CAPPS Security Analyst Contractor

Job Description

RESPEC is seeking a highly experienced CAPPS Security Analyst to support a major Texas state fiscal agency's enterprise ERP and Identity & Access Management (IAM) program. This is a senior-level, long-term engagement supporting the Centralized Accounting and Payroll/Personnel System (CAPPS) — a statewide platform serving over 100 Texas agencies across HR/Payroll, Financials, and ancillary systems.

This is not a generalist security role. The ideal candidate has spent their career in the Texas public sector, knows the CAPPS ecosystem inside and out, and can operate as a trusted technical advisor, security architect, and vendor accountability lead — all at once. If you've been the person other teams call when CAPPS security gets complicated, this role was written for you.

Core Responsibilities:

As the CAPPS Security Analyst, you will serve as the primary subject matter expert for IAM and ERP security across the CAPPS program. You'll own the full identity lifecycle — from account provisioning and de-provisioning to access reviews, RBAC enforcement, and least-privilege modeling — while also designing and maintaining Segregation of Duties (SoD) rules and remediating conflicts across business processes. You'll monitor authentication, authorization, and privilege-escalation logs for anomalies and coordinate findings directly with the client's Information Security Office.

Beyond IAM, you'll oversee the secure integration of third-party applications via SAML, OAuth, OIDC, SCIM, and custom APIs, and validate all CAPPS application changes and customizations for security and compliance impact. You'll serve as the Delegated Administrator Level 3 for Texas Digital Identity Services (TDIS) and act as the agency's internal SME for PathLock products, including User Access Review (UAR), Single Sign-On (SSO), Data Masking, and A360.

On the contract management side, you'll participate in annual IT control audits, review and approve technical deliverables related to CAPPS architecture, SDLC, Disaster Recovery, and Security System Plans (SSPs), and serve as a security advisor during procurement cycles — from drafting technical specifications to evaluating vendor proposals. You'll also coordinate PeopleSoft upgrades (images, Fluid, PeopleTools), maintain architecture and change management documentation, and support reporting on contract KPIs and compliance metrics. Accessibility compliance (WCAG 2.1) is a standing responsibility across all digital products and content you touch.

Qualifications:
Qualifications

Required Technical Experience

10+ Years Each:

· Direct experience working for or in technical support of a Texas state government agency — not just general public sector, but specifically Texas state

· Hands-on technical work supporting CPA application systems (this is a hard requirement, not a "similar environment" qualifier)

· CAPPS Central production and deployment support across more than 100 agencies and 5 Hub instances

· PeopleSoft FSCM or HCM 9.2 technical experience, including PeopleTools, PeopleCode, Application Designer, SQL, PS Query, SQR, Application Engine, and Oracle 11+

· Strategic roadmap creation and management, including cross-functional communication and executive stakeholder alignment

· Preparation and delivery of executive-level presentations

· Technical project management in support of the CAPPS program

· Contract interpretation and vendor accountability management — translating contractual language into daily operational workflows

· Data integration, data quality, and SDLC methodologies (Agile and others)

· IT security and control practices, including NIST frameworks and audit support

8+ Years:

· IT service desk functions and ITIL framework methodologies and processes

5+ Years:

· Security analyst role with direct responsibility for overseeing a Managed Services Provider (MSP)

· Segregation of Duties (SoD) in multi-tenant software applications — SME-level, not just familiarity

Preferred Qualifications:

Candidates who bring the following will stand out in the evaluation process:

· 10+ years supporting CPA's legacy Statewide Financial Systems in a production support capacity — this signals deep institutional knowledge that is difficult to replicate

· 10+ years of experience with software and hardware management industry best practices in a large enterprise or government environment

· 10+ years developing technical specifications to support IT procurements, including drafting solicitation language and advising during vendor evaluation

Additional Information

Work Model

Primary: Remote (telework approved as the primary work arrangement)

Location Requirement: You must reside and work within the continental United States at all times. Your city and state of remote work will be reported to the client annually.

Important: While this role is currently remote, the client reserves the right to require periodic on-site presence in Austin, TX on an ad-hoc basis. All associated travel, parking, and per diem costs are the responsibility of the consultant and/or RESPEC — not the client. Additionally, the client retains the right to convert this role to a permanent on-site arrangement via written contract amendment. Candidates must be willing to accommodate this possibility.

On-Site Address (if required): Texas Comptroller of Public Accounts, LBJ State Office Building, 111 E. 17th Street, Austin, TX 78774

Start of Contract: Regardless of remote status, the selected consultant must report in person to Austin, TX at contract start to receive client-issued equipment and complete onboarding. All associated costs are the consultant's/RESPEC's responsibility.

Work Hours: Monday–Friday, 8:00 AM – 5:00 PM CT | ~160 hours/month. Evening, weekend, and holiday work may be required with advance coordination and written approval.

All your information will be kept confidential according to EEO guidelines.