Cybersecurity - SAP GRC Security - Senior Associate

Line of Service

Advisory

Industry/Sector

Not Applicable

Specialism

SAP

Management Level

Senior Associate

Job Description & Summary

At PwC, our people in business application consulting specialise in consulting services for a variety of business applications, helping clients optimise operational efficiency. These individuals analyse client needs, implement software solutions, and provide training and support for seamless integration and utilisation of business applications, enabling clients to achieve their strategic objectives.

In SAP compliance and security at PwC, you will focus on providing consulting services for confirming compliance and enhancing security within SAP applications. You will analyse client requirements, implement security measures, and offer guidance and support for compliance with regulatory standards. Working in this area, you will enable clients to mitigate risks, protect sensitive data, and maintain compliance with industry regulations.

Focused on relationships, you are building meaningful client connections, and learning how to manage and inspire others. Navigating increasingly complex situations, you are growing your personal brand, deepening technical expertise and awareness of your strengths. You are expected to anticipate the needs of your teams and clients, and to deliver quality. Embracing increased ambiguity, you are comfortable when the path forward isn’t clear, you ask questions, and you use these moments as opportunities to grow.

Examples of the skills, knowledge, and experiences you need to lead and deliver value at this level include but are not limited to:

• Respond effectively to the diverse perspectives, needs, and feelings of others.
• Use a broad range of tools, methodologies and techniques to generate new ideas and solve problems.
• Use critical thinking to break down complex concepts.
• Understand the broader objectives of your project or role and how your work fits into the overall strategy.
• Develop a deeper understanding of the business context and how it is changing.
• Use reflection to develop self awareness, enhance strengths and address development areas.
• Interpret data to inform insights and recommendations.
• Uphold and reinforce professional and technical standards (e.g. refer to specific PwC tax and audit guidance), the Firm's code of conduct, and independence requirements.

Job Description

A career in our Emerging Solutions Analytics practice, within Risk Assurance Compliance and Analytics services, will provide you with the opportunity to assist clients in developing analytics and technology solutions that help them detect, monitor, and predict risk. Using advanced technology, we’re able to focus on establishing the right controls, processes and structures for our clients to ensure that verdicts are based on accurate information and assure that information provided to third parties is accurate, complete, and can be trusted. 

 

Our team helps business leaders develop into data driven organizations that adopt a comprehensive evidence based strategy, combined with the execution support to deliver results. You’ll focus on finding value and enabling sustainable information performance by using data, tools, analytics, complex modeling, data visualization, simulation, economics, optimisation, information management, business intelligence, and industry expertise. 

 

Meaningful work you’ll be part of 

 

As a Digital Risk Solutions Senior Associate, you’ll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. Responsibilities include but are not limited to:  

 

• Work on large-scale technology transformation projects across end-to-end ERP transformations as well as emerging and disruptive technologies 

• Provide risk advisory services to clients in key technology areas such as SAP S/4 HANA, SuccessFactors, Ariba, SAP Governance, Risk and Compliance (GRC), primarily focused on   

• Risk identification and control integration as part of an end-to-end ERP implementation; 

• IT and business process controls audit/review in context of an ERP implementation; 

• Implementation support including project management and governance; 

• Risk management and assurance over large transformation technology initiatives; 

• Design and implementation of ERP application security and controls; and 

• Experience with assessment and implementation of ERP GRC technologies 

• Perform reviews and assessments of IT risks, and design and assessment of controls in support of internal and external audit and advisory engagements, in areas such as:  

• Cloud security 

• IT projects and system implementations 

• IT risk and maturity assessment 

• Access management 

• IT governance reviews 

• Data governance assessments and reviews 

• Bring strong leadership and project management skills to engagement teams, working in dynamic and cross-functional teams for large-scale and multi-national engagements. 

 

Experiences and skills you’ll use to solve 

 

• Experience and knowledge of controls integration, security design/implementation and GRC integration related to one or many large ERP solutions such as SAP S/4 HANA, SuccessFactors, Ariba, SAP Governance, Risk and Compliance (GRC). 

• Implementation and/or assurance experience with emerging technologies such as blockchain, robotic process automation (RPA) and artificial intelligence is preferred. 

• Experience in one or more of the following areas would be preferred, especially aligned in context of cloud-based / large-scale ERP systems - external and internal IT audits and reviews, data conversions, audit of controls under CPA Canada section 5970 (CSAE 3416) and SSAE 16, SOX/NI 52-109 programs; and data quality and analytics. 

• 3-5 years of relevant experience, including key areas such as Consulting (e.g. system implementation, project management, IT consulting, risk consulting, cyber security, etc.),  Assurance (internal and/or external audit) or relevant industry roles (e.g. risk management, IT, cyber security, finance and accounting, project management, system implementation) 

• Ability to obtain Government of Canada Security Clearance; Level 2 security clearance is an asset 

• Bachelor’s or Master's degree in Business, Information Technology, Finance, Data Science or Computer Science degree required 

• Completion of relevant certifications (e.g. CISSP, PMP, CRISC, CISM or CISA designation) is an asset 

• Certifications from large ERP vendors (e.g. SAP S/4 HANA, SuccessFactors, Ariba, SAP Governance, Risk and Compliance (GRC)) is an asset 

• Fluent in French and English would be an asset 

• Business development: getting involved with new opportunities, taking a proactive role in raising awareness of the firm's services and level of commitment to the local market, developing and maturing relationships with internal staff and clients, developing proposals, identifying and pursuing opportunities to increase the practice's penetration in the public and private sector. 

• Provide high performance (e.g. clear vision/target/purpose, open communication, promoting flexibility, collaboration and accountability) to deliver high quality to clients and a rewarding experience to staff. A demonstrated commitment to valuing differences and working alongside diverse people and perspectives. 

• A demonstrated commitment to valuing differences, developing and coaching diverse teams, and ensuring diverse perspectives are heard 

• A demonstrated commitment to valuing differences, developing and coaching diverse teams, and ensuring diverse perspectives are heard 

Education (if blank, degree and/or field of study not specified)

Degrees/Field of Study required:

Degrees/Field of Study preferred:

Certifications (if blank, certifications not specified)

Required Skills

Optional Skills

Accepting Feedback, Accepting Feedback, Active Listening, Analytical Thinking, Audit Documentation, Auditing, Business Administration, Communication, Compliance Advisement, Compliance and Governance, Compliance Auditing, Compliance Awareness, Compliance Oversight, Compliance Program Implementation, Compliance Record Keeping, Compliance Review, Compliance Technology, Corporate Governance, Corrective Actions, Creativity, Data Analytics, Developing Policies and Guidelines, Embracing Change, Emotional Regulation, Empathy {+ 21 more}

Desired Languages (If blank, desired languages not specified)

Travel Requirements

Not Specified

Available for Work Visa Sponsorship?

No

Government Clearance Required?

No

Job Posting End Date