Job Summary
- The Sr Associate, Digital & Transformation (D&T), Cyber Security, Risk and Governance supports application security organization to define, deliver and support D&T enabled business solutions.
- This role will design & deliver technical solutions for application security using tools like SAP GRC, etc.
- This role has primary accountability for working on security solutions including projects, system enhancement and production support in alignment with West D&T and company policies and procedures.
Essential Duties and Responsibilities
- Possesses good understanding of the overall vision and business needs and utilizes this knowledge to design and implement best in case application security controls. This includes interpreting any issues and recommending solutions or best practices.
- Support to provide technical solutions that functionally to meet defined business requirements.
- Uses breadth of good knowledge to solve problems. Provide system support and maintenance in alignment with standards and process set within the Services Delivery model, West policies and procedures as well as Regulatory requirements including but not limited to Sarbanes-Oxley and FDA GMP.
- Create and maintain system lifecycle documents in accordance with West policies and procedures, including creation and maintenance of SOPs, SOIs and Job Aids.
- Work within and participates in the Change Control process.
- Other duties as assigned
Basic Qualifications
- Bachelor's degree or equivalent experience in Computer Science or IT (required)
- Minimum 5 years of relevant experience
Preferred Knowledge, Skills and Abilities
- Experience in designing, configuring and testing SAP security architecture for multiple applications like ERP, S4HANA, Fiori, BPC and Success Factors.
- Experience in implementation, auditing or advisory in SAP ERP and GRC domains
- Understanding of business processes, controls frameworks, compliances and regulations, and segregation of duty concepts in an SAP ERP environment
- Should have worked on success factor’s role based permission framework with good understanding of permission groups and permission roles.
- Experienced in hands on configuration for user provisioning, role management, super user management, risk analysis, continuous control monitoring, risk assessment and management.
- Should have worked on the pre-installation and post installation steps, syncs, connectors, rule building and MSMP workflows in the ARM & EAM component.
- Should have worked on ARA component with an understanding of the ruleset and mitigation controls.
- Basic knowledge and experience in executing SAP GRC solutions across all Access Control components
- Knowledge of the SAP Security concepts, landscape, transports system and version compatibilities.
- Exposure to Job based and task based security design concepts.
- Security based on Active Directory for other applications using GRC a plus.
- Ability to work in a virtual environment in a global organization and to effectively prioritize and execute tasks in a high-pressure environment.
Physical Requirements
Sedentary: exerting up to 10lbs/4kgs of force occasionally, and/or negligible amount of force frequently or constantly to lift, carry, push, pull, or otherwise move objects, including the human body. Sedentary work involves sitting most of the time. Jobs are sedentary if walking and standing are required only occasionally, and all other sedentary criteria are met.