Technical Engineer SAP authorization

About AkzoNobel

Since 1792, we’ve been supplying the innovative paints and coatings that help to color people’s lives and protect what matters most. Our world class portfolio of brands – including Dulux, International, Sikkens and Interpon – is trusted by customers around the globe. We’re active in more than 150 countries and use our expertise to sustain and enhance the fabric of everyday life. Because we believe every surface is an opportunity. It’s what you’d expect from a pioneering and long-established paints company that’s dedicated to providing sustainable solutions and preserving the best of what we have today – while creating an even better tomorrow. Let’s paint the future together.

For more information please visit www.akzonobel.com 

© 2024 Akzo Nobel N.V. All rights reserved.

Job Description

1. Purpose of the job

(Ensure the) Design, develop, test and implement SAP authorization changes, projects, processes, in line with global Information Technology (IT) guidelines, to support company business requirements.

The Technical SAP authorization Engineer in IT Operations is responsible to deliver high quality designs and work on all aspect of authorization in the SAP landscape. The Technical Engineer has an active role in preparation and execution of the actual changes together with our strategic partners. He/she actively oversees work in progress, monitors status, and signs-off after testing. Other critical elements of the role are Incident Management and Process Improvement. 

Depending on the project methodology chosen, the work is done in agile teams under the leadership of a Scrum Master or in case of a waterfall under the leadership of the Project Manager. Depending on seniority of the Engineer, he/she will also assume these project management activities or will take lead in delivery of end to end for changes.

2. Key responsibilities

The SAP authorization Engineer is responsible for the translation of requirements into designs and authorization concepts based on the high-level architecture and for the chosen IT solutions and project implementation. The SAP authorization Engineer is working closely with the Architects in the Architecture team and ensures, the solutions are build following the Architectural principles. Equally also close corporation with the security team and security architects to ensure solutions are following Security guidelines when detailing out the designs and – jointly with other internal members of the team and our partners – build and deliver in full and on time to drive value for the customers.

The ideal candidate should have a minimum of 5 years of hands-on experience in SAP authorization administration, along with in-depth knowledge of SAP HANA and SAP GRC (Governance, Risk, and Compliance)

The candidate will play a crucial role in ensuring the security, compliance, and efficient operation of our SAP systems

Authorization Design and Implementation:

• Design, develop, and implement SAP authorization concepts and roles based on business requirements, ensuring least privilege access and free of segregation of duty concept. Ensure authorization concept is according to the compliance best practice and policies
• Collaborate with functional teams to understand business processes and translate them into effective authorization models.

Incident Response and Troubleshooting:

• Follow user lifecycle Management and work on support and incidents related to authorization.and GRC.
• Investigate and resolve authorization-related incidents and issues in a timely manner.
• Provide technical support to resolve user access and authorization problems and resolve segregation of duty conflicts

Projects:

• Work on all project life cycle phases as a main authorization expert
• Deliver project activities on time and according to requirement.
• Resolve issues during UAT testing and cutover activities.
• Maintain comprehensive documentation of authorization processes, role assignments, and security configurations.
• Conduct training sessions for internal stakeholders on SAP security and authorization best practices.

3. Qualifications and technical knowledge

• Bachelor’s degree in computer science, Information Technology, or a related field
• Minimum of 5 years of hands-on experience in SAP authorization administration.
• Excellent knowledge of SAP authorization in various SAP systems (BI, CFIN, ERPs)
• Proficiency in SAP HANA security/authorization
• Strong knowledge of SAP GRC solutions, Access Control a must, Process Control a plus.
• Relevant SAP certifications will be considered a strong asset.

4. Other skills

• Excellent knowledge of industry standards and best practices related to SAP security and authorization concepts.
• Excellent problem-solving skills and ability to troubleshoot complex authorization issues.
• Proven track record of successfully delivering complex SAP authorization projects, demonstrating the ability to design, implement and manage authorization implementations.
• Strong communication and interpersonal skills to work effectively with cross-functional teams.
• Proactive, ability to work effectively both with a team and independently.
• Ability to work on different time zones on request depending on project demands.
• Ability to stay up to date with the latest SAP security trends and developments.
• Risk free oriented mind set
• Fast learner, ability to adapt quickly to a fast growing and changing environment.

At AkzoNobel we are highly committed to ensuring an inclusive and respectful workplace where all employees can be their best self. We strive to embrace diversity in a context of tolerance. Our talent acquisition process plays an integral part in this journey, as setting the foundations for a diverse environment. For this reason we train and educate on the implications of our Unconscious Bias in order for our TA and hiring managers to be mindful of them and take corrective actions when applicable. In our organization, all qualified applicants receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age or disability.