Job Description
Job DescriptionAt ALLERE GROUP, we pride ourselves in creating the perfect match for our candidates. We work tirelessly to build relationships with top companies across the nation, so we always have exciting opportunities for the right candidates. If you are excited about emerging technologies and would love to be a part of a progressive company, we want to talk to you!Job Title: ERP Security AnalystLocation:Allentown, PA (Hybrid)The Cybersecurity organization advances the overall state of security through critical initiatives and coordination of large security and customer-focused projects. Cybersecurity also develops systems to monitor and respond to attacks against our systems, provides educational awareness to the corporation on security best practices, and ensures data sharing relationships with third parties securely protect information. The ERP Security Senior Analyst will serve as a hands-on guide and technical expert, responsible for defining and implementing robust security controls in our HR and Finance platforms. This position will play a critical role in ensuring the secure operation and governance of our SAP landscape, with particular focus on role design, access controls, and regulatory compliance. The ideal candidate will have hands-on experience with ECC and S/4HANA systems, SAP GRC, and integration with modern IAM platforms.Core Responsibilities• Design, implement, and maintain SAP security roles and authorizations (PFCG, SU24, SU01).• Analyze and manage segregation of duties (SoD) risks using SAP GRC Access Control.• Secure custom transactions, RFCs, BAPIs, and ABAP developments.• Collaborate with business process owners to ensure roles align with least privilege principles.• Monitor SAP security logs (SM20, STAD) and perform forensic investigations as needed.• Support Fiori and SAP S/4HANA application security, including OData and catalog roles.• Integrate SAP systems with identity providers like EntraID, Okta, or Ping for SSO.• Drive improvements in SAP security posture through continuous monitoring and proactive remediation.• Evaluate, enhance, and document security configurations, procedures, and standards.• Stay informed of SAP security trends, vulnerabilities, and best practices.Experience• 7+ years of SAP security experience, including ECC and/or S/4HANA.• Hands-on experience with SAP GRC Access Control modules.• Strong understanding of RBAC, SoD principles, and SAP authorization concepts.• Familiarity with SAP Fiori security and cloud security models.• Experience with integration into identity management platforms (e.g., EntraID, Okta, CyberArk).• Ability to interpret audit and compliance requirements into SAP controls.• Excellent communication and collaboration skills.• Deep hands-on knowledge of Microsoft Purview, MIP, and DLP • Familiarity with secure AI data handling, e.g., TDE, DP, FHE, vector store hardening • Experience with classification, taxonomy design, and data lineage tracking • Understanding of data lifecycle, retention, archiving, and deduplication at enterprise scaleALLERE GROUP is a proud woman-owned business (WBENC certified) and active supporters of numerous philanthropic, volunteer, and fundraising endeavors. ALLERE GROUP offers direct hire, contract to hire, and statement of work placements. We offer access to employer healthcare benefits, and a 401k retirement plan. Allere Group provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws.