Develop, implement, administer, and maintain procedures for ensuring the security and integrity of databases supporting university enterprise applications. Implements data models, database designs, database tuning, backup and recovery, data access and table maintenance codes. Resolves database performance and capacity issues, and replication and other distributed data issues. Troubleshoot database and ERP/business system problems and design solutions to address requested enhancements.
Responsible for ensuring the reliable performance of ERP and business systems. Participates in projects to implement, test and design ERP systems and applications. Installs new software releases and system upgrades, evaluates, and installs patches. Monitors and maintains ERP systems security. Completes tasks designed to ensure the security of the ERP system and applications, and related information assets.
Administer databases. Activities include:
Install, configure and maintain database software.
Create and manage databases as needed to support university enterprise applications and other Technology Services initiatives.
Create and maintain a database backup strategy that is aligned with organizational needs, and perform the backup operations required by that strategy.
Take appropriate, timely action to resolve database problems when they occur; perform root cause analysis and follow up to ensure the issues are addressed at the root level.
Design and implement procedures or software to enhance and/or automate database administration tasks; document programs and procedures; ensure that automated tasks are performed correctly.
Monitor and maintain the integrity and security of database systems and data; design and implement changes to avert problems.
Monitor, analyze and report on utilization and performance trends of the databases and related infrastructure, identify potential performance or capacity problems, design and implement changes to avert problems.
Maintain inventory and documentation of databases and related infrastructure, including specifications, configuration, diagrams, connections, licensing, product lifecycle and maintenance information; keep documentation updated and accurate.
Maintain up-to-date technical knowledge of the database software in use at the university.
Coordinate with external vendors to resolve technical problems.
Administer ERP systems. Activities include:
Install, configure and maintain ERP and business system software.
Monitor, analyze and report on utilization and performance trends of the ERP systems, identify potential performance or capacity problems, design and implement changes to avert problems. Conduct regular performance tuning.
Take appropriate, timely action to resolve hardware, software and system problems when they occur; perform root cause analysis and follow up to ensure the issues are addressed at the root level.
Monitor and maintain the integrity and security of ERP and business systems; design and implement changes to avert problems. Activities include the following:
o Periodically review access logs to ensure appropriate security and privacy of data.
o Implement and maintain database auditing tools to collect database activity based on defined policies.
o Review database encryption technologies and provide recommendations; implement approved solutions.
Identify new software releases and required system upgrades and patches.
Maintain inventory and documentation of installed ERP and business systems and related infrastructure, including versions and instance lifecycle; keep documentation updated and accurate.
Maintain up-to-date technical knowledge of the ERP software in use at the university.
Design and implement enhancements to the databases and related enterprise application infrastructure.
Participate in projects to implement, test and design ERP and business systems.
Design and develop plans to enhance or update the database and enterprise application infrastructure; research methodologies and products, and establish technical requirements; define project scope, requirements, and deliverables, and develop a project plan to meet objectives.
Coordinate activities for assigned projects, including performing assigned tasks and coordinating with external providers or contractors, ensuring project remains on schedule and that work accomplished meets specifications.
Ensure appropriate documentation, including configuration settings, is written and maintained.
Perform migration to the production environment of new or enhanced systems and services, ensuring minimal disruption to current operations and adhering to established change control practices and procedures.
Ensure rigorous application of information security/information assurance policies, principles, and practices in the delivery computing services.
Develop database- and enterprise application-related contingency plans and design disaster recovery services and procedures.
Investigate and report on feasibility of new technology as it pertains to the University’s database systems or enterprise applications.
Provide technical support, in a pleasant, professional and courteous manner.
Acts as top tier support for critically escalated issues related to ERp and business systems security.
Evaluates new products and services related to application security provisioning, auditing, integration etc.
Provide technical support for other Technology Services departments and groups, including the Service Desk, as required. Serve as technical liaison to non-university vendors or technical organizations as required. Supervise the work assigned to contractors (if engaged) during application security related projects.
Serve as security administrator for other application as required.
Process assigned service request tickets according to established procedures and SLAs.
Perform expert-level troubleshooting and resolution of database and enterprise application infrastructure problems, including root cause analysis, and recommend improvements to minimize impact of future occurrences. Coordinate with other campus groups and external vendors to resolve technical problems as needed. Implement approved improvements.
