IT Security Specialist

As an IT Security Specialist you will be responsible for supporting the goals of the Build & Compliance team which is part of the Information Security organization within IT Technical Services. You will perform many tasks independently and some under general guidance from the Build & Compliance Lead, Technical Lead, and senior teammates.

You will have an opportunity to grow and develop within the Information Security area that is considered to be one of the most attractive IT specialties today. You will take an active role in the Security Operations team supporting global processes, contributing to projects and influencing the corporate environment, which will help you to expand your business acumen and build professional attitude.

• Develop and implement the security strategies, procedures, standards, and tools necessary to enable business functionality for SAP and other enterprise applications, while securing sensitive data and otherwise supporting the Company's internal controls guidelines
• Provide analysis, development, documentation, testing, and maintenance of activity roles, job roles, profiles, and authorizations for all SAP landscapes (including ERP, HR, Portal, BW, CRM, SCEM, APO, SRM, Solution Manager, CUA, Netweaver Gateway, ILM) and some non-SAP landscapes (including Sabrix, Vendavo, and SuccessFactors)
• Collaborate with Application Services to design, build, and sustain the security layer for SAP implementations enterprise wide
• Manage SAP user populations through Central User Administration (CUA) to grant access to multiple SAP clients from a central location
• Monitor and enforce security policies in accordance with International Paper's Global Information Security strategy, plan, and operating model
• Resolve user application security issues including root cause analysis and solution definition
• Identify and update system data required to support role and user administration processes
• Collaborate with teammates and IT partners in support of internal and cross-functional projects
• Act as a conduit between business partner organizations and Application Security
• Generate and analyze reports and information in support of security procedures
• Explain application security processes and procedures to business partners
• Build functional specifications and work with SAP development to build simple functionality
• Participate in the team's on-call support rotation
• Assist with internal and external audits, user reviews, and other compliance activities
• Identify and implement improvements to processes and procedures

• Bachelor's degree in Computer Science, Information Systems, or related field, or equivalent work experience
• 2-3 years of general technical experience in an IT role
• Experience with SAP's security model and authorization concepts
• Experience with SAP products (ERP, HR, Portal, BW, CRM, SCEM, APO, SRM, Solution Manager, Netweaver Gateway, CUA) and/or SAP-related products (SuccessFactors, Vendavo, Sabrix, Ariba)
• Experience with SAP technical tools (ABAP, OSS, eCATT, ALE, IMG, Firefighter, SSO, Fiori)
• Ability to understand and explain business and IT process flows
• Knowledge of business analysis and design concepts
• Knowledge of system security concepts (experience preferred)
• Knowledge of regulatory requirements (Sarbanes-Oxley, segregation of duties)
• Ability to formulate security solutions based on business process requirements
• Experience analyzing data with Excel or Access a plus
• Customer focus with strong communication skills
• Understanding of business and/or corporate processes and organizations
• Excellent verbal and written communication in English