S4 HANA Security & GRC Lead
Hewlett Packard Enterprise
Location
Bangalore | India
Job description
S4 HANA Security & GRC Lead
This role has been designed as 'Hybrid' with an expectation that you will work on average 2-3 days per week from an HPE office.
Who We Are:
Hewlett Packard Enterprise is the global edge-to-cloud company advancing the way people live and work. We help companies connect, protect, analyze, and act on their data and applications wherever they live, from edge to cloud, so they can turn insights into outcomes at the speed required to thrive in today's complex world.Our culture thrives onfinding new and better ways to accelerate what's next.We know diverse backgrounds are valued and succeed here. We have the flexibility to manage our work and personal needs.We make bold moves, together, and are a force for good. If you are looking to stretch and grow your career our culture will embrace you.Open up opportunities with HPE.
Job Description:
HPE Global IT is a dynamic organization enabling the enterprise to innovate and lead the industry with our consumption-based IT transformation and our consulting, financial, educational, and operational support services. Join us as we develop innovative solutions that revolutionize how we help customers by simplifying their operations and move the world forward.
What you'll do:
- Work with business users to design, develop and operate HPE's security architecture, role design and user access management across SAP environments.
- Design, build and administer security across a number of complex SAP applications and databases, including but not limited to S/4 HANA, GRC, BRIM, MDG, GTS, BW, Fiori and Solution Manager
- Drive the resolution of production operations security support issues and minimize support incidents through implementation of long term and sustainable fixes. Create comprehensive documentation for the solutions being developed and provide necessary user training
- Conduct periodic control walk-throughs with multiple audit teams for testing of design and execution of IT controls like sensitive access review, access terminations, user access reviews etc. configured within the SAP and GRC applications.
- Ensure adherence to government and corporate security guidelines including SOX, and other privacy related standards such as GDPR.
- Proactively provide necessary evidence documentation to address audit queries for IT controls
- Enforce automated periodic S/4 and GRC system security self- checks to ensure continual compliance with applicable IT controls
- Perform Segregation of Duties (SOD) analysis and manage the SOD risk remediation process continually monitor production environments for security violations.
- Configure, administer and monitor business rules for automated configured controls in GRC PC
- Configure, administer and monitor GRC AC MSMP workflows, SOD custom rule sets and GRC Business Roles
- Administer Emergency access and ensure timely completion of Firefighter log reviews
- Administer Single Sign-on (SSO) solutions for SAP and GRC applications
- Work with Enterprise Architects, solution architects and the business process owners to translate business requirements into SAP security design.
- Perform system measurement for SAP licensing and periodic metrics reporting
- Design and deploy security reporting based on business requirements.
- Train and mentor junior team members to accomplish Security operations support tasks.
What you need to bring:
- Bachelor's Degree in Computer Science, Information Management, Information Technology or Engineering, or equivalent combination of education and experience.
- Must have 10+ years of hands-on SAP Security and GRC Access and Process control implementation and/or operations support experience.
- Must have experience configuring/administering security for Fiori based applications
- Experience leading a team of SAP security and GRC analysts.
- Strong understanding of information security management principles, SAP application security implementation methodologies, and SAP user and role management tools
- In-Depth understanding and implementation knowledge of SAP GRC Access Control and Process Control
- Solid experience with SAP security across various applications including but not limited to S/4 HANA, GRC, BRIM, BW, MDG, GTS, Fiori and Solution Manager.
- In-depth understanding of SAP Security roles and authorization concept across SAP applications
- Solid understanding of SOX compliance laws, SOD conflict issues
- Expert level knowledge of various Audit and Security controls
- Ability to work effectively across a cross section of organization (Internal Audit, Cyber security, functional teams, business process leads etc.)
- Must have good understanding of SAP business processes and associated SOD risks and mitigating controls
- General knowledge of business processes within Finance, Sales, Procurement and Services
- Experience configuring security for BRIM application is a plus.
- Information security and/or SAP GRC professional certification(s) preferred.
Additional Skills:
Accountability, Accountability, Action Planning, Active Learning, Active Listening, Agile Methodology, Bias, Business, Coaching, Creativity, Critical Thinking, Cybersecurity, Data Analysis Management, Data Collection Management, Data Controls, Design Thinking, Development Methodologies, Empathy, Follow-Through, Growth Mindset, Implementation Methodologies, Infrastructure Design, Intellectual Curiosity, Long Term Planning, Managing Ambiguity + 4 more
What We Can Offer You:
Health & Wellbeing
We strive to provide our team members and their loved ones with a comprehensive suite of benefits that supports their physical, financial and emotional wellbeing.
Personal & Professional Development
We also invest in your career because the better you are, the better we all are. We have specific programs catered to helping you reach any career goals you have - whether you want to become a knowledge expert in your field or apply your skills to another division.
Diversity, Inclusion & Belonging
We are unconditionally inclusive in the way we work and celebrate individual uniqueness. We know diverse backgrounds are valued and succeed here. We have the flexibility to manage our work and personal needs. We make bold moves, together, and are a force for good.
Let's Stay Connected:
Follow on Instagram to see the latest on people, culture and tech at HPE.
#india #globalIT
Job:
Information Technology
Job Level:
Expert
HPE is an Equal Employment Opportunity/ Veterans/Disabled/LGBT and Affirmative Action employer. We are committed to diversity and building a team that represents a variety of backgrounds, perspectives, and skills. We do not discriminate and all decisions we make are made on the basis of qualifications, merit, and business need. Our goal is to be one global diverse team that is representative of our customers, in an inclusive environment where we can continue to innovate and grow together. Please click here: .
Hewlett Packard Enterprise is EEO F/M/Protected Veteran/ Individual with Disabilities.
HPE will comply with all applicable laws related to employer use of arrest and conviction records, including laws requiring employers to consider for employment qualified applicants with criminal histories.
Job tags
Salary
