Senior SAP Security Engineer

At GameStop we are committed to providing exceptional service and delivering the latest and greatest in gaming products to our customers. As a leading global retailer of video games electronics and gaming merchandise we take pride in offering a wide range of products that cater to the needs and desires of gamers worldwide. Our mission is to create unforgettable experiences for our customers by constantly pushing the boundaries of whats possible. Whether youre a hardcore gamer or just starting out weve got something for everyone. Join us in our mission to shape the future of gaming and bring the best gaming products to the world!

As a Senior Enterprise Systems Security Engineer you will play a key role in maintaining the security of and GRC compliance for GameStops enterprise applications including but not limited to S/4HANA SAP GRC EAM SAP GRC AC SAP CAR SAP SLT SAP BTP SAP CPI SAP MBC HANA Database SAP Analytics Cloud and Cloud ALM. The ideal candidate will have hands-on experience in SAP roles and authorizations Fiori catalogs and groups SoD (separation of duty) conflict management Risk and Control Matrix and SAP GRC Access Control. This role requires a deep understanding of cloud and on-premises security models to safeguard enterprise-wide SAP landscapes. We are seeking a candidate who not only brings deep expertise in SAP Security and GRC but is also motivated to expand into broader Cybersecurity responsibilities. This role offers the opportunity to grow beyond SAP by contributing to critical organizational cybersecurity initiatives.

This position will sits on-site 5 days a week in Grapevine TX.

Key Responsibilities

SAP Security & Access Management:

• Design develop and manage SAP S/4HANA Security roles and authorizations.
• Implement and manage security for SAP Fiori apps including Fiori catalogs groups.
• Ensure Segregation of Duties (SoD) compliance by identifying and mitigating conflicts.
• Manage user provisioning de-provisioning and role-based access control (RBAC).
• Work closely with business and IT teams to align security policies with compliance and regulatory requirements.

SAP GRC & Compliance:

• Configure and monitor Access Risk Analysis (ARA) Emergency Access Management (EAM) and Access Request Management (ARM).
• Develop strategies for SoD risk mitigation and remediation.
• Ensure audit compliance and provide support for internal and external audits related to SAP security.

SAP BTP CPI & Multibank Connectivity Security:

• Secure SAP Business Technology Platform (BTP) applications and services ensuring compliance with enterprise security policies.
• Manage user roles and authorizations in SAP Cloud Integration (CPI) and Multi-Bank Connectivity and handle authentication mechanisms (OAuth SAML X.509 etc.).

SAP HANA Database Security:

• Define and enforce SAP HANA database security policies and best practices.
• Implement HANA privileges roles encryption and auditing to ensure data protection.

Beyond SAP:

• Be eager to learn and evolve into a broader Cybersecurity role supporting enterprise-wide security beyond SAP.
• Support Business Continuity and Disaster Recovery (BC/DR) planning and implementation efforts.

• Help iterate on a Threat and Vulnerability Management Program collaborating with IT and risk stakeholders.
• Assist with the development and execution of other cybersecurity initiatives policies and controls as needed by the organization.
• Demonstrate a growth mindset and willingness to take ownership of emerging security needs across the enterprise not limited to SAP systems.
  

Qualifications & Experience

Required:

• 5 years of experience in SAP Security & GRC with expertise in S/4HANA Security and Fiori Security.
• Experience working with Fiori Launchpad Catalogs Groups Spaces and Pages.
• Hands-on experience with SAP BTP Security CPI Security and Multi-Bank Connectivity Security.
• Strong knowledge of SAP GRC Access Control ARA EAM and SoD conflict resolution.
• Experience in HANA Database Security including privileges encryption and authentication mechanisms.
• Understanding of SAP Cloud and On-Premises integration security models.
• Knowledge of compliance frameworks (SOX GDPR NIST ISO 27001).
• Strong troubleshooting analytical and documentation skills.

Preferred:

• SAP Security GRC or HANA certifications are highly desirable.
• Cyber Security Certifications or degrees are an added advantage.
• Background in building resilient infrastructure managing backups and designing continuity plans (SAP or otherwise)
• Hands on security experience in the form of challenge sites (e.g. HackTheBox) or bug bounty program participation
• Familiarity with SAML OAuth SNC and other authentication protocols in SAP environments.

Full-time store positions at GameStop are also eligible to participate in incentive programs health benefits paid time off 401 (k) employee discount and a casual work environment. Positions at GameStop may also be eligible for a bonus and/or other incentives.