This is a remote position.
The ERP Security Analyst (CAPPS Systems Specialist) will support the Texas Comptroller of Public Accounts on the Centralized Accounting and Payroll/Personnel System (CAPPS) Program. This role delivers highly advanced, senior-level consultative services and technical assistance in support of CAPPS security architecture, configuration, and compliance across HR/Payroll, Financials, STARR, and all ancillary systems. The Candidate is responsible for managing and enforcing the CAPPS security framework, including role-based access control, segregation of duties, identity governance, and secure third-party integrations. The role also encompasses Level 2 Service Desk support, system configuration and maintenance, and participation in major incident management, disaster recovery, and audit activities.
RESPONSIBILITIES
- Manage and enforce role-based access control (RBAC) and least privilege models within CAPPS and connected systems.
- Design and maintain segregation of duties (SoD) rules; identify and remediate SoD conflicts across business processes.
- Monitor and analyze authentication, authorization, and privilege escalation logs for suspicious behavior; coordinate findings with the CPA Information Security Office.
- Oversee secure integration of third-party applications via SAML, OAuth, OIDC, SCIM, and custom APIs.
- Respond to and investigate identity-related security incidents, including account compromise, unauthorized access, and fraud indicators.
- Review, validate, and suggest approval for all assigned security deliverables related to CAPPS Architecture, System Development Lifecycle, Disaster Recovery, and Security Plans (SSP).
- Plan, design, develop, deploy, support, and maintain system configurations and modifications for the CAPPS HR/Payroll application to ensure accuracy, efficiency, and policy adherence.
- Provide Level 2 Service Desk support, including complex ticket handling, in-depth troubleshooting, and auditable configuration activities in cooperation with the Level 3 Managed Services vendor.
- Actively participate in CPA's Major Incident Management (MIM) process for P1 and P2 incidents, as well as Disaster Recovery and Upgrade Testing activities.
- Ensure all digital products and content meet WCAG 2.1 accessibility standards, regularly reviewing for compliance and implementing remediation as needed.
Requirements
MINIMUM QUALIFICATIONS
- 10 years of extensive Texas public sector experience, directly working for or supporting a Texas state government agency.
- 10 years of experience performing technical activities in support of CPA application systems.
- 10 years of experience creating and managing a strategic roadmap by combining strong planning skills, technical insight, and effective cross-functional communication.
- 10