Workday Security and Compliance Analyst

Employee Role: Remote

RedStream Technology is searching for a skilled and detail-oriented Workday Security and Compliance Analyst to to join our client’s Workday team to design, implement, and manage security configurations and compliance processes within the client’s Workday platform.

This critical role will ensure the integrity, confidentiality, and availability of sensitive data across repair shop, field operations, finance, accounting, HR, supply chain, real estate, and facilities functions.  The Workday Security and Compliance Analyst will collaborate with cross-functional teams to align Workday security measures with regulatory requirements and the firm’s operational goals, supporting the company’s commitment to excellence and growth.

Roles and Responsibilities

• Security Configuration: Design, configure, and maintain Workday security settings, including role-based access, security groups, and user permissions, to safeguard sensitive data.
• Compliance Management: Ensure Workday configurations comply with regulatory standards (e.g., GDPR, SOX, HIPAA) and Caliber’s internal security and audit policies.
• Risk Assessment: Conduct regular audits and risk assessments of Workday security settings to identify vulnerabilities and implement corrective measures.
• Business Partnership: Collaborate with finance, accounting, HR, supply chain, real estate, and facilities teams to understand business needs and align Workday security configurations with operational requirements.
• Process Optimization: Identify opportunities to streamline Workday processes with a focus on compliance and security, enhancing efficiency while maintaining robust compliance controls.
• Incident Response: Investigate and resolve security incidents or access issues within Workday, ensuring timely resolution and minimal disruption.
• Training and Support: Provide training and guidance to end-users and administrators on Workday security best practices and compliance requirements.
• Vendor Collaboration: Work with Workday support teams and third-party vendors to address technical issues and implement security enhancements.
• Cross-Functional Coordination: Partner with HR, Finance, Internal Audit and IT teams, including cybersecurity, IT governance risk and compliance, and data strategy, to ensure seamless integration of Workday security with broader technology initiatives.
• Industry Awareness: Stay current on Workday updates, emerging security threats, and compliance trends to maintain a secure and compliant environment.

Knowledge, Skills, and Abilities

• Workday Expertise: Deep knowledge of Workday security and compliance modules, including role-based security, User-based security, Segment-based, Intersection business process configuration, and audit reporting.
• Knowledge in configuring masking sensitive PII data in lower tenants (Constrained Proxy, Data Masking).
• Strong skills in Workday Custom Report writing and writing CalcFields.
• Process Mapping and Improvement: Demonstrated ability to map business and systems processes, and well as identify areas for process improvement.
• Compliance Knowledge: Strong understanding of regulatory frameworks (e.g., GDPR, SOX, HIPAA) and their application to Workday environments.
• Analytical Skills: Ability to analyze security logs, audit reports, and risk assessments to drive data-informed decisions.
• Technical Acumen: Familiarity with cloud-based platforms, integration technologies, and cybersecurity best practices. Experience with other ERP systems (e.g., Microsoft Dynamics) is a plus.
• Communication: Strong interpersonal skills to collaborate with cross-functional teams and communicate security and compliance requirements effectively.
• Problem-Solving: Proven ability to troubleshoot complex security issues and implement effective solutions in a fast-paced environment.
• Change Management: Experience in supporting user adoption of security processes and managing updates to Workday configurations.

Education, Experience, and Other Requirements

• Education: Bachelor’s degree in information technology, computer science, or a related field.
• Experience: Minimum of 4 years of experience in Workday security and compliance, with at least 2 years focused on configuring and managing Workday security settings. Experience in IT GRC, finance, HR, or supply chain environments in a public, or regulated company is preferred.
• Certifications: Workday Security, Workday Report Writer, Workday HCM certification preferred; additional certifications in cybersecurity (e.g., CISSP, CISA) or ITIL are advantageous.