The Diplomat is your source for Asia-Pacific careers.

SAP Security Engineer

Job Posted 3/8/2025
Australian Government Security Clearance
Canberra, AUSTRALIAN CAPITAL T 2600
Full-Time
Job Description
  • Business Enabling Services Group / ICT Division / CBMS Operations Branch
  • APS 6 ($94,434 - $115,254) Ongoing Full-time
  • Canberra, ACT

ABOUT THE BRANCH
The Central Budget Management System (CBMS) branch provides day-to-day management and support of CBMS to entity and business users. In conjunction with IT Services branch, the CBMS branch manages the CBMS solution and ICT infrastructure. CBMS is an SAP based application.

The CBMS is the Whole-of-Government ICT system underpinning the budget and financial management of the Australian Government. It manages the flow of financial information between Finance and Australian Government entities to facilitate cash and appropriation management, the preparation of budget documentation and financial reporting.

The CBMS is used to:

  • prepare and publish documentation for the Federal Budget, Mid-Year Economic and Fiscal Outlook (MYEFO) and other estimates updates
  • manage annual appropriations, special appropriations, special accounts and the Official Public Account (OPA) (collectively referred to as Cash Management)
  • produce the whole-of-government monthly financial reporting
  • produce the whole-of-government annual financial reporting (ie. Final Budget Outcome (FBO) and the Consolidated Financial Statements (CFS .

The CBMS solution platform is designed as a highly available environment. It utilises the SAP product suite at the application layer, VMware at the virtual layer, and Hitachi hardware and software for compute, storage and backup.

ABOUT THE OPPORTUNITY
The Security Engineer role in the CBMS Platform Enablement team will be at the forefront to perform SAP security operations including: handling password resets, user cessations, administer SAP OSS security and connections within our SAP landscape.

This may include support to:

  • Australian Government Budget process
  • Public Sector financial reporting including AASB accounting standards & Government Finance Statistics reporting;
  • Whole of Government consolidations and SAP's Business Consolidation System.
  • Continuous improvement to the CBMS policy, process and procedures.

The role requires well developed technical skills, stakeholder management and communication skills. This role liaises with technical staff from supporting vendors, the broader Finance technology division as well as internal support and SME staff directly supporting key Finance business users.

The role requires operational experience in an SAP environment to support demands in areas such as:

  • Experience in SAP Security operations - desirably experienced in:
    • Perform daily user to role exports using a provided spreadsheet.
    • Handle password resets and user cessations.
    • Manage security transports for updated programs and entities.
    • Administer SAP OSS security and connections.
    • Configure and maintain SAP logon groups.
    • Maintain SAP security and perform security administration tasks.
    • Lock and unlock user accounts as needed.
    • Provide security advice and perform security audits.
    • Maintain security profiles and activity groups.
    • Adhere to security administration procedures and frameworks.
  • Detecting, understanding, responding, and managing cybersecurity risks and incidents
  • Experience using SAP GRC and CUA.
  • Knowledge of SAP security policies and controls.
  • Experience in managing user accounts, roles, and authorisations.
  • Ability to monitor and audit for security incidents and vulnerabilities.
  • Experience in developing and testing security patches and updates.
  • Familiarity of security standards and regulations.
  • Familiarity with security tools and techniques.
  • Experience in supporting SAP finance business applications desirably including GRC.
  • Familiarity with the ITILv4 framework.
  • Monitoring, analysing and delivering within agreed timeframes.
  • Collaboration and engagement with customers, vendors and functional leads.

The role involves working under direction in a complex technical environment and requires experience with SAP systems, system monitoring, and familiarity with the ITILv4 framework and processes.

Core duties:

  • Perform administration of SAP OSS security and connections and configure and maintain SAP logon groups.
  • Conduct maintenance of SAP security and perform security administration tasks such as locking and unlocking user accounts.
  • Provide security advice and perform security audits.
  • Maintain security profiles and activity groups and adhere to security administration procedures and frameworks.
  • Have knowledge of SAP security policies and controls and experience in managing user accounts, roles, and authorisations.
  • Perform monitoring and auditing security incidents and vulnerabilities and help develop and test security patches and updates.
  • Understand and engage in security standards and regulations.
  • Provide support of SAP finance business applications, including GRC and CUA.
  • Engage in implementation of SAP security upgrades.

DETAILED VACANCY INFORMATION
For detailed information about this role, including the job specific capabilities, please refer to the downloadable vacancy pack, which can be accessed by clicking the hyperlink at the bottom of this page.

ELIGIBILITY ADVICE & CANDIDATE NOTES

  • Under section 22(8) of the Public Service Act 1999, employees must be Australian citizens to be employed in the Australian Public Service (APS) unless the Agency Head has agreed otherwise, in writing.
  • Successful applicants will be required to undergo the process to obtain and maintain, or continue to hold the required security clearance level for the role as indicated in the downloadable job pack. All Finance staff are required to have a minimum baseline security clearance prior to commencement.
  • We encourage and welcome applications from Aboriginal and Torres Strait Islander peoples, people with Disability, LGBTQI+ people, people from culturally and linguistically diverse backgrounds and mature aged people.

CONTACT INFORMATION

  • For questions relating to the online lodgement of your application, please email the Recruitment team via or call between 8:30am - 5:00pm AEST Monday to Friday.
  • We can provide adjustments, including alternate formats of the application form, to the recruitment process for candidates including individuals with disability. If you require an adjustment to be made during the recruitment process (including alternate formats or have an enquiry about the support provided, please contact the Recruitment team via or call between 8:30am - 5:00pm AEST Monday to Friday.
  • For specific questions relating to this job vacancy (including requests for adjustments), please refer to the details on the contact officer located in the downloadable job pack.