Job Closed
This listing is no longer active.
Security & Compliance Analyst
Location
Texas
Posted
132 days ago
Salary
$108.2K - $153.9K / year
Seniority
Lead
Job Description
Security & Compliance Analyst
Cayuse Holdings
• Plan, design, configure, deploy, support, and maintain system configurations and modifications for the CAPPS Program. • Provide oversight of IAM workflows, including account lifecycle management, provisioning, de‑provisioning, and access reviews. • Manage and enforce role-based access control (RBAC) and least‑privilege models within ERP (CAPPS) and connected systems. • Design and maintain segregation of duties (SoD) rules; identify, analyze, and remediate SoD conflicts across business processes and tenants. • Review and validate security roles, permission sets, and custom authorizations within CAPPS and all ancillary systems. • Monitor and analyze authentication, authorization, and privilege‑escalation logs for suspicious behavior; coordinate findings with the Information Security Office. • Oversee secure integration of third‑party applications using SAML, OAuth, OIDC, SCIM, and custom APIs. • Validate CAPPS application changes, customizations, configurations, and workflows for security and compliance impact; recommend and track remediation activities. • Respond to and investigate identity‑related security incidents, including account compromise, unauthorized access, and TDIS fraud indicators. • Maintain and continuously improve standards for security, performance, compliance, and architecture across CAPPS and related platforms. • Ensure that all digital products and content associated with CAPPS meet WCAG 2.1 accessibility standards, including perceivable, operable, understandable, and robust experiences for all users. • Assist with contract management oversight responsibilities associated with the CAPPS Program. • Assist and participate in annual IT control audits related to CAPPS Central applications, including preparation of evidence and remediation tracking. • Ensure contract data security, user permissions, audit trails, and compliance with organizational and regulatory standards. • Perform technical reviews of contract templates, metadata structures, workflows, and automation rules to ensure accuracy, usability, and compliance.
Job Requirements
- 10 years – Extensive Texas public sector experience, directly working for or supporting a Texas state government agency.
- 10 years – Extensive experience performing technical activities in support of enterprise application systems (e.g., CAPPS or similar).
- 10 years – Extensive experience creating and managing a strategic roadmap by combining strong planning skills, technical insight, and effective cross‑functional communication.
- 10 years – Experience preparing materials for and conducting executive‑level presentations.
- 10 years – Experience performing technical project management activities in support of a large‑scale ERP program (such as the CAPPS program).
- 10 years – Experience interpreting contractual language and integrating it into daily workflows, including holding vendors accountable to contractual requirements.
- 10 years – Extensive knowledge of and experience with data integration, data quality, and SDLC processes and methodologies.
- 10 years – Experience in IT security and control practices, including implementation and monitoring of security controls.
- 10 years – Technical experience with PeopleSoft FSCM or HCM 9.2, PeopleTools, PeopleCode, Application Designer, SQL, PS/Query, SQR, Application Engine, and Oracle 11 or higher.
- 10 years – Experience with centralized production and deployment technical support activities for enterprise ERP solutions supporting more than 100 agencies/entities and multiple hub instances.
- 8 years – Experience with IT service desk functions and working knowledge of ITIL framework methodologies and processes.
- 5 years – Experience serving in a security analyst role with responsibility for overseeing a Managed Services provider.
- 5 years – Experience with user role segregation of duties (SoD) in multi‑tenant software applications.
- Must be able to pass a background check. May require additional background checks as required by projects and/or clients at any time during employment.
Benefits
- Medical, Dental and Vision Insurance
- Wellness Program
- Flexible Spending Accounts (Healthcare, Dependent Care, Commuter)
- Short-Term and Long-Term Disability options
- Basic Life and AD&D Insurance (Company Provided)
- Voluntary Life and AD&D options
- 401(k) Retirement Savings Plan with matching after one year
- Paid Time Off
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
• Collaborate with internal and external stakeholders to ensure secure data gathering, processing and management. • Analyze SQL statements, identify and help resolve potential performance issues for optimized database operations. • Designing secure network architectures, conducting penetration testing, managing security tools (e.g., SIEM, IDS/IPS), and establishing security policies. • Working with DevOps, IT, and software teams to integrate security into the development lifecycle (DevSecOps). • Deep knowledge of network protocols, operating systems (Linux/Windows), cloud security (AWS/Azure/GCP), and scripting/programming languages (Python, Bash). • Implement and uphold cloud data security technologies and best practices. • Operate independently, demonstrating proactive problem-solving skills and attention to detail. • Effectively communicate complex technical concepts through strong written and verbal skills. - Regularly report progress and security concerns to the Head of Security Engineering.
• Working cross-functionally to design, build, and operate solutions that improve and mature our security capabilities • Leveraging data to understand trends, metrics, and opportunities to improve our security posture, researching options, and then making recommendations as options to secure those opportunities with stakeholders • Leading and enhancing incident / issues response efforts, spearheading analysis, containment, and mitigation strategies in a cross-functional environment to ensure effective resolution and remediation of security incidents / issues • Helping craft and refine security documentation pertinent to our Security Program, such as policies, standards, baselines, and standard operating procedures
• Participate in building a comprehensive compliance program, ensuring Airbnb meets requirements for compliance frameworks such as PCI. • Address security posture-related questionnaires to support ongoing compliance initiatives. • Collaborate with external and internal auditors to assist with the Test of Design and Test of Effectiveness processes. • Collaborate with stakeholders to understand operational needs and deliver realistic, risk-based recommendations for remediation. • Monitor remediation activities and build metrics and reports on testing/remediation results
Director, Information Security
AffirmAffirm is a financial services company that is on a mission to provide its customers with “honest financial products that improve lives.” As an employer, Af
• Establish and lead Bank’s information security and cybersecurity programs • Design and implement an enterprise-wide security framework • Develop information security governance, technical controls, and third-party risk oversight • Collaborate closely with technology, risk, and operations teams to integrate security into operations • Lead the development and testing of Business Continuity and Disaster Recovery (BC/DR) plans • Serve as the Bank’s senior advocate for cybersecurity and data protection
