Systems Analyst 3- CPA application systems

BACKGROUND.

CPA's existing vendor contract expires August 31, 2026, with no further renewal options remaining. CPA is seeking to enter into a new contract to continue the Services, as described below, without interruption.

Services Overview. The selected Vendor's Candidate will be part of CPA's Fiscal Management Statewide Fiscal Systems team, supporting the Centralized Accounting and Payroll/Personnel System (CAPPS) Program. The CAPPS Program for this engagement comprises the following components: HR/Payroll (inclusive of Recruit functionality), Financials, STARR, and all ancillary systems. The selected Vendor's Candidate must be adaptable and able to learn and integrate new systems and platforms as needed, such as CGI Advantage.

Annual Professional Training Requirement. In addition to other CPA training requirements, the following professional training requirement applies on an annual basis during the CPA Contract Term, including each renewal term, under the CPA Contract resulting from this solicitation:

For no compensation from CPA, the selected Vendor's Candidate shall be required to complete a minimum of ten (10) hours of professional training in a relevant area of expertise associated with the Services provided under the CPA Contract.

The professional training, as determined by the Vendor and/or the selected Vendor's Candidate, shall be conducted and completed by the selected Vendor's Candidate on personal time. If the professional training is intended to be conducted during the CPA-approved work schedule, the selected Vendor's Candidate must coordinate the associated time off with the CPA Supervising Manager, as applicable.

The Vendor and/or the selected Vendor's Candidate shall be fully responsible for all associated costs, including but not limited to tuition, materials, conference fees, and/or travel expenses. CPA will not approve or make payment for any hours associated with the professional training requirement.

By July 31st of each CPA Contract Term, the Vendor shall provide the CPA Contract Manager annual professional training report, documenting the completed professional training hours and courses.

Position Requirements. The CPA Work includes, but is not limited to, the following:

Performing highly advanced (senior-level) consultative services and technical assistance work related to supporting the CAPPS Program.

Responsible for the(CAPPS) security framework, which includes but is not limited to:.

Manage and enforce role based access control (RBAC) and least privilege models within CAPPS and connected systems.

Design and maintain segregation of duties (SoD) rules; identify and remediate SoD conflicts across business processes.

Review and validate security roles, permission sets, and custom authorizations within CAPPS and all ancillary systems.

Monitor and analyze authentication, authorization, and privilege escalation logs for suspicious behavior and coordinate any findings with CPA Information Security Office.

Oversee secure integration of third party apps via SAML, OAuth, OIDC, SCIM, and custom APIs.

Validate CAPPS application changes, customizations, and workflows for security and compliance impact.

Respond to and investigate identity related security incidents, including account compromise, unauthorized access, and fraud indicators.

Maintain standards for security, performance, compliance, and architecture.

Responsible for ensuring that all digital products and content meet WCAG 2.1 accessibility standards. This includes maintaining perceivable, operable, understandable, and robust experiences for all users, regularly reviewing content for compliance, and implementing updates or remediation whenever accessibility issues are identified.

Reviewing and suggesting approval for all assigned Security Deliverables related to CAPPS Architecture, CAPPS System Development Lifecycle, Disaster Recovery, CAPPS Security Plans (SSP), and all CAPPS related Security plans related to CAPPS applications currently and planning for the future.