Senior Enterprise Security Systems Engineer

At GameStop, we are committed to providing exceptional service and delivering the latest and greatest in gaming products to our customers. As a leading global retailer of video games, electronics, and gaming merchandise, we take pride in offering a wide range of products that cater to the needs and desires of gamers worldwide. Our mission is to create unforgettable experiences for our customers by constantly pushing the boundaries of what's possible. Whether you're a hardcore gamer or just starting out, we've got something for everyone. Join us in our mission to shape the future of gaming and bring the best gaming products to the world!

As a Senior Enterprise Systems Security Engineer, you will play a key role in maintaining the security of and GRC compliance for GameStop’s enterprise applications, including but not limited to S/4HANA, SAP GRC EAM , SAP GRC AC , SAP CAR, SAP SLT, SAP BTP , SAP CPI, SAP MBC, HANA Database , SAP Analytics Cloud and Cloud ALM. The ideal candidate will have hands-on experience in SAP roles and authorizations, Fiori catalogs and groups, SoD (separation of duty) conflict management, Risk and Control Matrix and SAP GRC Access Control. This role requires a deep understanding of cloud and on-premises security models to safeguard enterprise-wide SAP landscapes. We are seeking a candidate who not only brings deep expertise in SAP Security and GRC but is also motivated to expand into broader Cybersecurity responsibilities. This role offers the opportunity to grow beyond SAP by contributing to critical organizational cybersecurity initiatives.
 

This position will sits on-site 5 days a week in Grapevine, TX.

Key Responsibilities
 

SAP Security & Access Management:

• Design, develop, and manage SAP S/4HANA  Security roles and authorizations.
• Implement and manage security for SAP Fiori apps, including Fiori catalogs, groups.
• Ensure Segregation of Duties (SoD) compliance by identifying and mitigating conflicts.
• Manage user provisioning, de-provisioning, and role-based access control (RBAC).
• Work closely with business and IT teams to align security policies with compliance and regulatory requirements.

SAP GRC & Compliance:

• Configure and monitor Access Risk Analysis (ARA), Emergency Access Management (EAM), and Access Request Management (ARM).
• Develop strategies for SoD risk mitigation and remediation.
• Ensure audit compliance and provide support for internal and external audits related to SAP security.

SAP BTP, CPI & Multibank Connectivity Security:

• Secure SAP Business Technology Platform (BTP) applications and services, ensuring compliance with enterprise security policies.
• Manage user roles and authorizations in SAP Cloud Integration (CPI) and Multi-Bank Connectivity and handle authentication mechanisms (OAuth, SAML, X.509, etc.).

SAP HANA Database Security:

• Define and enforce SAP HANA database security policies and best practices.
• Implement HANA privileges, roles, encryption, and auditing to ensure data protection.

Beyond SAP:

• Be eager to learn and evolve into a broader Cybersecurity role, supporting enterprise-wide security beyond SAP.
• Support Business Continuity and Disaster Recovery (BC/DR) planning and implementation efforts.

• Help iterate on a Threat and Vulnerability Management Program, collaborating with IT and risk stakeholders.
• Assist with the development and execution of other cybersecurity initiatives, policies, and controls as needed by the organization.
• Demonstrate a growth mindset and willingness to take ownership of emerging security needs across the enterprise, not limited to SAP systems.
   

Qualifications & Experience

Required:

• 5+ years of experience in SAP Security & GRC, with expertise in S/4HANA Security and Fiori Security.
• Experience working with Fiori Launchpad, Catalogs, Groups, Spaces, and Pages.
• Hands-on experience with SAP BTP Security, CPI Security, and Multi-Bank Connectivity Security.
• Strong knowledge of SAP GRC Access Control, ARA, EAM, and SoD conflict resolution.
• Experience in HANA Database Security, including privileges, encryption, and authentication mechanisms.
• Understanding of SAP Cloud and On-Premises integration security models.
• Knowledge of compliance frameworks (SOX, GDPR, NIST, ISO 27001).
• Strong troubleshooting, analytical, and documentation skills.

Preferred:

• SAP Security, GRC, or HANA certifications are highly desirable.
• Cyber Security Certifications or degrees are an added advantage.
• Background in building resilient infrastructure, managing backups, and designing continuity plans (SAP or otherwise)
• Hands on security experience in the form of challenge sites (e.g. HackTheBox) or bug bounty program participation
• Familiarity with SAML, OAuth, SNC, and other authentication protocols in SAP environments.

Full-time store positions at GameStop are also eligible to participate in incentive programs, health benefits, paid time off, 401 (k), employee discount and a casual work environment. Positions at GameStop may also be eligible for a bonus and/or other incentives.