Senior Security Consultant, CAPPS Program (Remote)

About the Role:

This remote position involves providing highly advanced, senior-level consultative services and technical assistance for the CAPPS Program, focusing on its security framework. You will be responsible for managing and enforcing role-based access control (RBAC) and least-privilege models, designing and maintaining segregation-of-duties (SoD) rules, and identifying/remediating SoD conflicts. The role includes reviewing security roles, monitoring logs for suspicious activity, overseeing secure integration of third-party applications, and validating application changes for security and compliance impact.

Responsibilities:

• Security Framework Management: Manage and enforce RBAC and least-privilege models within CAPPS and connected systems.
• Segregation of Duties (SoD): Design, maintain, and remediate SoD rules and conflicts.
• Access Control Review: Review and validate security roles, permission sets, and custom authorizations.
• Log Monitoring: Monitor and analyze authentication, authorization, and privilege escalation logs.
• Integration Security: Oversee secure integration of third-party apps via SAML, OAuth, OIDC, SCIM, and custom APIs.
• Change Validation: Validate CAPPS application changes, customizations, and workflows for security and compliance impact.
• Incident Response: Respond to and investigate identity-related security incidents.
• Standards Maintenance: Maintain standards for security, performance, compliance, and architecture.
• Accessibility: Ensure all digital products and content meet WCAG 2.1 accessibility standards.
• Deliverable Review: Review and approve assigned Security Deliverables related to CAPPS Architecture, SDLC, Disaster Recovery, and Security Plans.
• Service Desk Support: Perform Level 2 Service Desk duties for complex issues, troubleshooting, and basic configurations, in collaboration with a Managed Services vendor.
• System Maintenance: Plan, design, develop, deploy, support, and maintain system configurations and modifications for CAPPS HR/Payroll application.
• Special Projects: Participate in special projects and cyclic processes such as agency deployments, year-end closing, legislative changes, and PeopleSoft upgrades.
• Agency Support: Support CAPPS agencies with discovery, prototyping, configuration, security, conversion, integration, and testing.
• Process Adherence: Perform all duties following CPA’s processes, policies, and procedures within project scope and schedule.
• ITIL Practices: Work in accordance with ITIL principles for ITSM and ITAM.
• Ticket Management: Actively respond to and maintain customer ticket requests via the CAPPS Service Desk.
• Major Incident Management: Participate in CPA’s Major Incident Management process.
• DR & Testing: Participate in Disaster Recovery and Upgrade Testing activities.
• Security Measures: Plan, design, develop, implement, and maintain IT security measures.
• Audits: Participate in annual SOC-1 attestation audits and ensure security considerations in all solutions.

Minimum Requirements:

• 10 years of extensive Texas public sector experience.
• 10 years of extensive experience performing technical activities in support of CPA application systems.
• 10 years of extensive experience creating and managing a strategic roadmap.
• 10 years of experience preparing executive-level presentations.
• 10 years of experience performing technical project management for CPA’s CAPPS program.
• 10 years of experience interpreting contractual language and holding vendors accountable.
• 10 years of extensive knowledge/experience with data integration, data quality, and SDLC processes.
• 10 years of experience in IT security and control practices.
• 10 years of technical experience with PeopleSoft FSCM or HCM 9.2, PeopleTools, Peoplecode, Application Designer, SQL, PS Query, SQR, Application Engine and Oracle 11 or higher.
• 10 years of experience with CAPPS Central production and deployment technical support.
• 8 years of experience with IT service desk functions and ITIL framework.
• 5 years of experience serving in a security analyst role overseeing a Managed Services provider.
• 5 years of experience with user role segregation of duties (SoD).

Preferred Qualifications:

• 10 years of experience with software and hardware management industry best practices.
• 10 years of experience with CPA’s legacy Statewide Financial Systems production support.
• 10 years of experience developing technical specifications for IT procurements.

Location:

Remote