Blog Archives


Information Security Analyst


Job Purpose / Description:

This position will be responsible for assisting in the engineering of the application connectivity through Security Operations (SECOPS) managed firewalls, the creation and management of the documentation for the connectivity in the Company Connectivity Registry (CCR), representing the registered connectivity for approval on the Third Party Access Solutions Working Group (3PASWG) Weekly Call, and reviewing the Firewall Change Request for accuracy and compliance to support all third party connectivity.  They will ensure third parties are registered in CASP (Company Approved Service Providers) database and the requested applications are listed in the Company Systems Inventory (CSI) or Company Technology Catalog (CTC).  They will confirm network connectivity by accessing network equipment and confirm configurations and status.  They will work with client organizations, Helpdesk and other CT groups to ensure all firewall and ACL related troubles are corrected and documented in a timely manner.  They must possess the ability to document any new policies and/or procedures into the appropriate format.  They will work with other group members to ensure that the Process Control Management documentation and other documentations (drawings, databases, spreadsheets, etc.) are up to date and accurate.
 
Job Responsibilities:
 
As a member of External Connectivity Security Team (ECS) you will:

  • Process Firewall, Proxy, RAS requests and perform risk assessments to ensure that the connectivity is compliant with Company Information Security Standards and IS Policies.
  • Provide Information Security oversight and guidance to Company businesses requiring 3rd party connectivity as it relates to Company Information Security Standards and IS Policies.
  • Liaise with multiple technology teams (i.e. CATE Network Engineering; Proxy OPs and Integration; Perimeter Security Ops; System Based Computing; Remote Access Services and Business Information Security Officers); to facilitate cross functional solutions as it relates to 3rd party connectivity aligning with Company Information Security Standards.
  • Modality solutions include (but not limited to) RAS, B2B, Firewall; Proxy; and TPA solutions.
  • Test and pilot system enhancements/changes and/or other.
  • Complete all tasks – having connection with the organization’s activity but not detailed in the JDs – charged by the manager or superior.
  • Identify and develop new and improved technical procedures and process control manuals
  • Identify significant IS threats and vulnerabilities as it relates to connectivity requests.
  • Assume informal/formal mentorship role within teams and assist with the coaching and training of new team members
  • Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Company, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency.

 
Qualifications:

  • Firewall Administration 1 – 3 years
  • Network Administration 1 – 3 years
  • TCP/IP Protocols IPSec/GRE/GETVPN Project Management 1 – 3 years
  • Management of Technology Projects including Platform Migration Data Migration Network/Firewall Connectivity Windows/Unix/Linux 1 – 3 years
  • Administration Security Configuration Scripting Web Services and FTP Encryption 1 – 3 years
  • Encryption Algorithms Hardware Encryption (Encryptions/IPSec/GRE/GETVPN) Software Encryption (NDM/FTP/Application) VPN solutions
  • Routing Configuration Access Control Lists TCP/IP Protocols IPSec/GRE/GETVPN Preferred Skills

 
Key Responsibilities:

  • Collection of metadata, validation and registration of Firewall and Proxy rules related to migrations.
  • Validating legacy connectivity for ownership, registration, and usage
  • Providing support of Business requests for Changes and validation
  • Completing additional tasks in connection with the role but not detailed in the current job description, charged by the direct manager, supervisor, or the functional head.



SAP FICO Consultant


SAP Solution Consultant FICO BTP
As an SAP FICO Consultant with BTP you will specialize in integrating SAP's Financial Accounting and Controlling (FICO) module with SAP's Business Technology Platform (BTP). This role involves optimizing financial operations and reporting, implementing, and managing SAP FICO solutions, and leveraging BTP for advanced analytics and application development.
 




SAP MM BTP consultant


SAP Solution Consultant MM BTP

Summary
We are actively seeking a seasoned SAP MM Consultant with a solid background in SAP BTP integration and expertise in orchestrating successful data migration projects. This role is pivotal in ensuring the seamless alignment of our SAP MM module with the SAP Business Technology Platform (BTP) and driving efficient data migration initiatives.

Tasks & Responsibilities:

  • Spearhead the enhancement and optimization of SAP MM processes, focusing on BTP integration.
  • Collaborate closely with cross-functional teams to interpret business requirements and translate them into effective SAP MM configurations.
  • Utilize the SAP Integration Suite to establish robust integrations within the SAP landscape.
  • Design and implement interfaces to external systems, with a willingness to learn and adapt to BTP integration best practices.
  • Being able to understand and maintain ABAP programs to tailor SAP MM functionalities, ensuring synergy with BTP requirements.
  • Demonstrate flexibility and a willingness to explore ABAP solutions, while experience in ABAP is considered advantageous.
  • Be aware of the potential of SAP BTP to contribute to integration projects, ensuring harmonious coexistence with the SAP MM module.
  • Collaborate closely with development teams to explore innovative BTP capabilities andtheir applications.
  • Participate and cooperate in planning and executing data migration projects related to SAP MM with BTP ensuring accuracy, completeness, and timeliness.
  • Utilize BTP tools and methodologies to streamline and enhance data migration processes.

Skills & Experiences:
Must Have:

  • Proven expertise as an SAP MM Consultant.
  • Reliable knowledge of SAP BTP, integration, and data migration projects.
  • Understanding of the SAP Integration Suite and its application in seamless SAP module integration is an asset.
  • Flexibility and a willingness to learn and adapt to emerging technologies.
  • Experience in ABAP programming language is advantageous but not mandatory.
  • Knowledge of SAP Business Technology Platform (BTP) is considered beneficial.
  • Experience in successfully leading and executing data migration projects.
  • Excellent analytical and problem-solving skills.
  • Strong communication and collaboration skills for effective teamwork.

