Sr Security Specialist

Position Summary

This is a key role supporting the day‑to‑day operation of Discover Dollars Clients core financial systems across the organization. In this role, you will support application security configuration and best practices for systems including Enterprise PeopleSoft, CTB Peoplesoft, Hyperion Planning, HFM, Essbase, Oracle Transportation Management (TMS), Lucernex, ARCS and Coupa. The scope of this role will continue to expand as additional systems are shared across multiple business processes and application modules.

Reporting to the Finance Systems Manager and working closely with multiple business stakeholders as well as functional and technical application support teams across the enterprise, you will be responsible for ensuring the ongoing integrity, stability, and effectiveness of application provisioning across the CTC systems landscape.

What You Will Do

• Administer and maintain role-based security across core finance applications, ensuring access is aligned to job responsibilities, least-privilege principles, and established control requirements.
• Support user provisioning, de-provisioning, and access changes across the application landscape, with a focus on timeliness, accuracy, and compliance with approval workflows.
• Perform security design reviews and ongoing monitoring to identify access risks, segregation of duties conflicts, and control gaps, and recommend practical remediation actions.
• Coordinate periodic access reviews and recertification activities with business owners, ensuring user access remains appropriate and exceptions are documented, tracked, and resolved.
• Partner with business stakeholders, application support teams, and audit partners to support investigations, root-cause analysis, control evidence requests, and continuous improvement of the finance systems security model.
  
  

• Demonstrated experience supporting application security, identity and access management, or user access governance within enterprise systems.
• Understanding of finance processes such as Record-to-Report, Procure-to-Pay, Acquire-to-Retire and Contract-to-Cash and related access control requirements.
• Knowledge of role-based access design, segregation of duties, privileged access considerations, and periodic access review practices.
• Experience operating in a controlled environment with audit, compliance, and governance expectations across multiple business units and systems.
• Proven ability to assess security risks, investigate access issues, and support remediation activities in partnership with functional and technical teams.
• Ability to translate business requirements and control expectations into sustainable security roles, access models, and process improvements.
• Strong analytical, documentation, and stakeholder management skills, with the ability to communicate clearly across business, technology, and audit teams.
• Working knowledge of integrated application environments, including how security roles, workflows, and data flows interact across upstream and downstream systems.
  

• 5+ years of experience in application security, user access administration, identity and access management, or functional support roles within enterprise environments.
• Bachelor’s degree in Information Systems, Computer Science, Business, Finance, or a related discipline, or an equivalent combination of education and experience.
• A strong controls mindset, with experience applying least-privilege, role-based access, segregation of duties, and audit-ready documentation practices.
• Hands-on experience supporting security or access administration for one or more enterprise platforms such as:
• Hyperion / Oracle EPM applications
• PeopleSoft Financials and related workflows
• Coupa and other procure-to-pay platforms
• Concur or other travel and expense applications
• Oracle Transportation Management (TMS) or comparable logistics platforms
• Planview, Lucernex, ARCS, or other enterprise SaaS applications
• Experience supporting access governance processes such as provisioning workflows, role maintenance, recertification, segregation of duties analysis, and audit or compliance reviews.
• Professional certifications such as CISSP, CISM, CRISC, Security+, or ITIL are considered an asset.