Senior Manager, IT Security Operations

embecta•Parsippany, NJ

2d•Hybrid

About The Position

embecta is a global diabetes care company that is leveraging its 100-year legacy in insulin delivery to empower people with diabetes to live their best life through innovative solutions, partnerships and the passion of more than 2,000 employees around the globe. For more information, visit embecta.com or follow our social channels on LinkedIn , Facebook , Instagram and X . Why join us? A career at embecta means being part of a team that values your opinions and contributions and that empowers you to bring your authentic self to work.  Here our employees can fulfill their life’s purpose through the work that they do every day. You will learn and work alongside inspirational leaders and colleagues who are equally passionate and committed to fostering an inclusive, growth-centered, and rewarding culture.  Our Total Rewards program – which includes competitive pay, benefits, continuous learning, recognition, career growth and life balance components – is designed to support the varying needs of our diverse and global employees. As the Senior Manager of Security Operations, you will lead SAP S/4HANA security governance and execution, overseeing role design, access management and security architecture, supported by SAP GRC where applicable. You will manage a team responsible for sustaining key security controls that support business operations, regulatory expectations and audit requirements. In this role, you will provide strategic direction for SAP security, leveraging strong technical fluency to ensure controls are appropriately designed, embedded into system changes, and sustained through day-to-day operations. This role plays a key part in strengthening SAP security maturity, enabling business processes and maintaining a strong compliance posture within a regulated environment. This role will sit hybrid 2 days a week in our Parsippany, NJ office

Requirements

Bachelor’s degree in information technology, Computer Science or a related field or equivalent practical experience.
7+ years of experience in information security, governance, risk or compliance roles including leadership experience.
Technical expertise in SAP S/4HANA security and access governance within regulated environments.
Demonstrated experience leading SAP security or access governance programs in complex enterprise environments.
Strong understanding of SOX regulated IT controls and audit processes.
Experience working with Internal Audit and external auditors in regulated industries.

Nice To Haves

Knowledge of life science regulatory environments is preferred
Excellent communication and stakeholder management skills.
Ability to lead teams, manage priorities, and drive results in a matrixed environment.
Relevant certification (e.g. CISSP, CISM, SAP Security) are a plus but not required.

Responsibilities

Provide technical guidance and review for SAP security designs, access models, and control implementations, ensuring alignment with enterprise risk and compliance requirements across all SAP Platforms S/4 HANA, GTS, Ariba, Concur, BTP and others.
Lead and mentor a team of security professionals responsible for SAP security governance, access management and control execution.
Own the design, maintenance and continuous improvement of security procedures, and standards supporting SAP security and access governance.
Serve as the control owner for SAP GRC related security controls, coordinating with Finance, Internal Audit, IT Compliance and external auditors to support audit activities and remediation efforts.
Support internal and external audits by preparing, coordinating, and providing required evidence, and ensuring timely resolution or identified findings.
Monitor security risks, control performance, and compliance posture, using metrics and reporting to inform leadership and drive improvements.
Lead SAP security initiatives and projects related to access governance, role design and system security, aligned with enterprise risk objectives.
Identify opportunities to streamline security processes and operational efficiency while maintaining appropriate risk management and compliance standards.
Partner with IT Solution Owners, and business stakeholders to integrate security requirements into system changes, enhancements, and ongoing support.
Ensure SAP security and access controls are appropriately designed, tested, and validated as part of the SDLC, partnering with IT, IT Validation, and IT Compliance to support secure and compliance system changes.
Stay informed on emerging security threats, trends, and regulatory changes relevant to SAP platforms and the medical device sector and assess their impact on security strategy.