SAP Application Security Analyst - Clearance Required

Job Locations US-MD-Belcamp
Posted Date 5 months ago(3/11/2020 2:51 PM)
Job ID
# of Openings


LMI is a consulting firm dedicated to advancing the management of government. Our clients value our specialized services in logistics, management advisory services, advanced analytics, and digital services supporting the defense, national security and health markets. We believe government can make a difference, and we seek talented, hardworking people who share that conviction.  We offer competitive salary, a merit-based bonus structure, a generous retirement plan, an unlimited leave policy, a focus on continued development including a robust educational reimbursement program, flexible work schedules, and programs to support work-life balance.


The Application Security Analyst will work on a large project team supporting the Army Shared Services Center (Army SSC) organization located at Aberdeen Proving Ground, MD. The Army SSC provides capability support services to all Army Enterprise Resource Planning (ERP) logistics and financial systems. Capability support includes system sustainment, sustainment modernization, and enhancement activities such as system design, development, testing, and deployment. Specific tasks include functional analysis, help desk, cybersecurity, quality assurance, configuration management, database administration, portal and support tool management, SAP BASIS support, technical services, interface/middleware maintenance, and system monitoring.


The Application Security Analyst will assist the Army SSC in 1) Implementing GFEBS directed IA mandates such as information operations conditions (INFOCONs) and IAVAs, bulletins and tech-tips and provide additional vulnerability remediation services to include application updates and patch management; 2) Ensuring a comprehensive vulnerability management process including the systematic identification, elimination, and mitigation of software vulnerabilities is in place; 3) Conducting system application vulnerability scanning as directed by DoD regulations and shall evaluate the security posture of the system via GFE tools used to scan for IAVA and STIG compliance; 4) Performing all requisite activities to verify GFEBS system open source products against the approved products list and/or submit for approval and/or waiver requests; 5) Providing a Disaster Recover (DR) Plan (A029) with resumption of mission or business essential functions within 24 hours of activation; 6) Facilitating DR exercises to ensure full system failover capability exists at secondary site. In addition, provide a DR Memorandum for Record (A030) with the key information summarizing the objectives and outcomes of the DR exercise; 7) Defining and implement a standard Patch and System Baseline Management process for each set of redundant servers that outlines specific procedures. The process shall include contingency and back out plans for patch deployment; and 8) Evaluating the GFEBS system components for security vulnerabilities and establish appropriate controls (e.g., access control) to limit vulnerabilities.


  • Active DoD Secret or Interim Secret Clearance
  • 7-10 years SAP experience in Security strategy development and implementation:
  • Experienced in SAP Security solutions to include ECC required with BW, BI/BOBJ, CAMS, GRC, SCM, Sol Man, & PI a plus
  • Experience in deploying new SAP Security solutions to include system startup, configuration, and upgrades
  • Experience in coordinating multiple SAP Security full life cycle implementations from preparation to go-live and operation
  • Ability to interpret ABAP code to identify authorization requirement
  • Experience managing users and authorization assignments across SAP and supporting systems
  • Extensive experience with and knowledge of SAP Security related tables and programs
  • Experience with ABAP and JAVA role development and maintenance
  • Experience in working with leadership, functional, and technical teams to understand and implement SAP Security controls
  • Communication and presentation skills, both written and verbal at all levels of the organization and with external parties including auditors, agents, customers and regulators
  • Understanding and knowledge of functional process in support of Application Security design and problem solving
  • Understands integration technology for tools interfacing with SAP
  • Able to independently perform most assignments with general direction about desired results
  • Mentors junior resources in SAP skills and procedure
  • Available for 24x7 on-call support
  • IT Level 2 and IAT Level 2 certification required (Security+ CE and relevant certification/training in technical area)
  • Knowledge of development of custom authorization objects and fields for ABAP and table control
  • Familiarity with SAP Hot Notes review and concepts
  • 2 years of LMP Security experience
  • Experienced with CRDB and related process
  • Experience with UAM (User Account Management Tool) and integration with SAP Systems
  • Experience integrating 3rd party IDM tools with SAP ABAP and JAVA based systems
  • URDB (User Role Database)
  • Understands integration between these applications

EEO Statement

LMI is an Equal Opportunity Employer-all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, or national origin. 


Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed

LMI is an Equal Opportunity Employer. LMI is committed to the fair treatment of all and to our policy of providing applicants and employees with equal employment opportunities. LMI recruits, hires, trains, and promotes people without regard to race, color, religion, sex (including pregnancy), sexual orientation, gender identity, age, national origin, disability, veteran status, or any other factors protected by applicable law.

Need help finding the right job?

We can recommend jobs specifically for you! Click here to get started.