SAP IT Security Control SME - She Recruits, LLC
Washington, DC
About the Job
Job Title: SAP IT Security Control SME
Location: Washington, DC (Onsite 2 days a week)
Clearance Requirement: Secret Clearance
Pay Range: $45-60/hr
Position Overview: We are seeking a highly skilled SAP IT Security Control Subject Matter Expert (SME) to support our federal client in Arlington, VA. This role requires an individual with extensive experience in federal financial management and SAP IT security control design. The ideal candidate will have a deep understanding of auditability, security, and compliance in a federal environment and will provide expert guidance throughout the development and implementation of SAP systems, particularly in S4/HANA On-premises environments.
Key Responsibilities:
- Business Process Engagement: Actively participate in EBS-C business process sprints, offering expert insights on SAP IT security control design to ensure robust and compliant systems.
- SAP Security Analysis: Conduct detailed SAP security assessments using the Risk Navigator tool, focusing on SOD Rulesets, Role Design, IT General Controls (ITGC), Application Controls, and Emergency Access (e.g., FireFighters).
- S4/HANA Expertise: Provide in-depth knowledge of modules, applications, and tools supporting S4/HANA On-premises IT security, including areas such as authentication, Security Information and Event Management (SIEM), interface file processing, and audit logging.
- Legacy System Assessment: Identify and address IT control gaps in Army legacy systems that could impact EBS-C auditability and compliance, and propose future-state control designs to mitigate these risks.
- ERP Configuration Guidance: Offer expert recommendations on ERP configurations that align with auditability, security, and compliance standards within the EBS-C environment.
- Support Third-Party ITGC Design: Collaborate with third-party teams to establish and validate Information Technology General Controls (ITGC) that ensure Army IT systems meet auditable control standards.
- Audit Issue Resolution: Review Notices of Findings and Recommendations (NFRs) issued by the Army's Independent Public Accountant (IPA) to understand audit issues affecting the current system environment. Communicate and document mitigation strategies for these issues in the future EBS-C environment.
- Process Documentation Review: Analyze existing Army business process documentation prior to sprint sessions to better prepare for providing tailored recommendations to the client.
- White Paper Development: Following the completion of business process sprints, develop comprehensive white papers outlining the requirements needed to address audit risks within the future EBS-C environment.
Qualifications:
- Education: Master’s Degree in Accounting, Finance, Information Technology, Business Management, or a related field; OR a CPA, CISA, PMP, CGFM, or CDFM certification.
- Experience:
- Minimum of 4 years of experience in federal financial management.
- At least 2 years of experience in federal accounting.
- Technical Skills:
- Strong understanding of IT General Controls (ITGCs) and Segregation of Duties (SOD) principles.
- Experience performing Test of Design (TOD) and Test of Effectiveness (TOE) testing for IT controls.
- Familiarity with the Army’s business environment and its specific requirements.
This position offers the opportunity to work in a dynamic federal environment, leveraging your expertise to ensure the security and compliance of critical IT systems. If you meet the qualifications and are ready for a challenging role that makes a significant impact, we encourage you to apply.