SAP Security & GRC Architect
India
Nokia
As a technology leader across mobile, fixed and cloud networks, our solutions enable a more productive, sustainable and inclusive world.ERP Security & Authorization's mission is to continuously monitor and improve the ERP security architecture posture while preventing, analyzing, and responding to ERP security incidents supported by technology-enabled and well-defined processes and procedures.
SAP Security & GRC Architect collaborates with key stakeholders to analyze ideas and demands for architectural fit and translates detailed business requirements provided by the solution owner into implementable solution including specific technical requirements.
- Provides security and technical expertise to support the development of security objects to satisfy business requirements.
- Analyzes and administers security policies to control physical and virtual system access.
- Identifies and investigates security issues and develops security solutions that address compliance requirements that can/do impact security.
- Identifies, develops, and implements mechanisms to detect security incidents to enhance compliance and support of the security standards and procedures.
- Assesses business role requirements, reviews authorization roles, and supports authorizations.
- Demonstrates a comprehensive skill set with testing authorizations for multiple environments and coordinates testing with business/technical users.
- Validates system configurations to ensure the safety of information systems assets and protects information systems from intentional or inadvertent access or destruction.
- Implements best practice when applying knowledge of information systems security standards/practices (e.g. Access control and system hardening, system audit and log file monitoring, security policies, and incident handling).
- Determines strategy and protocol for network behavior, analysis techniques, and tool implementation.
- Identifies opportunities for streamlining and increasing effectiveness through continuous process improvement.
- Implements practices, processes, and procedures consistent with Nokia's information security policy and IT standards.
- Develops and documents security events and incident handling procedures into Playbooks.
- Ensures that incident documentation is comprehensive, accurate, and complete.
- Triages, prioritizes, investigates, and coordinates security events and incident handling activities.
- Creates and/or remediates GITC (General IT Controls) in support of meeting audit objectives for all SAP modules, and their supporting Databases, within the Nokia’s SAP landscape (i.e. Finance, Retail, Warehouse Management, Payroll, Oracle, HANA, etc.)
- Designs IT testing procedures to identify and evaluate risk exposures and determine the effectiveness and efficiency of controls.
- Assists with the creation of effective remediation solutions and/or exception documentation where applicable.
- Serves as the subject matter expert and point of contact to Internal and External Auditors.
- Assists project teams with creation and implementation of IT controls objectives and integration into SAP-GRC.
- Assists with the successful completion of the quarterly UAR (User Access Review) audit process.
- Collaborates with Internal Audit in developing, testing, and devising solutions to effectively meet applicable IT control objectives.
- At least 5-10 years of experience in SAP Security in Development/ Configuration/solutions evaluation/ Validation and deployment.
- Proven experience with SAP Security, Role Based Permission, SAP GRC Access Controls, and SAP ECC Security.
- Strong knowledge of ECC, HANA, BW and GRC modules.
- Ability to handle support issues and process GRC requests efficiently.
- Excellent analytical and reporting skills.
- Strong communication and teamwork abilities.
- Must have Hands on SAP Security expertise in SAP S4HANA, Fiori, HANA DB, ECC, BI/BW, BOBJ, SAC, CRM, HTR systems.
- Strong knowledge in S / 4 HANA Security design skills, Current knowledge of industry and security solution trends and ability to apply knowledge to existing security design.
- Good to have knowledge in handling Security User and role administration in HANA, BODS, Portal,,EWM , & Process Orchestration (PO) system.
- Experience in designing, building, and deploying HANA database security.
- Experience in GRC Access Control support.
- Experience in SoD analysis & remediation.
- Experience in Solman CHARM Transport process
- Experience in designing, building, testing, and deploying business and support roles with S/4 and Fiori roles.
- Good to have experience in large and complex projects with multiple rollouts for countries / regions.
- Ability to work with limited supervision and exhibit a solid sense of urgency.
- Ability to handle Severity 1 and major incidents and provide resolution within SLA.
- Understanding of internal Security controls, sensitive transactions analysis.
- Ability to solve complex Security issues through research and technical detective work.
- Excellent communication and interpersonal skills.
Come create the technology that helps the world act together
Nokia is committed to innovation and technology leadership across mobile, fixed and cloud networks. Your career here will have a positive impact on people’s lives and will help us build the capabilities needed for a more productive, sustainable, and inclusive world.
We challenge ourselves to create an inclusive way of working where we are open to new ideas, empowered to take risks and fearless to bring our authentic selves to work
What we offer
Nokia offers continuous learning opportunities, well-being programs to support you mentally and physically, opportunities to join and get supported by employee resource groups, mentoring programs and highly diverse teams with an inclusive culture where people thrive and are empowered.
Nokia is committed to inclusion and is an equal opportunity employer
Nokia has received the following recognitions for its commitment to inclusion & equality:
- One of the World’s Most Ethical Companies by Ethisphere
- Gender-Equality Index by Bloomberg
- Workplace Pride Global Benchmark
At Nokia, we act inclusively and respect the uniqueness of people. Nokia’s employment decisions are made regardless of race, color, national or ethnic origin, religion, gender, sexual orientation, gender identity or expression, age, marital status, disability, protected veteran status or other characteristics protected by law.
We are committed to a culture of inclusion built upon our core value of respect.
Join us and be part of a company where you will feel included and empowered to succeed.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Business Intelligence Cloud Compliance ERP Finance Monitoring Oracle SAP Strategy
Perks/benefits: Career development Team events
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.