Amyx
SAP Security Administrator
Job Locations
US
ID
2025-4317
Category
Defense
Type
Full Time
Overview
Amyx is seeking a highly motivated and experienced SAP Security Administrator to join our team. In this critical role, you will be responsible for the administration, maintenance, and security of our SAP landscape, with a strong focus on SAP Governance, Risk, and Compliance (GRC) and application security. You will ensure the stability, performance, and compliance of our SAP systems while working collaboratively with IT and business stakeholders to modernize our SAP environment. This role requires a strong understanding of SAP security principles and best practices, and experience in a complex, regulated environment. Responsibilities
SAP System Administration: Configure, monitor, tune, and troubleshoot the SAP technical environment (e.g., ECC, BW, HANA, Fiori, etc.).
Schedule and execute the SAP transport management system (TMS). Manage the installation, upgrades, and maintenance of SAP systems and related components. Maintain the SAP Data Dictionary and database objects. SAP Security & GRC: Administer and maintain the SAP GRC application, managing roles and account access.
Implement and enforce security policies and procedures within the SAP environment. Collaborate to resolve SAP transport and source code security vulnerabilities.Evaluate and design secure interfaces between SAP and external systems. Monitor and respond to security alerts and incidents within the SAP landscape.
Maintain documentation for the SAP GRC environment and security configurations. Data Management & Architecture:
Manage the migration of SAP database and application configurations through the landscape.
Analyze, develop, and maintain data architectures and process models within SAP. Collaboration & Documentation: Generate documentation for the existing SAP environment and updates.
Work with IT and business units to modernize the SAP environment. Quickly adjust to new processes and policies/guidelines.
Be flexible in shifting responsibilities as workload of particular areas shift. Subsume additional AppSec systems that impact day-to-day activities.
Must have the ability to communicate accurate information Technologies used: SAP components: PLM/cFolders, ECC, CRM, SRM, Solutions Manager, BW, HANA, SCM/APO, PO, NetWeaver Gateway Hub, Greenlight Technologies, Fiori, BO, JDA, SAS, QLIK, HADOOP or EWM Greenlight Technologies AMV for SAP and non-SAP integrations SalesForce security
Qualifications
Experience: Minimum 8 years of experience in SAP application security and administration. Minimum 8 years of hands-on experience with SAP GRC Access Control. Minimum 8 years of experience with SAP Application Security (AppSec) across multiple SAP components. Minimum 5 years of AppSec or SAP GRC experience within a DoD environment. Technical Skills Strong understanding of SAP Basis principles, including system installation, configuration, performance tuning, and troubleshooting. In-depth knowledge of SAP GRC Access Control, including role design, user provisioning, and access risk analysis. Experience with AppSec tools and techniques for SAP systems. Deep knowledge of SAP role design, profiles, SU24, PFCG, and authorization objects. Experience in GRC Firefighter management and Firefighter ID/role creation Experience is analyzing authorization issues through trace SU53 and adjusting authorization objects via PFCG Knowledge about security related tables (SE16/SE16N) and critical authorizations Familiarity with Single Sign-On mechanisms, Authentication protocols, User Provisioning systems, and Segregation of Duties frameworks Hands-on experience with SAP security design, build, deployment, and audits for standard role based security for ECC and S4HANA Hands-on experience identifying critical risks in Production system job roles and risk mitigation/remediation. Hands-on experience with role change transport creation and migration. Hands-on experience with periodic access reviews, user access certifications, and security audits.
Certifications: o DoD 8570 Baseline Certification: IAT Level II (CompTIA Security+ CE). o SAP Certification in one or more of the following: C_AUDSEC_731, C_GRCAC_10, C_SECAUTH_20, P_TSEC10_75. Other: o Knowledge and experience with Agile methodologies (2+ years) o Ability to communicate technical information effectively to both technical and non-technical audiences. o Must be able to obtain and maintain a Tier 5 Investigation Clearance (formerly Single Scope Background Investigation (SSBI)). o Sensitivity Level: IT-I Critical Sensitive o Must have the ability to communicate accurate information Desired: Experience with DLA or other Department of Defense (DoD) programs Experience with SAP S/4HANA. Experience with Agile/SAFe methodologies. Familiarity with Risk Management Framework (RMF), SOX/FISCAM, and NIST standards. Benefits include: Medical, Dental, and Vision Plans (PPO & HSA options available) Flexible Spending Accounts (Health Care & Dependent Care FSA) Health Savings Account (HSA) 401(k) with matching contributions Roth Qualified Transportation Expense with matching contributions Short Term Disability Long Term Disability Life and Accidental Death & Dismemberment Basic & Voluntary Life Insurance Wellness Program PTO 11 Holidays Professional Development Reimbursement Please contact talent@amyx.com with any questions! Amyx is proud to be an Equal Opportunity Employer. All qualified candidates will be considered without regard to race, color, religion, national origin, age, disability, sexual orientation, gender identity, status as a protected veteran, or any other characteristic protected by law. Amyx is a VEVRAA federal contractor and we request priority referral of veterans.
Physical Demands
Employee needs to be able to sit at a workstation for extended periods; use hand(s) to handle or feel objects, tools, or controls; reach with hands and arms; talk and hear. Most positions require ability to work on desktop or laptop computer for extended periods of time reading, reviewing/analyzing information, and providing recommendations, summaries and/or reports in written format. Must be able to effectively communicate with others verbally and in writing. Employee may be required to occasionally lift and/or move moderate amounts of weight, typically less than 20 pounds. Regular and predictable attendance is essential.
