ABOUT THE BRANCH The Central Budget Management System (CBMS) branch provides day-to-day management and support of CBMS to entity and business users. In conjunction with IT Services branch, the CBMS branch manages the CBMS solution and ICT infrastructure. CBMS is an SAP based application. The CBMS is the Whole-of-Government ICT system underpinning the budget and financial management of the Australian Government. It manages the flow of financial information between Finance and Australian Government entities to facilitate cash and appropriation management, the preparation of budget documentation and financial reporting. The CBMS is used to: prepare and publish documentation for the Federal Budget, Mid-Year Economic and Fiscal Outlook (MYEFO) and other estimates updates manage annual appropriations, special appropriations, special accounts and the Official Public Account (OPA) (collectively referred to as Cash Management) produce the whole-of-government monthly financial reporting produce the whole-of-government annual financial reporting (ie. Final Budget Outcome (FBO) and the Consolidated Financial Statements (CFS)). The CBMS solution platform is designed as a highly available environment. It utilises the SAP product suite at the application layer, VMware at the virtual layer, and Hitachi hardware and software for compute, storage and backup. The key duties of the position include THE OPPORTUNITY The Security Engineer role in the CBMS Platform Enablement team will be at the forefront to perform SAP security operations including: handling password resets, user cessations, administer SAP OSS security and connections within our SAP landscape. This may include support to: Australian Government Budget process Public Sector financial reporting including AASB accounting standards & Government Finance Statistics reporting; and Whole of Government consolidations and SAP's Business Consolidation System. Continuous improvement to the CBMS policy, process and procedures The role requires well developed technical skills, stakeholder management and communication skills. This role liaises with technical staff from supporting vendors, the broader Finance technology division as well as internal support and SME staff directly supporting key Finance business users. The role requires operational experience in an SAP environment to support demands in areas such as: Experience in SAP Security operations - desirably experienced in: Perform daily user to role exports using a provided spreadsheet. Handle password resets and user cessations. Manage security transports for updated programs and entities. Administer SAP OSS security and connections. Configure and maintain SAP logon groups. Maintain SAP security and perform security administration tasks. Lock and unlock user accounts as needed. Provide security advice and perform security audits. Maintain security profiles and activity groups. Adhere to security administration procedures and frameworks. Detecting, understanding, responding, and managing cybersecurity risks and incidents Experience using SAP GRC and CUA. Knowledge of SAP security policies and controls. Experience in managing user accounts, roles, and authorisations. Ability to monitor and audit for security incidents and vulnerabilities. Experience in developing and testing security patches and updates. Familiarity of security standards and regulations. Familiarity with security tools and techniques. Experience in supporting SAP finance business applications desirably including GRC. Familiarity with the ITILv4 framework. Monitoring, analysing and delivering within agreed timeframes. Collaboration and engagement with customers, venders and functional leads. The role involves working under direction in a complex technical environment and requires experience with SAP systems, system monitoring, and familiarity with the ITILv4 framework and processes. Core duties: Perform administration of SAP OSS security and connections and configure and maintain SAP logon groups. Conduct maintenance of SAP security and perform security administration tasks such as locking and unlocking user accounts. Provide security advice and perform security audits. Maintain security profiles and activity groups and adhere to security administration procedures and frameworks. Have knowledge of SAP security policies and controls and experience in managing user accounts, roles, and authorisations. Perform monitoring and auditing security incidents and vulnerabilities and help develop and test security patches and updates. Understand and engage in security standards and regulations. Provide support of SAP finance business applications, including GRC and CUA. Engage in implementation of SAP security upgrades. DETAILED VACANCY INFORMATION For detailed information about this role, including the job specific capabilities, please refer to the downloadable vacancy pack, which can be accessed by clicking the hyperlink at the bottom of this page.
Visit engineeringsuper.com.au to find our PDS and TMD.