Senior SAP Security & GRC Specialist - HYBRID Lisboa

Senior SAP Security & GRC Specialist - HYBRID
Lisboa
Lisboa, Lisboa, Portugal

Senior SAP Security & GRC Specialist - HYBRID, Lisboa

Client:

Organon

Location:

Lisboa, Portugal

Job Category:

Other

EU work permit required:

Yes

Job Reference:

fe949b5aded2

Job Views:

30

Posted:

23. 01. 2025

Expiry Date:

09. 03. 2025

Job Description:

The Position

The SAP Security and GRC Specialist is responsible for the administration, configuration, and support of SAP security and GRC (Governance, Risk, and Compliance) Access Control. This role ensures the security of SAP systems, compliance with internal and external regulations, and effective risk management. The specialist will work closely with various stakeholders to implement and maintain security policies, manage access controls, and oversee GRC activities within the SAP landscape.

Responsibilities

1. SAP Security & GRC Administration
   • User Management: Administer SAP user accounts, roles, and authorizations. Ensure that users have appropriate access levels based on their roles and responsibilities.
   • Role Design: Design and implement SAP roles and authorizations to align with business processes and security policies.
   • Security Configuration: Configure and maintain security settings in SAP systems, including single
     - on (SSO), encryption, and other security features.
   • Audit and Monitoring: Perform regular security audits, monitor for suspicious activities, and address any security vulnerabilities or breaches.
   • GRC Configuration: Configure and maintain SAP GRC modules, including Access Control and process controls.
   • Compliance Management: Ensure that SAP systems and processes comply with relevant regulations and standards (e. g. , SOX, GDPR).
   • Risk Assessment: Conduct risk assessments and manage risk mitigation activities within SAP environments.
   • Audit Support: Assist in internal and external audits by providing necessary documentation and reports related to SAP security and compliance.
   • Incident Response: Respond to and investigate security incidents and coordinate with other IT teams, as necessary.
   • Resolution: Implement corrective actions to address security issues and prevent future occurrences.
2. Documentation and Reporting
   • Documentation: Maintain comprehensive documentation of security configurations, policies, procedures, and compliance requirements.
   • Reporting: Generate and present reports on security status, compliance metrics, and risk assessments to management and stakeholders.
3. Collaboration and Support
   • Stakeholder Interaction: Work closely with business units, IT teams, and external vendors to understand requirements and ensure effective security and compliance measures.
   • Training: Provide training and support to
     - users and IT staff on SAP security best practices and GRC processes.
   • Leadership: Work with operation and project consultants for
     -
     - day tasks and cover as needed.
   • Best Practices: Stay updated on the latest trends and best practices in SAP security and GRC. Propose and implement improvements to enhance security and compliance posture.
   • Tool Enhancement: Evaluate and recommend tools and technologies to improve SAP security and GRC processes.

Required Education, Experience, and Skills

Education:

• Bachelor’s degree in computer science, Information Technology, Cybersecurity OR at least 8 years of related field experience.
• Relevant certifications are a plus (e. g. , SAP Certified Technology Associate, CISM, CISA).

Experience:

• At least 5 years of experience in SAP security and GRC roles.
• At least 1 full SAP implementation with
  - on technical experience.
• Experience with SAP Modules: Hands-on technical experience with SAP S/4 HANA, BW/4 HANA, IBP, ARIBA, SAC, HANA DB, BTP, SAP GRC Access Control 12. 0x or IAG.
• Security Tools: Familiarity with security and compliance tools and technologies.

Skills:

• Technical Skills: Strong knowledge of SAP security configuration, user roles, and authorizations. Experience with SAP GRC modules, risk management, and compliance practices.
• Analytical Skills: Ability to analyze complex security and compliance issues and develop effective solutions.

Preferred Skills

• Detail-oriented and organized with the ability to manage multiple tasks and projects.
• Strong ethical standards and a commitment to maintaining high levels of security and compliance.
• Communication: Excellent verbal and written communication skills. Ability to interact with various stakeholders effectively.
• Problem-Solving: Strong
  - solving skills with a proactive approach to security and compliance challenges.
• Ideal to have big4 experience (EY, PWC, KPMG, Deloitte).
• Background in pharmaceutical industry preferred and/or experience in a public global organization.

Working Conditions

• Hybrid role
• Travel: Occasional travel may be required for training, meetings, or project implementations.

Who We Are:

Organon delivers ingenious health solutions that enable people to live their best lives. We are a $6. 5 billion global healthcare company focused on making a world of difference for women, their families, and the communities they care for. Our Vision is clear: A better and healthier every day for every woman.

As an equal opportunity employer, we welcome applications from candidates with a diverse background. We are committed to creating an inclusive environment for all our applicants.