Job Description SAP Application Security Engineer Lead, ADM Global Primary LocationsThis is a salaried exempt positionPosition Summary:Under general supervision design, implement, and maintain effective methods to protect ADM's SAP applications.
Use established procedures to assist in the deployment and maintenance of ADM's SAP Application Security used around the globe.
Interface with the solution teams and business to provide recommendations of operational and technical solutions to enable the business, and maintain the security posture to appropriate risk levels.
Must display Enthusiasm and interest in Information Security and draw recommendations based on real world experience.Job Responsibilities:Building, deploying, and administering role based security for SAP Applications.Segregation of duties mitigation for application related business functions.SAP Security Incident Management and Process Management.Maintain Single Sign On Integrations for SAP Applications.Maintain security roles within on-premise and cloud SAP Applications.Privileged access management definition, implementation, and maintenance.Corporate Identity and Access Management process management.Configure and Support Data Protection Requirements to meet policy and security framework requirements.Keeping informed of emerging solutions and security capabilities and tools to help mitigate security vulnerabilities and automate repeatable tasks.Experience leading design and process sessions.Interface within the broader Information Security function to help design and implement security improvements.Participates as a member of SAP project teams to incorporate new and existing technology securely into the landscape.Anticipates problems and identifies long-term implications of decisions and actions.Job Requirements:7+ years' experience in SAP Application Security, including experience with security principles, role-based security approach, and identity management practices.Bachelors' degree or equivalent work experience.Hands on experience designing, building, deploying, and administering complex application security.Strong security experience related to concepts of least privilege, risk management, vulnerability management, identity and access management, access controls, and segmentation.Experience maintaining access, roles and users to control application rights within SAP ABAP, HANA DB & Cloud Applications.Create and meet deliverables per project plan and business requirements.Bolt-on application security management.
Review SAP Notes, EWA, SOS reports to evaluate risk, priority and implementation.Experience in SAP Masking and Data Protection Configuration.Ability to communicate and collaborate effectively with other team members in a geographic and culturally diverse workforce.
Expected to complete projects within specified deadlines.Expected to work occasional nights, weekends, holidays, and overtime.Expected to perform on-call duties.Occasional Travel may be required.Strong sense of professionalism and ethics.Desired Skills:Current holder of SAP Security, CISSP, or other industry certifications a plus.Application security experience in SAP SuccessFactors, SalesForce, Coupa, SAP Concur, SAP SAC, BTP and/or other cloud based applicationsProcess Control design and administrative experienceSAP S4HANA or SAP ECC Security, SAP GRC HANA DB and Role ManagementMicrosoft Active Directory and/or Azure Active Directory ExperienceSecurity project management experience preferred but not required.ADM is an equal opportunity employer and makes employment decisions without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability and veteran status. This position offers a complete benefit package, including 401K/ESOP, pension, health, life and dental insurance. ADM requires the successful completion of a pre-employment drug screen and a background check.