IT Controls and Compliance Analyst - SAP

About The Position

Requirements

• Bachelor's degree in Information Technology, Computer Science, Accounting, or related field.
• 2+ years of experience in IT compliance, audit, or risk management, preferably with hands-on SAP experience.
• Strong knowledge and experience with SAP S/4 Hana modules, SAP Security & GRC and related control frameworks.
• Experience with the SAP GRC suite. Familiarity with SAP Fiori and SAP BTP
• Familiarity with SAP health check monitoring tools.
• Familiarity with regulatory standards such as SOX, GDPR, ISO 27001, etc.
• Understanding of IT general controls (ITGCs), application controls, and segregation of duties in SAP.
• Experience implementing ongoing risk assessments and controls self-assessments/audits to highlight improvement observations
• Experience in security design and testing, with specific focus on privileged access
• Expertise in identifying and implementing best practice:
• When developing a framework and process for ongoing Design
• Implementing operational effectiveness and testing of key controls
• Creating key IT process maps to identify control weaknesses
• Experience with project management including working within complex business environments for multi-national organizations collaborating and partnering with both with Internal auditors and External auditors
• Hands-on experience with SAP or part of another ERP implementation team; specifically, around managing compliance around use of multiple systems during the interim design state including design for newly acquired businesses
• Experience with SAP GRC modules Access Risk Analysis (ARA) and Emergency Access Management (EAM)
• Strong interpersonal and organizational influencing skills
• Ability to communicate in a simple, articulate, thoughtful manner to varying audiences
• Innovative spirit to work cross-functionally in developing improvement ideas
• Conflict management and negotiation skills
• A pleasant, likeable manner while accomplishing challenging results
• Excellent analytical & organizational skills
• Atlanta based position. Hybrid mix of onsite and remote working.
• Must have proficiency in Microsoft Word, Excel, PowerPoint, Data and Analytic Tools (i.e., Tableau, Power BI, Alteryx, etc.,) and Outlook
• Must be 18 years in age or older
• Must pass pre-employment drug screen and criminal background check
• Strict adherence to safety requirements and procedures as outlined in the Employee Handbook
• Willingness to work independently within in a team environment and assist with other duties as required
• Moderate travel required

Nice To Haves

• Professional certifications such as CISA, CRISC, or SAP Security are a plus.
• Previous change and transformation experience a plus

Responsibilities

• Control Design & Implementation: Develop, implement, and maintain IT controls for SAP systems, including access management, change management, data integrity, and segregation of duties.
• Compliance Monitoring: Perform periodic reviews and testing of SAP controls to ensure effectiveness and ongoing compliance with SOX, GDPR, and other relevant regulations.
• Risk Assessment: Conduct risk assessments to identify vulnerabilities and recommend mitigation strategies related to SAP processes and configurations.
• Audit Support: Assist internal and external auditors by providing documentation, evidence, and explanations regarding SAP controls and compliance activities.
• Policy & Procedure Development: Create and update policies, procedures, and guidelines to support SAP compliance and control objectives.
• Incident Management: Investigate and report compliance breaches, control failures, or incidents related to SAP, and coordinate remediation efforts.
• Ensure clear, timely and efficient communication channels exist to provide status updates, identify, and resolve issues and report on any other matters as needed
• Build relationships with key internal stakeholders and promote the function as a trusted partner
• Training & Awareness: Deliver training and awareness programs for business and IT users on SAP control requirements and compliance best practices.
• Monitor industry trends, regulatory changes, and SAP system updates to enhance the control environment and compliance posture.
• Identify opportunities to make the SOX compliance process more effective and efficient through data analytics and continuous monitoring
• Apply knowledge of risk and controls best practices to promote transformational activities
• Drive the SOX compliance function to move beyond SOX compliance by adding value across the end-to-end financial reporting controls process
• Engage with relevant external stakeholders to align and optimize work practices

Benefits

• Highly competitive base pay
• Comprehensive medical, dental and disability benefits programs
• Group retirement savings program
• Health and wellness programs
• An inclusive culture that values opportunity for growth, development, and internal promotion