Description & Requirements
This role will be responsible for designing and implementing solutions related to SAP GRC Access Control solution.The position requires expertise in the Design & Configuration of SAP security roles to meet the Security compliance and regulatory requirements of the customer.The role requires a deep understanding of SAP Security Roles and access requirements and should have worked actively on the same and should be able to meet below requirements.Additionally, the knowledge on compliance and privacy standards such as SOX and HIPPA required to meet the Compliance & Security related reporting requirements
Technical Competence:
Defining and/or reviewing risks and controls across one or more business processes enabled on SAP (e.g., procure to pay, and financial statement close). Understanding of key SAP controls in specific processes and be able to describe how these controls are set up or tested
Defining, reviewing, and/or testing access control frameworks and SAP security role design.
Experience in GRC tools (either implementation experience or deep-dive reviews over GRC solution workflows and setup) – Access Control (AC) or Process Control (PC).
Performing risk and security reviews/ audits over SAP implementations and upgrades
Run and monitor all SOX related reports, look for issues, communicate concerns and provide solutions in a timely manner.
Gathering and analyzing the impact of changes on business process, Update/ review the Functional Design documents.
Understanding the requirements (Change/ New design) of the users and analyzing its impact on the business process.
Preforming the design changes in the Development system.
Preparation/review of Functional Test documents.
Moving SAP changes to Quality and then to Production systems by following the transport procedure.
Creation of Master Data
Creating Data source and Business rules for the purpose of continuous monitoring and reporting risks
Qualifications:
Bachelor’s degree in computer science, information systems or equivalent
At least 3+ years’ experience for TL and AM on SAP GRC Access Control
Experience in newer SAP Application such as HANA, S4, IDM, GRC Process Control, GRC Risk Management, Audit Management, etc.
Good understanding on concepts of Segregation of Duties SoD
Ability to perform Solution Architect tasks working on defining solutions in response of client request for proposal, technical design, and development of SAP GRC AC functions for programs, projects and change requests.
Experience in end-to-end SAP GRC AC project implementation, ability to conduct workshops, manage and plan for UAT, Regression Testing, Cutover and Hyper care activities.
Extensive experience in the design and development of SAP GRC AC policies, strategy, and Governance Risk and Compliance Experience with regulatory compliance such as Sarbanes Oxley is a requirement.
Ability to perform security remediation.
Kraft Heinz is an Equal Opportunity Employer – Underrepresented Ethnic Minority Groups/Women/Veterans/Individuals with Disabilities/Sexual Orientation/Gender Identity and other protected classes.