Job Locations
US
ID
2025-4317
Category
Defense
Type
Full Time
Overview
Amyx is seeking a highly motivated and experienced SAP Security Administrator to join our team. In this critical role, you will be responsible for the administration, maintenance, and security of our SAP landscape, with a strong focus on SAP Governance, Risk, and Compliance (GRC) and application security. You will ensure the stability, performance, and compliance of our SAP systems while working collaboratively with IT and business stakeholders to modernize our SAP environment. This role requires a strong understanding of SAP security principles and best practices, and experience in a complex, regulated environment. Responsibilities
SAP System Administration: Configure, monitor, tune, and troubleshoot the SAP technical environment (e.g., ECC, BW, HANA, Fiori, etc.).
Schedule and execute the SAP transport management system (TMS). Manage the installation, upgrades, and maintenance of SAP systems and related components. Maintain the SAP Data Dictionary and database objects. SAP Security & GRC: Administer and maintain the SAP GRC application, managing roles and account access.
Implement and enforce security policies and procedures within the SAP environment. Collaborate to resolve SAP transport and source code security vulnerabilities.Evaluate and design secure interfaces between SAP and external systems. Monitor and respond to security alerts and incidents within the SAP landscape.
Maintain documentation for the SAP GRC environment and security configurations. Data Management & Architecture:
Manage the migration of SAP database and application configurations through the landscape.
Analyze, develop, and maintain data architectures and process models within SAP. Collaboration & Documentation: Generate documentation for the existing SAP environment and updates.
Work with IT and business units to modernize the SAP environment. Quickly adjust to new processes and policies/guidelines.
Be flexible in shifting responsibilities as workload of particular areas shift. Subsume additional AppSec systems that impact day-to-day activities.
Must have the ability to communicate accurate information Technologies used: SAP components: PLM/cFolders, ECC, CRM, SRM, Solutions Manager, BW, HANA, SCM/APO, PO, NetWeaver Gateway Hub, Greenlight Technologies, Fiori, BO, JDA, SAS, QLIK, HADOOP or EWM Greenlight Technologies AMV for SAP and non-SAP integrations SalesForce security
Qualifications
Experience: Minimum 8 years of experience in SAP application security and administration. Minimum 8 years of hands-on experience with SAP GRC Access Control. Minimum 8 years of experience with SAP Application Security (AppSec) across multiple SAP components. Minimum 5 years of AppSec or SAP GRC experience within a DoD environment. Technical Skills Strong understanding of SAP Basis principles, including system installation, configuration, performance tuning, and troubleshooting. In-depth knowledge of SAP GRC Access Control, including role design, user provisioning, and access risk analysis. Experience with AppSec tools and techniques for SAP systems. Deep knowledge of SAP role design, profiles, SU24, PFCG, and authorization objects. Experience in GRC Firefighter management and Firefighter ID/role creation Experience is analyzing authorization issues through trace SU53 and adjusting authorization objects via PFCG Knowledge about security related tables (SE16/SE16N) and critical authorizations Familiarity with Single Sign-On mechanisms, Authentication protocols, User Provisioning systems, and Segregation of Duties frameworks Hands-on experience with SAP security design, build, deployment, and audits for standard role based security for ECC and S4HANA Hands-on experience identifying critical risks in Production system job roles and risk mitigation/remediation. Hands-on experience with role change transport creation and migration. Hands-on experience with periodic access reviews, user access certifications, and security audits.
Certifications: o DoD 8570 Baseline Certification: IAT Level II (CompTIA Security+ CE). o SAP Certification in one or more of the following: C_AUDSEC_731, C_GRCAC_10, C_SECAUTH_20, P_TSEC10_75. Other: o Knowledge and experience with Agile methodologies (2+ years) o Ability to communicate technical information effectively to both technical and non-technical audiences. o Must be able to obtain and maintain a Tier 5 Investigation Clearance (formerly Single Scope Background Investigation (SSBI)). o Sensitivity Level: IT-I Critical Sensitive o Must have the ability to communicate accurate information Desired: Experience with DLA or other Department of Defense (DoD) programs Experience with SAP S/4HANA. Experience with Agile/SAFe methodologies. Familiarity with Risk Management Framework (RMF), SOX/FISCAM, and NIST standards. Benefits include: Medical, Dental, and Vision Plans (PPO & HSA options available) Flexible Spending Accounts (Health Care & Dependent Care FSA) Health Savings Account (HSA) 401(k) with matching contributions Roth Qualified Transportation Expense with matching contributions Short Term Disability Long Term Disability Life and Accidental Death & Dismemberment Basic & Voluntary Life Insurance Wellness Program PTO 11 Holidays Professional Development Reimbursement Please contact talent@amyx.com with any questions! Amyx is proud to be an Equal Opportunity Employer. All qualified candidates will be considered without regard to race, color, religion, national origin, age, disability, sexual orientation, gender identity, status as a protected veteran, or any other characteristic protected by law. Amyx is a VEVRAA federal contractor and we request priority referral of veterans.
Physical Demands
Employee needs to be able to sit at a workstation for extended periods; use hand(s) to handle or feel objects, tools, or controls; reach with hands and arms; talk and hear. Most positions require ability to work on desktop or laptop computer for extended periods of time reading, reviewing/analyzing information, and providing recommendations, summaries and/or reports in written format. Must be able to effectively communicate with others verbally and in writing. Employee may be required to occasionally lift and/or move moderate amounts of weight, typically less than 20 pounds. Regular and predictable attendance is essential.