Nice to have:

  • Bachelor's degree in Computer Science, Information Technology, or a related field.
  • SAP MM certification is highly desirable.
  • Minimum of 5 years of experience in SAP MM consulting, with a focus on BTP integration and data migration.



Info Sec Tech Analyst


Job Description

  • Info Sec Tech Analyst is responsible for automating infrastructure activities, application onboarding and provisioning requests fulfillment in the Authentication Platforms space on the enterprise platform.
  • The job is heavy on collaboration with many partner support teams including vendor support, System administrators / architects on a regular basis and have the ability to track the issue to closure as Level 3 SME.
  • Candidate should be a fast-learner, able to do multitasking and has the ability to work under pressure.
  • Must have good work ethic and follow documented process. Understanding of implementation of appropriate controls in above products for the safety and security of the organization.
  • Should have very good attitude, agile personality and work as a good team player.

Key Responsibilities

  • Perform deployment of applications and configurations in web/application servers and test the automation use cases.
  • Provide basic support for applications on UNIX or LINUX environment like start/stop services.
  • Work in Python, shell or other scripting languages.
  • Support setting up monitoring dashboards on tools like AppDynamics.

Experience and Skills

Must-have Skills
2-5 years of relevant industry experience in two or more of the following:

  • Understanding of web servers and app servers required to support application deployments and basic tasks.
  • Strong ability to utilize Unix and Linux systems like Redhat Enterprise Linux 8.x/7.x/ 6.x.
  • Hands on in Python, shell or other scripting languages.

Desired Skills

  • Conversant in Linux-based environments (preferably RHEL) that includes being conversant in terminal commands and developing shell scripts.
  • Create automated playbooks using Ansible and/or Jenkins platform.
  • Familiarity with IT Service Management processes and tools such as a Service Now
  • Exposure to one or more of the following:
    • Appdynamics, sensu
    • Splunk processing language
    • Data Warehouse, ETL and Business Intelligence (BI)
    • BI products: PowerBI, Qlikview, Tableau, Cognos, Arcadia

Education

  • Bachelor's Degree.
  • Certifications such as ITIL, CISSP, AWS are desired, but not mandatory. However, willingness to complete certification would be expected.

 




MSS Specialist


Mobile Security Services specialist

Mobile and SaaS applications have become critical in providing access to our clients and we continue investing in these capabilities and our clients build dependency into their mobile devices. The cross-functional MSS team has the mission to collaborate with the businesses and IT globally to support these initiatives ensuring appropriate integration and controls.
In support of Global Identity and Access Management within Cyber Security Services, the Mobile Security Services specialist is responsible for managing High availability, complex, and fault tolerant Security services globally. The role requires interaction and collaborative efforts with highly skilled Engineers, strategic suppliers, program managers, and business contacts. MSS specialist helps our client to publish their mobile applications in the various marketplaces (ie: iTunes, Google Play, etc.) while adhering to security and compliance standards
 
Responsibilities:

  • Handle day-to-day operational onboarding of applications, support application issues, perform root cause analysis/resolution for application and system issues including but not limited to resolving defects and performing enhancements on the systems in collaboration with multiple teams in to meet safety and soundness requirements
  • Serve as an SME and responsible for managing and reviewing application integration requests, develop and adapt processes and assist technical teams during the on-boarding process end to end.
  • Maintain SLA and keeps themselves and his team to the highest standards.
  • Responsible for on-boarding, processing and publication of mobile applications into marketplaces (ie: iTunes, Google Play, etc.) end to end.
  • Maintain candor and gain customer trust while educating and enforcing process requirements and controls.
  • Collaborate with technical teams to understand business requirements and provide solutions by acting as a liaison between operations and engineering teams.
  • Proactively identify compliance gaps and support leadership in creating controls issues, understand internal controls and support automation and processes that meet operational and compliance standards
  • Ability to work independently to manage peer groups and management’s expectations
  • Stay abreast of new technology requirements and changes over time.
  • Ensure that frictionless rich customer experience is at the center of services provided while meeting highest security and compliance standards.

*** Occasional work outside of normal operating hours required depending on project needs.

Qualifications:

  • Critical thinking – Understand how operations work
  • Attention to detail as changes may surface so that business delivery can continue without abdicating control measures.
  • Experience in authentication domain with Security knowledge
  • Working knowledge of Shell script usage
  • Demonstrated ability to take ownership and follow up on issues to completion
  • Demonstrated ability to work in a team and to work well under pressure
  • Advanced analytical and problem-solving skills
  • Consistently demonstrates clear and concise written and verbal communication
  • Demonstrated ability to remain unbiased in a diverse working environmentt
  • Information security industry certification on any one of CISSP, CISA, and CISM, ITIL preferred

Nice to have
 

  • Experience with NoSQL and/or Microsoft SQL & Oracle RDBMS preferred
  • Knowledge of security on Cloud, AWS, GCP, Azure, Kubernetes, Chef, containers,
  • Automation related experience with CI/CD pipeline, Jenkins – a plus
  • Experience with using bigdata such as Splunk
  • Working knowledge of product and technologies like open SSH, open SSL, PGP, Encryption protocols and mobile security standards

Education:

  • Bachelor’s degree/University degree or equivalent experience
  • Master’s degree preferred