Senior Manager - SAP Security and GRC

India - Hyderabad

Amgen

Amgen is committed to unlocking the potential of biology for patients suffering from serious illnesses by discovering, developing, manufacturing and delivering innovative human therapeutics.

View all jobs at Amgen

Apply now Apply later

Career Category

Information Systems

Job Description

Join Amgen’s Mission of Serving Patients

At Amgen, if you feel like you’re part of something bigger, it’s because you are. Our shared mission—to serve patients living with serious illnesses—drives all that we do.

Since 1980, we’ve helped pioneer the world of biotech in our fight against the world’s toughest diseases. With our focus on four therapeutic areas –Oncology, Inflammation, General Medicine, and Rare Disease– we reach millions of patients each year. As a member of the Amgen team, you’ll help make a lasting impact on the lives of patients as we research, manufacture, and deliver innovative medicines to help people live longer, fuller happier lives.

Our award-winning culture is collaborative, innovative, and science based. If you have a passion for challenges and the opportunities that lay within them, you’ll thrive as part of the Amgen team. Join us and transform the lives of patients while transforming your career.

What you will do

Let’s do this. Let’s change the world. In this vital role you will play a crucial leadership role in driving the security strategy and governance for the SAP environment, particularly passionate about the implementation and ongoing management of SAP S/4HANA. This role is responsible for supervising the security design, implementation, and operational management of SAP security solutions, ensuring compliance with IT controls, risk mitigation, and the integrity of security protocols across the organization. The Senior Manager will collaborate with key collaborators across technical and functional teams, providing mentorship on SAP Governance, Risk, and Compliance (GRC) processes, and playing a relevant role in the end-to-end SAP S/4HANA implementation journey. .

  • Lead the design, implementation, and management of SAP task-based security roles and authorizations, ensuring secure and compliant operations across the SAP S/4HANA landscape.

  • Provide strategic mentorship during the SAP S/4HANA implementation, ensuring that security standard methodologies and controls are embedded from project initiation through to launch and beyond.

  • Supervise the full security lifecycle for SAP, including security requirements analysis, role design, testing, deployment, and post-go-live support for SAP S/4HANA and SAP Fiori solutions, ensuring user interfaces and Personas are secured based on role-based access controls and organizational policies.

  • Collaborate with SAP functional and technical teams to ensure security design aligns with business processes and supports flawless S/4HANA integration.

  • Ensure compliance with global security standards and policies across SAP systems, including S/4HANA, Business Technology Platform (BTP), and cloud-based solutions.

  • Supervise the governance and management of the SAP GRC (Governance, Risk, and Compliance) suite, specifically focusing on Access Control, Process Control, Role Management, Segregation of Duties (SoD), and Emergency Access Management.

  • Lead SAP security-related audit processes, compliance requests, and security incident management, with a particular focus on the complexities of a global SAP S/4HANA implementation.

  • Proactively identify, assess, and handle security risks, ensuring appropriate mitigation strategies and contingency plans are in place.

  • Act as a security lead during the SAP S/4HANA implementation, handling project timelines, coordinating with various teams, and ensuring timely delivery of security solutions.

  • Partner with business leaders to ensure the security framework supports business needs during the transition to SAP S/4HANA, providing insights on security governance and stewardship.

  • Know the latest on emerging security trends and technologies, providing recommendations for continuous improvement of SAP security and GRC processes, particularly in the context of SAP S/4HANA migrations and upgrades.

What we expect of you

We are all different, yet we all use our outstanding contributions to serve patients.

Basic Qualifications:

  • Master’s degree with 8 - 10 years of SAP experience OR

  • Bachelor’s degree with 10 - 14 years of SAP experience OR

  • Diploma with 14 - 18 years of SAP experience

  • Extensive experience in SAP security design and implementation, particularly within SAP S/4HANA environments, including handling the complexities of SAP Fiori and Business Technology Platform (BTP) integration.

  • Demonstrable experience in the implementation and management of SAP GRC solutions, with a solid focus on Access Control, Role Management, SoD, and Emergency Access processes during SAP S/4HANA implementations.

  • In-depth knowledge of IT general controls (ITGC) and compliance frameworks, including SOX, with an emphasis on security controls and governance within SAP S/4HANA environments.

  • Ability to lead multi-functional teams through the security aspects of SAP S/4HANA implementations, from project initiation to post-go-live operations.

Preferred Qualifications:

  • Experience working in Agile/Scaled Agile Framework (SAFe) environments for SAP security projects.

  • Experience with SAP security aspects of industry-specific cloud solutions, including SAP Cloud Industry Solutions

  • Expertise in crafting and handling task-based security frameworks in SAP S/4HANA and other SAP platforms.

  • Experience with SAP Business Technology Platform (BTP), SAP IAS, Suite, and SAP Business Application Studio for building and extending business processes.

Professional Certifications:

  • SAP Security (Preferred)

  • SAP GRC Access Control (Preferred)

  • Certified Information Systems Security Professional (CISSP) (Preferred)

  • Certified Information Systems Auditor (CISA) (Preferred)

  • Agile Certified Practitioner (Preferred)

Soft Skills:

  • Strong leadership and communication skills to optimally handle security teams and collaborate with collaborators, ensuring security strategies are aligned with business objectives and technical solutions across SAP environments.

  • High attention to detail in handling security projects, ensuring compliance with SAP security standards, risk mitigation, and regulatory requirements such as SOX & GDPR.

  • Ability to adapt quickly to evolving security technologies and SAP environments, including emerging solutions like SAP Fiori, task-based roles, & cloud-based security frameworks.

  • Problem-solving demeanor with the capability to identify and address security vulnerabilities in SAP systems, fix access and authorization issues, and implement effective, scalable security controls.

  • Collaborative leadership approach, encouraging a security-focused culture that promotes collaboration, innovation, and accountability in delivering secure and compliant SAP systems across the organization.

What you can expect of us

As we work to develop treatments that deal with others, we also work to care for your professional and personal growth and well-being. From our competitive benefits to our collaborative culture, we’ll support your journey every step of the way.

In addition to the base salary, Amgen offers competitive and comprehensive Total Rewards Plans that are aligned with local industry standards.

Apply now

for a career that defies imagination

Objects in your future are closer than they appear. Join us.

careers.amgen.com

 

.
Apply now Apply later
  • Share this job via
  • 𝕏
  • or

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  0  0  0

Tags: Agile CISA CISSP Cloud Compliance GDPR Governance SAP Security strategy SOX Strategy Vulnerabilities

Perks/benefits: Career development Competitive pay

Region: Asia/Pacific
Country: India

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.