SR SAP ANALYST

About The Position

Requirements

• 5+ year experience in an SAP Security related role
• Minimum of 5 years' experience in an Information Security role
• Excellent written and oral communication skills
• Self-motivated and able to work in an independent manner
• Experience and proficiency in various security-related toolsets and best practices
• Strong understanding of SAP GRC

Nice To Haves

• College degree or equivalent experience in an IT-related function
• Certification in SAP GRC

Responsibilities

• Ensure SAP compliance procedures align with Group-level Information Security policies.
• Utilize proficiency in SAP systems, applications, and processes.
• Develop and maintain SAP security architecture and controls.
• Design, create and manage user profiles, roles, and authorizations in SAP, ensuring role-based access control is appropriately structured and implemented.
• Be responsible for designing standards for profiles, roles and authorisations (e.g. naming standards, security granularity, etc.) and ensure these are enforced by the team.
• Ensure technical debt is addressed e.g. historical implementations have a clear roadmap for corrective action to simplify, standardise and ultimately tighten security.
• Actively monitor and control the access rights of users.
• Manage SAP Security using SAP Governance, Risk, and Compliance (GRC) solutions, utilizing Access Control and Process Control.
• Actively work to improve your teams Ways of Working to drive efficiency and drive higher standards through process improvements, documentation (e.g. standards, procedures, policies).
• Work closely with your manager to support the process of demand management and team capacity management ensuring the teams backlog is prioritised and tracked.
• Maintain the integrity and security of global systems and networks.
• Support security initiatives through both predictive and reactive analysis.
• Articulate emerging trends to leadership and staff and drive initiatives that improve our ways of working, tooling and security management.
• Define and recommend actions to mitigate security risks and actively manage through to resolution.
• Work with RS Group Security team to ensure compliance with PCI and NIST security requirements.
• Develop and maintain comprehensive security policies and procedures in line with RS Group Information Security policies.
• Lead the development and deployment of company-wide security training.
• Compile and submit required security compliance reports to pertinent agencies and internal stakeholders where relevant.
• Work closely with functional business teams to implement mitigating actions and controls.
• Work closely with project teams to ensure Security design is incorporated into project governance and delivery, particularly during early phases of large programmes or projects where security design sign-off is a formal stage gate within project governance.
• Work closely with the SAP teams to embed new technologies ensuring they are safe, secure and compliant (e.g. BTP, EWM, etc.).
• Manage 3rd party shared service providers to ensure they meet our security SLA's and KPI's and comply to our processes, procedures and standards.
• Actively mentor and coach junior level security analysts in your team supporting their personal development.
• Conduct security audits and ensure compliance with policies.
• Handle security incidents with root cause analysis.
• Manage certificate lifecycles and technically lead audit processes.
• Stay knowledgeable about regulatory standards and best practices related to SAP security.
• Employ strong analytical and problem-solving abilities.
• Communicate complex security issues effectively to stakeholders.