Part-Time -Enterprise Applications Security Technical Specialist

The Enterprise Applications Security Technical Specialist is responsible for leading and executing security architecture, governance, and compliance across the organization’s enterprise application landscape. This role ensures robust access controls, data protection, and secure operations within systems such as Workday, SAP ECC, SAP EWM, SAP Concur, and other supporting applications. The specialist will work closely with IT, audit, compliance, and business teams to align security policies with regulatory and operational standards.

Key Responsibilities

• Design, implement, and maintain security frameworks for enterprise applications in compliance with corporate security policies and regulatory requirements (SOX, GDPR, etc.).
• Oversee user access provisioning and de-provisioning leveraging SAP IAG, Identity Authentication, Identity Provisioning, and other IAM tools.
• Define, enforce, and optimize role-based access controls (RBAC), segregation of duties (SoD), and access governance across platforms.
• Conduct regular access audits, risk assessments, and vulnerability reviews for Workday, SAP, and other enterprise systems.
• Investigate and respond to access-related security incidents, ensuring timely remediation and reporting.
• Collaborate with cross-functional stakeholders to ensure secure design during implementations, enhancements, and integrations.
• Integrate enterprise applications with identity providers such as Azure AD/Okta for SSO, MFA, and adaptive authentication.
• Maintain security documentation including policies, configurations, runbooks, compliance reports, and audit artifacts.
• Drive continuous improvement with regard to monitoring, automation, and threat mitigation for application security.

Core Technical Skills (Workday Focus)

• Workday HCM Security Administration
• Workday Security Framework: Domain Security, Business Process Security
• Role structures: UBSG/RBSG/Intersection Security Groups, ISUs
• Workday Integrations: EIB, Workday Studio, SFTP
• Authentication Protocols: SAML SSO, MFA, IP Range Zones
• Integration with Azure AD/Okta and authentication policy governance
• Workday Reporting & Calculated Fields
• Workday data conversion templates, audit reports, and BP configuration
• Understanding of REST/SOAP APIs for secure integrations

Additional Technical Skills (SAP & Enterprise Apps)

• SAP ECC, SAP EWM, SAP Concur access controls
• SAP Identity Access Governance (IAG), SAP Identity Authentication & Provisioning
• Access governance and SoD principles for SAP applications
• Knowledge of enterprise risk and monitoring tools within ERP ecosystems

Preferred Qualifications

• Certifications in Security or Identity governance (e.g., CISM, CISSP, SAP Security, Workday certifications)
• Experience with enterprise compliance programs (ISO 27001, SOX, HIPAA)
• Knowledge of vulnerability management and SIEM tooling
• Strong knowledge of secure development lifecycle and security best practices