SAP GRC UAM Expert
Hyderabad
Sanofi
We are an innovative global healthcare company with one purpose: to chase the miracles of science to improve people’s lives.Job title: SAP GRC UAM Expert
About the job
Our Team:
Since 2016 Sanofi has launched an ambitious program to build a unique ERP system to support the Group Play to Win strategy by harmonizing processes, implementing state of the art technology SAP S4/HANA and SAP GRC Access Control.
User Access Management stream is dedicated to build and maintain the Core model for User Access Management processes such us User Access provisioning, Access Risk Analysis, Emergency Access Management, Business Role Management and Automatic User Access Review using technologies such as SAP GRC Access Controls.
Main responsibilities:
We are seeking a highly skilled and experienced SAP Governance Risk Compliance (GRC) User Access Management (UAM) expert to join our User Access Management team. As a Subject Matter Expert (SME), you will play a vital role in providing expert guidance and support in the areas of GRC UAM compliance.
The ideal candidate should possess a minimum of 5 years of business process knowledge and application expertise in SAP GRC, SAP User Access Management and SOX compliance. You will be responsible to support for validating design and effort estimates, approving/rejecting change requests, reviewing and approving user requirements, design documents, and functional/technical specifications. Additionally, you will support and coordinate both internal and external audits such us SOX audits and manage implementation of remediation and improvement actions to ensure compliance to regulations and best practices.
The main duties of the SAP GRC UAM expert:
· Operations Management:
- Monitor and manage incidents, problems, and service requests.
- Coordinate with various teams to resolve operational issues and minimize downtime.
- Continuously improve operational efficiency and effectiveness.
· AMS Governance and Service Management:
- Monitor service performance against agreed-upon targets.
- Conduct regular service reviews and provide recommendations for improvement.
- Ensure compliance with regulatory requirements and industry best practices.
- Manage relationships with internal and external service providers.
· Audit, Quality & Security Compliance:
- Support regular audits to ensure compliance with internal policies and external regulations.
- Monitor and report on quality metrics and key performance indicators.
- Implement security controls and measures to protect systems and data.
- Collaborate with internal and external stakeholders to address security vulnerabilities and incidents.
- Stay up to date with industry standards and best practices in audit, quality, and security compliance.
· Change Approval Board (CAB) and Design Authority Board (DAB):
- Validate the design and effort estimates: Review and verify proposed design solutions and effort estimates to ensure alignment with organizational standards and requirements.
- Approve/Reject Change Requests: Assess and make decisions on change requests based on feasibility, impact on existing systems, budget, and alignment with business objectives.
· Projects:
- Review and Approve Documentation: Thoroughly review and approve project documents, including user requirements, design documents, functional/technical specifications, ensuring adherence to standards and requirements.
· Subject Matter Expertise:
- Provide expertise in UAM compliance aspects.
· Scoping:
- Help in Scoping for New Demand: Analyse business requirements, propose SAP solutions, collaborate with stakeholders, conduct feasibility assessments, and provide input on scope, timeline, and resources.
- Collaborate with business stakeholders to gather requirements and translate them into technical specifications for SAP UAM solutions.
- Advisory Role to Business on SAP Solution: Act as an advisor, offering guidance and recommendations on SAP solutions, leveraging expertise to provide insights into best practices, risks, and benefits.
About you
Experience
• Demonstrate a good track record in SAP authorization concept design and customizing User access management and Internal control Module preferably in a SOX and/or Pharmaceutical / Consumer Products industry.
• User experience on SAP security solutions like SAP GRC Access Controls or Identity and Access Management (SAP GRC consultancy experience is not required)
· Experience managing SOX audits
· At ease with Microsoft Office tools, and in general with IS tools.
• Operational experience in User access management and Internal control area would be appreciated.
· IT Auditor experience and/or certifications is a plus
Soft skills
· Team player, service-oriented
· Dynamic, results driven
· Able to convince
· Accountability and Reliability
· Rigorous, autonomous
Languages
· Fluent spoken and written English
Pursue progress, discover extraordinary
Better is out there. Better medications, better outcomes, better science. But progress doesn’t happen without people – people from different backgrounds, in different locations, doing different roles, all united by one thing: a desire to make miracles happen. So, let’s be those people.
At Sanofi, we provide equal opportunities to all regardless of race, colour, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, or gender identity. Watch our ALL IN video and check out our Diversity Equity and Inclusion actions at sanofi.com!
At Sanofi diversity and inclusion is foundational to how we operate and embedded in our Core Values. We recognize to truly tap into the richness diversity brings we must lead with inclusion and have a workplace where those differences can thrive and be leveraged to empower the lives of our colleagues, patients and customers. We respect and celebrate the diversity of our people, their backgrounds and experiences and provide equal opportunity for all.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits Compliance ERP Governance IAM Risk analysis SAP SOX Strategy Vulnerabilities
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs