SAP Security Manager
IT GLOBAL - (Permanent role, based in Granollers, Spain)
Coty is one of the world's largest beauty companies with an iconic portfolio of brands across fragrance, color cosmetics, skin care, and body care. COTY is the global leader in fragrance and number three in color cosmetics. COTY's products are sold in over 150 countries around the world. COTY and its brands are committed to a range of social causes as well as seeking to minimize its impact on the environment. For additional information about Coty Inc., please visit www.coty.com.
ROLE AND DEPARTMENT
SAP Security & GRC COE is primarily responsible for reviewing and delivering Security & Governance across SAP applications. This includes the review and monitoring of the design, build, test, and implementation of SAP security solutions in AMS and assigned projects. This position works directly with all levels of the organization and requires in-depth knowledge of SAP Security & GRC architecture, governance, risks, and SODs. The position requires detailed exposure to change management and project lifecycle, as well as hands-on exposure across various SAP Application Security Design. Below are the key Job Responsibilities.
THE ROLE SME for Security and Authorization activities across SAP applicationsRepresent SAP Security & GRC considerations for Support and projectsAct as a liaison with other technical teams and manage escalations in support and project delivery.Follow defined procedures, processes, and align with company policies and security best practices & standards.Monitor security changes executed and perform quality reviews. Fix any deviations and provide feasible enhancements when required.Evaluate and review all GRC AC configuration changes and the creation and maintenance of security roles in the application.Hands-on delivery in project and support based on assigned work.Support all phases of project lifecycle and assist AMS team with any queries/clarificationsOwner, Approver, and Reviewer of all SAP Security team collaterals (i.e., SharePoint, Mailbox, Reference Documents, and approver for Security Roles and GRC Approver)Review & analyze SAP Security tickets to provide trending and/or present possible process improvementsReview & assess the SAP Security Strategy Document for possible risks & their remediationStatus reporting, proactively manage foreseen project risks, and plan for remediation/mitigation. Handle E2E Project Metrics & Incident Analysis with weekly status reports.WHAT YOU'LL BRING Bachelor's degree in Information Technology systems, computer science, and/or business, or equivalent work experience.Minimum 5+ years or equivalent level of experience in SAP ECC security design and implementation.Experience in SAP security applications including S4 HANA, GRC12, and cloud applications. Hands-on experience required.Experience in SAP ECC, BW4HANA, SAP GRC, SAP Portal, S4HANA, BTP.Good to have experience in audit and advisory service organizations.Must have experience or exposure to different security design/approaches.Experience with SAP Governance Risk and Compliance tools. Experience in GRC AC technical implementation or upgrade.Experience working with end-users to translate business requirements into systems specifications.Strong experience in the segregation of duties concept. Ability to conduct user or role remediations. Experience in designing a security SoD Matrix is a plus.Excellent written and oral communication skills; ability to lead discussions, present ideas to audiences of all sizes, and interact with all levels of the organization as needed.Ability to handle multiple projects simultaneously, with attention to detail and due dates.Recognizes impacts of changes and ensures appropriate due diligence is performed before making changes and is thorough in testing solutions before implementation to avoid rework.Should have good experience in user license management.Expertise in ticket management and reporting; exposure to ticketing tools.Expertise in running and publishing various SOX reports like UAR, Critical Actions, SOD, Critical Permissions, Firefighter Log Review.Expertise in SAP Security automation and scripts creation for mass maintenance.Expertise in troubleshooting SAP security & GRC issues.
#J-18808-Ljbffr