CAPPS Security & Compliance Analyst

Overview

JOB TITLE:

CAPPS Security and Compliance Analyst 

CAYUSE COMPANY:

Cayuse Civil Services, LLC

LOCATION

Remote in Austin, TX

SALARY:

$108,160.00-$153,920.00

EMPLOYEE TYPE:

Full-Time Salary Exempt

TRAVEL

No

RELOCATION

No

Employment in this role is conditional upon successful execution of the contract by the client.

The Work

The CAPPS Security and Compliance Analyst is a senior-level specialist responsible for the security, identity and access management (IAM), and compliance posture of enterprise ERP applications (including CAPPS) and associated identity platforms (e.g., Texas Digital Identity Services – TDIS). This role provides highly advanced consultative services and technical assistance in support of the CAPPS Program, ensuring secure architecture, compliant operations, and effective contract and vendor oversight.

The analyst serves as a subject matter expert for segregation of duties (SoD), delegated administration within TDIS, and security solutions such as PathLock. The position also ensures accessibility compliance (WCAG 2.1), supports audits and attestation activities, and participates in the full lifecycle of procurements related to CAPPS.

This position aligns with Cayuse’s core values of Innovation, Excellence, Collaboration, Adaptability, and Integrity by fostering technical solutions that meet customer needs, promoting teamwork, and prioritizing quality in deliverables.

Responsibilities

• Plan, design, configure, deploy, support, and maintain system configurations and modifications for the
• Perform highly advanced (senior-level) consultative services and technical assistance work related to supporting the CAPPS Program.
• Provide oversight of IAM workflows, including account lifecycle management, provisioning, de‑provisioning, and access reviews.
• Manage and enforce role-based access control (RBAC) and least‑privilege models within ERP (CAPPS) and connected systems.
• Design and maintain segregation of duties (SoD) rules; identify, analyze, and remediate SoD conflicts across business processes and tenants.
• Review and validate security roles, permission sets, and custom authorizations within CAPPS and all ancillary systems.
• Monitor and analyze authentication, authorization, and privilege‑escalation logs for suspicious behavior; coordinate findings with the Information Security Office.
• Oversee secure integration of third‑party applications using SAML, OAuth, OIDC, SCIM, and custom APIs.
• Validate CAPPS application changes, customizations, configurations, and workflows for security and compliance impact; recommend and track remediation activities.
• Respond to and investigate identity‑related security incidents, including account compromise, unauthorized access, and TDIS fraud indicators.
• Maintain and continuously improve standards for security, performance, compliance, and architecture across CAPPS and related platforms.
• Ensure that all digital products and content associated with CAPPS meet WCAG 2.1 accessibility standards, including perceivable, operable, understandable, and robust experiences for all users.
• Regularly review content, interfaces, and workflows for accessibility compliance and coordinate implementation of updates or remediation whenever accessibility issues are identified.
• Assist with contract management oversight responsibilities associated with the CAPPS Program.
• Assist and participate in annual IT control audits related to CAPPS Central applications, including preparation of evidence and remediation tracking.
• Ensure contract data security, user permissions, audit trails, and compliance with organizational and regulatory standards.
• Perform technical reviews of contract templates, metadata structures, workflows, and automation rules to ensure accuracy, usability, and compliance.
• Work closely with contract management stakeholders to identify process gaps, optimize contract workflows, and improve compliance controls.
• Oversee and/or assist with technical oversight and support activities related to service level agreements (SLAs), system monitoring, environment analysis, hardware/software evaluation, network troubleshooting, migration paths, coding and security standards, compare reports, application change management review, and batch scheduling review.
• Maintain documentation related to architecture, configuration, integrations, and change management.
• Support reporting and analytics for contract KPIs, compliance metrics, and lifecycle performance.
• Review and recommend approval for assigned technical deliverables related to CAPPS Architecture, System Development Lifecycle (SDLC), Disaster Recovery, Security Plans (SSP), and other technology plans for current and future CAPPS applications.
• Plan and coordinate various technical upgrades (e.g., PeopleSoft image, PeopleSoft Fluid, PeopleTools, and other vendor or publisher upgrades).
• Participate as a security advisor during the procurement cycle for products or services associated with the CAPPS Program, including:
• Researching products and services.
• Supporting planning activities.
• Drafting and reviewing technical content for solicitations.
• Providing technical input for evaluation guidelines and specifications.
• Serving as a technical advisor during evaluation and negotiation phases.

