Job Code Pay Scale Group Pay Scale Type Bargaining Unit Civil Service or Non-Civil Service Last Executive Board Change Executive Board Change History
01882 09 ST A3 N 653-15 02/18/2006

12/27/05 01882

IES SECURITY SPECIALIST

DEFINITION: This is advanced technical work in the administration of application security for the Commonwealth’s Integrated Enterprise System (IES) SAP system.

An employee in this job is responsible for the assessment, design, implementation, maintenance, and support of SAP application security. Work involves creating and maintaining the security roles and profiles for all users of the SAP system and troubleshooting and resolving SAP security problems. Work includes developing standard operating procedures and other documentation to perform production support activities; researching SAP enhancements and developing testing and implementation strategies for the integration of those enhancements; and assisting in developing and presenting security training to Agency Security
Administrators. Employees interact with IES Basis Administrators in the installation and maintenance of software and hardware necessary to support SAP security; and create, test and document the security roles in conjunction with the business operations, testing, and training teams. Work is performed under the supervision of an IES Security Specialist Supervisor and is reviewed to ensure accuracy, completeness and adherence to plans, objectives and established standards.

EXAMPLES OF WORK: Creates and maintains security roles and profiles.

Troubleshoots and resolves security problems.

Develops standard operating procedures to perform production support activities.

Researches SAP enhancements and develops testing and implementation strategies for the integration of those enhancements with the Commonwealth Enterprise infrastructure.

Monitors the security team help desk and aids in problem resolution for technical security related problems.

Develops and presents training materials to Agency Security Administrators.

Creates roles to work with assisted technology.

Monitors role assignments for non-compliance with established security policies and procedures.

Works with the Business Operations, Testing, and Curriculum Development teams to assist in the creation, testing, and documentation of IES security roles.

Participates in the development, coordination, and review of IES Standard Operating Procedures and IES technical standards.

Reviews and implements On-line SAP Services and Support notes to resolve SAP security issues and/or to provide improved security of the SAP enterprise.

Provides specialized technical and administrative support to Commonwealth agencies and private entities conducting business with the Commonwealth.

Provides on-call security support services routinely.

Performs other related duties.

REQUIRED KNOWLEDGES, SKILLS AND ABILITIES: Knowledge of information technology and systems analysis principles and techniques.

Knowledge of the concepts, characteristics and capabilities of information technology.

Ability to learn SAP application software.

Ability to provide assistance and support to employees in the assignment of security roles.

Ability to analyze and translate management and business process objectives and procedures into information technology solutions to meet user and business requirements.

Ability to conduct presentations and security training.

Ability to use SAP Profile Generator.

Ability to learn and apply Commonwealth of Pennsylvania’s security administration policies and procedures.

Ability to interpret and apply technical manuals, procedures and specifications.

Ability to communicate effectively, orally and in writing.

Ability to establish and maintain effective working relationships with employees, vendors and user groups.

Ability to perform technical duties in a large scale enterprise environment.

Ability to identify technical problems and recommend solutions.

Ability to work independently.

Ability to use all components of Microsoft Office software.

MINIMUM EXPERIENCE AND TRAINING: One year of experience in the assessment, design, implementation, maintenance and support of SAP application security and a bachelor’s degree;

                                                                                                                                                                             or

Five years of experience developing, implementing and enforcing system security audit procedures;

                                                                                                                                                                             or

An equivalent combination of experience and training.