Morton Salt, Inc.
SAP Identity & Access Management Engineer
Morton Salt, Inc., Overland Park, Kansas, United States, 66213
SAP Identity & Access Management Engineer
Job Category:
Information TechnologyRequisition Number:
SAPID001835Posted:
August 22, 2024Employment Type:
Full-TimeLocation:
Overland Park, KS or Chicago, ILMorton Salt is an iconic company with a strong heritage and a bright future. Since 1848, we have been improving lives and enhancing everyday moments – at home, at work and virtually everywhere in between. We help unlock the flavors in food, make roads and sidewalks safer, improve the water in baths, pools, and homes, and keep businesses and industries running. We are a dedicated team who constantly strives to do better together, and we are passionate about building a sustainable future for our company, the communities in which we operate, and the world around us. By joining our team, you will contribute to producing and delivering every form of salt that enhances everyday life.Job SummaryThe SAP Identity and Access Management Engineer will be responsible for the compliant design, implementation, and administration of our SAP Ecosystem. This includes creating and maintaining roles within both SAP On-premise systems and SAP Cloud environments, and administering users in both SAP and non-SAP Systems. The role involves designing and improving security and business processes to be compliant and efficient.Duties and ResponsibilitiesSupport the existing Morton SAP on-premise systems including ECC, HCM, SCM, BW, and CRM, as well as the existing Morton SAP Cloud systems including Identity Access Governance, Identity Services (IAS and IPS), Concur, Ariba, Commerce Cloud, C4C, and BTP, along with non-SAP systems that are part of the Morton Employee Identity lifecycle such as Microsoft Active Directory and Azure Entra ID.Design and implement secure SAP authorization roles based on the principle of least privilege.Maintain role documentation to ensure users, approvers, and reviewers understand the access available.Regularly review and update roles to reflect changes in business processes and system functionality.Investigate and resolve user access issues related to authorizations and permissions.Work with application, process, and functional owners and users to understand and address access request needs.Maintain clear documentation of user access issues and resolutions within our ticketing tools.Configure and manage SAP's integration with SSO solutions (Azure, SAP Secure Login Service, SAP Identity Authentication Service).Collaborate with Infrastructure teams and application owners to ensure a seamless and secure SSO experience.Other duties as assigned.Knowledge, Skills, and AbilitiesBachelor's degree in Information Technology, Business Administration, Information Systems, or a related field.Ability to communicate and articulate effectively, both orally and in writing, to present complex concepts and ideas to IT development teams and business counterparts.Strong analytical and problem-solving skills to effectively identify and resolve issues.Ability to manage multiple conflicting priorities in a professional manner, with good planning and organizing skills.Ability to interact with business users, technical teams, and third parties.Experience working in distributed team environments, with initiative-taking and self-direction.Required:
Deep knowledge of SAP Security and Role Design principles including Master-Derived roles, Composite roles, Business Role Concept, authorization objects, and system traces.Experience in supporting and designing new roles based on business requirements or redesigning existing roles based on updated requirements.Experience in remediating segregation of duties conflicts via role design changes.Experience in leading and coordinating projects with various stakeholders and priorities to design, build, and deploy security solutions to the enterprise.Demonstrated experience with large Enterprise ERP implementations in the areas of technical design specification, development, testing, deployment, and support.Experience using Microsoft Office products, including Outlook, Excel, PowerPoint, and Visio.Willingness to travel, domestically and internationally, up to 25%.
Advantageous:
Speaking/writing in Spanish and French is desirable.Hands-on experience with SAP Identity Access Governance or Cloud Identity Services.Knowledge of SAP Datawarehouse tools BW, DataSphere, SAP Analytic Cloud (SAC) is a plus.Familiarity with S4/HANA architecture, features, and migration strategies.Working knowledge of Single Sign-On authentication methods such as SAML2.0 and OAuth.
At Morton Salt, we work best when we work as a team, treat one another with dignity and respect, and value the unique contributions of others. We are committed to equal employment opportunity and prohibit discrimination and harassment based on race, national origin, sex, religion, color, disability, marital status, protected veteran status, sexual orientation, gender identity, gender expression, genetic information, citizenship, or any other characteristic protected by law.