Other duties as assigned.

Qualifications

Here’s What You Need

The qualifications and skills listed below are intended to provide a general overview of the requirements for this position. However, due to the anticipated nature of the contract and the absence of a finalized task order from the client, this list should not be considered all-encompassing. Additional qualifications, certifications, skills, or experience specific to the client’s requirements may be identified and requested upon award of the task order. Candidates should demonstrate flexibility and a willingness to adapt to evolving responsibilities as outlined by the client.

• 10 years – Extensive Texas public sector experience, directly working for or supporting a Texas state government agency.
• 10 years – Extensive experience performing technical activities in support of enterprise application systems (e.g., CAPPS or similar).
• 10 years – Extensive experience creating and managing a strategic roadmap by combining strong planning skills, technical insight, and effective cross‑functional communication.
• 10 years – Experience preparing materials for and conducting executive‑level presentations.
• 10 years – Experience performing technical project management activities in support of a large‑scale ERP program (such as the CAPPS program).
• 10 years – Experience interpreting contractual language and integrating it into daily workflows, including holding vendors accountable to contractual requirements.
• 10 years – Extensive knowledge of and experience with data integration, data quality, and SDLC processes and methodologies.
• 10 years – Experience in IT security and control practices, including implementation and monitoring of security controls.
• 10 years – Technical experience with PeopleSoft FSCM or HCM 9.2, PeopleTools, PeopleCode, Application Designer, SQL, PS/Query, SQR, Application Engine, and Oracle 11 or higher.
• 10 years – Experience with centralized production and deployment technical support activities for enterprise ERP solutions supporting more than 100 agencies/entities and multiple hub instances.
• 8 years – Experience with IT service desk functions and working knowledge of ITIL framework methodologies and processes.
• 5 years – Experience serving in a security analyst role with responsibility for overseeing a Managed Services provider.
• 5 years – Experience with user role segregation of duties (SoD) in multi‑tenant software applications.
• Must be able to pass a background check. May require additional background checks as required by projects and/or clients at any time during employment.

Minimum Skills:

• Exceptional interpersonal skills with the ability to communicate in a clear, professional, and articulate manner.
• Exceptional verbal and written communication skills.  
• Excellent organizational, analytical, and problem-solving skills with high-level attention to detail.
• Proven ability to multitask and prioritize in a fast past environment with changing priorities; adaptable to change and a quick learner.
• Must be self-motivated and able to work well independently as well as on a multi-functional team.
• Ability to handle sensitive and confidential information appropriately
• Proficient in MS Office, Word, Outlook, PowerPoint, and Excel.

Desired Qualifications:

• 10 years – Experience with software and hardware management industry best practices.
• 10 years – Experience supporting legacy statewide financial systems in a production support capacity.
• 10 years – Experience developing technical specifications to support IT procurements.

Our Commitment to you / overview of benefits

• Medical, Dental and Vision Insurance; Wellness Program
• Flexible Spending Accounts (Healthcare, Dependent Care, Commuter)
• Short-Term and Long-Term Disability options
• Basic Life and AD&D Insurance (Company Provided)
• Voluntary Life and AD&D options
• 401(k) Retirement Savings Plan with matching after one year
• Paid Time Off

Reports to: Program Manager

Working Conditions

• Professional remote office environment.
• Must be physically and mentally able to perform duties extended periods of time.
• Ability to use a computer and other office productivity tools with sufficient speed to meet the demands of this position.
• Must be able to establish a productive and professional workspace.
• Must be able to sit for long periods of time looking at computer screen.

• May be asked to work a flexible schedule which may include holidays.
• May be asked to travel for business or professional development purposes.
• May be asked to work hours outside of normal business hours.

Other Duties: Please note this job description is not designed to cover or contain a comprehensive list of activities, duties or responsibilities that are required of the employee for this job.  Duties, responsibilities, and activities may change at any time with or without notice.

Cayuse is an Equal Opportunity Employer.  All employment decisions are based on merit, qualifications, skills, and abilities. All qualified applicants will receive consideration for employment in accordance with any applicable federal, state, or local law.

Pay Range