Participates in project meeting, security design conversations and integration with third party applications and hosted services.
Design and develop security model – Security framework, account provisioning, de-provisioning, auditing and reporting. Activities include:
Periodically reviews and analyzes the current security request process and identifies opportunities for improving the process.
Designs and develops the security request process to gain efficiencies and turnaround time to process requests.
Works closely with stakeholders, data stewards, University Information Security Officer and customers to design and develop new security models to streamline the security structure within the ERP system.
Develops the security framework that is repeatable (can be expanded over all modules) and streamlined to focus on ‘Role Based’ rather than ‘Person Based’
Designs, develops, and test solutions to address problems.
Works closely with ERP development teams when complex security requests are presented or security issues are reported to troubleshoot and resolve in a timely manner.
Collects and researches specific requirements for reported issues or requests, identifies requirements, gathers workflow data and basic system and reporting specifications.
Designs and develops security audit reports to catch anomalies and remediate appropriately in a timely manner.
Defines appropriate metrics to measure performance and ensures data is collected, reported and reviewed regularly.
Documents the complete ERP and business systems security process including and not limited to – security request, approval, provisioning and deprovisioning, auditing, reporting etc.
Documents the complete configuration and setup of ERP security framework including and not limited to – user profiles, roles and permission lists, query level access, row level security setup etc.
Perform day-to-day security related activities and process requests for ERP environment. Activities include:
Ensures all security request are complete and have met the audit requirements for approval – manager and data steward.
Provisions and de-provisions ERP accounts.
Ensures that appropriate roles, permission lists, and row level security exists for all functional areas.
Appropriately manages ERP Security based on the request received - row level, query level, roles and permission lists and user profiles.
Analyzes and resolves security and access problems.
Writes and maintains complete security process documentation related to security design, implementation, processes and practices.
Maintains security structures for delivered and customized ERP applications.
Maintains and migrates security across multiple databases in support of database refresh activities.
Develops, implements, and supports common security related solutions and processes.
Participates in project and major release efforts, to include participation in project meetings and User Acceptance Testing.
Routinely audit security in all environments, ensuring that all users are appropriately provisioned for their work function.
Work closely with IT security auditors (internal and external) to support their requests during an audit.
Work closely with support teams to better understand complex security requests and modularize the provisioning process.
Develop automation for routine or complex security-related activities and processes.
Anticipates the implications and consequences of situations and takes appropriate action to be prepared for possible contingencies.
Provides metrics to support the numbers of requests received, processed and serviced.
Bachelor’s Degree with:
At least 6 years’ experience administering databases (Oracle and/or MS SQL Server) in support of a multi-tiered ERP environment.
At least 2 years’ experience as ERP and business applications security administrator.
Experience writing SQL queries, generating reports and writing scripts to automate processes.
Experience handling annual IT security audits and managing or leading technical team of IT auditors preferred.
Two years’ experience can be substituted by a Master’s degree.
Knowledge of, and materially demonstrable skill in applying, the following:
IT concepts, principles, methods, and practices.
Information security principles and methods.
Performance monitoring principles and methods.
Relational database principles, methods, and practices.
Database backup, recovery and high availability principles, methods, and practices.
ERP principles, methods, and practices.
Software development lifecycle (SDLC) principles, methods, and practices.
Operational task automation through programming and scripting principles and methods.
Principles, methods, and tools for developing, scheduling, coordinating, and managing projects and resources.
Knowledge of, and materially demonstrable experience implementing and configuring, the following technologies:
Oracle Database, 12c and later.
Microsoft SQL Server, 2016 and later.
PeopleSoft Internet Architecture and People Tools.
Database and ERP monitoring/management tools, especially SolarWinds.
Experience implementing and configuring the following technologies is a plus:
Windows Server 2016 or later in an Active Directory environment.
Linux server, especially Red Hat Enterprise.
Infrastructure as a Service (IaaS) services, especially Amazon Web Services or Microsoft Azure.
Current, professional-level certification in database administration is highly desirable, e.g.,
Oracle Database Administrator Certified Professional
Microsoft Solutions Expert (MCSE): Data Platform [SQL Server]
One or more of the following certifications is desirable: