevate your career.

Work you'll do

• Develop strategies to assess whether applications are designed to client standards while eliminating security risks.
• Manage migration process of application data.
• Collaborate with various stakeholders to gather business requirements for enhancements/ change requests.
• Work with Governance, Risk and Compliance (GRC) applications
• Define plan for synchronization strategy and patch management.
• Establish security controls to help protect client systems.
• Coordinate with client's technical SMEs to understand and improve existing policies/procedures in efforts to remediate audit findings.
• Participate in deep dive sessions of the Notice of Findings and Recommendations (NFRs) and Corrective Action Plans (CAPs).
• Support the development of test plans and Notification of Findings and Recommendations (NFR) remediation initiatives.
• Test controls as it relates to access control, configuration, and access management for ECC and connected systems.
• Provide technical SAP Security and Access Control experience to help address deficiencies in client's security and control domains.

• 
  

The team

Deloitte's Government and Public Services (GPS) practice - our people, ideas, technology and outcomes-is designed for impact. Serving federal, state, & local government clients as well as public higher education institutions, our team of more than 15,000 professionals brings fresh perspective to help clients anticipate disruption, reimagine the possible, and fulfill their mission promise.

At Deloitte, we believe cyber is about starting things-not stopping them-and enabling the freedom to create a more secure future. Our Cyber Application Security team advises federal clients on integrating security activities throughout the software development lifecycle to enable the design, build, and deployment of secure applications. Our team focuses on concept and requirements, design and development, verification, production and maintenance, and retirement. If you're seeking a career in vulnerability management, quality assurance, or GRC tools, then Application Security at Deloitte is the offering for you.

Qualifications

Required:

• Must be legally authorized to work in the United States without the need for employer sponsorship, now or at any time in the future
• Active Secret security clearance required
• Experience working with RMF and NIST 800-53
• 5 years experience working with GRC applications
• Ability to provide clients with strategic direction to help them improve risk management processes/procedures
• Experience with audit processes, working in an SAP and/or cloud-based environment.
• Experience in SAP or other ERP equivalent COTS.
• Deep knowledge in SAP Infrastructure with emphasis on BASIS Security.
• Experience in an SAP environment supporting User Access Requirements Management, SAP Roles development, and SAP Roles Management including the use of SAP Governance, Risk and Compliance (GRC) software suite.
• Ability to identify opportunities for process improvements and increased efficiency in the Standard Operating Procedures (SOPs) surrounding SAP user management and risk monitoring.

Preferred:

• Prior federal consulting experience
• Certifications (CISA, CPA, CDFM, CGFM preferred)
• Knowledge of and experience with Federal security regulations, standards, and processes including FISMA, FIPS, NIST, and FedRAMP
  
• Experience with Information Assurance concepts and processes within the Federal government
  
• SAP GRC Access Control experience (version 10.0 or higher)
  
• SAP GRC Process Control experience (version 10.0 or higher)
  

How you'll grow

At Deloitte, our professional development plan focuses on helping people at every level of their career to identify and use their strengths to do their best work every day. From entry-level employees to senior leaders, we believe there's always room to learn. We offer opportunities to help sharpen skills in addition to hands-on experience in the global, fast-changing business world. From on-the-job learning experiences to formal development programs, our professionals have a variety of opportunities to continue to grow throughout their career.