#J-18808-Ljbffr
Job Category:
Information TechnologyRequisition Number:
SAPID001835Posted:
August 22, 2024Employment Type:
Full-TimeLocation:
Overland Park, KS or Chicago, ILMorton Salt is an iconic company with a strong heritage and a bright future. Since 1848, we have been improving lives and enhancing everyday moments – at home, at work and virtually everywhere in between. We help unlock the flavors in food, make roads and sidewalks safer, improve the water in baths, pools, and homes, and keep businesses and industries running. We are a dedicated team who constantly strives to do better together, and we are passionate about building a sustainable future for our company, the communities in which we operate, and the world around us. By joining our team, you will contribute to producing and delivering every form of salt that enhances everyday life.Job SummaryThe SAP Identity and Access Management Engineer will be responsible for the compliant design, implementation, and administration of our SAP Ecosystem. This includes creating and maintaining roles within both SAP On-premise systems and SAP Cloud environments, and administering users in both SAP and non-SAP Systems. The role involves designing and improving security and business processes to be compliant and efficient.Duties and ResponsibilitiesSupport the existing Morton SAP on-premise systems including ECC, HCM, SCM, BW, and CRM, as well as the existing Morton SAP Cloud systems including Identity Access Governance, Identity Services (IAS and IPS), Concur, Ariba, Commerce Cloud, C4C, and BTP, along with non-SAP systems that are part of the Morton Employee Identity lifecycle such as Microsoft Active Directory and Azure Entra ID.Design and implement secure SAP authorization roles based on the principle of least privilege.Maintain role documentation to ensure users, approvers, and reviewers understand the access available.Regularly review and update roles to reflect changes in business processes and system functionality.Investigate and resolve user access issues related to authorizations and permissions.Work with application, process, and functional owners and users to understand and address access request needs.Maintain clear documentation of user access issues and resolutions within our ticketing tools.Configure and manage SAP's integration with SSO solutions (Azure, SAP Secure Login Service, SAP Identity Authentication Service).Collaborate with Infrastructure teams and application owners to ensure a seamless and secure SSO experience.Other duties as assigned.Knowledge, Skills, and AbilitiesBachelor's degree in Information Technology, Business Administration, Information Systems, or a related field.Ability to communicate and articulate effectively, both orally and in writing, to present complex concepts and ideas to IT development teams and business counterparts.Strong analytical and problem-solving skills to effectively identify and resolve issues.Ability to manage multiple conflicting priorities in a professional manner, with good planning and organizing skills.Ability to interact with business users, technical teams, and third parties.Experience working in distributed team environments, with initiative-taking and self-direction.Required:
Deep knowledge of SAP Security and Role Design principles including Master-Derived roles, Composite roles, Business Role Concept, authorization objects, and system traces.Experience in supporting and designing new roles based on business requirements or redesigning existing roles based on updated requirements.Experience in remediating segregation of duties conflicts via role design changes.Experience in leading and coordinating projects with various stakeholders and priorities to design, build, and deploy security solutions to the enterprise.Demonstrated experience with large Enterprise ERP implementations in the areas of technical design specification, development, testing, deployment, and support.Experience using Microsoft Office products, including Outlook, Excel, PowerPoint, and Visio.Willingness to travel, domestically and internationally, up to 25%.
Advantageous:
Speaking/writing in Spanish and French is desirable.Hands-on experience with SAP Identity Access Governance or Cloud Identity Services.Knowledge of SAP Datawarehouse tools BW, DataSphere, SAP Analytic Cloud (SAC) is a plus.Familiarity with S4/HANA architecture, features, and migration strategies.Working knowledge of Single Sign-On authentication methods such as SAML2.0 and OAuth.
At Morton Salt, we work best when we work as a team, treat one another with dignity and respect, and value the unique contributions of others. We are committed to equal employment opportunity and prohibit discrimination and harassment based on race, national origin, sex, religion, color, disability, marital status, protected veteran status, sexual orientation, gender identity, gender expression, genetic information, citizenship, or any other characteristic protected by law.
#J-18808-Ljbffr