Implementing/delivering complex SAP security developments and Drive innovation within the area of SAP security and controls, with a view to optimizing the control environment to enhance the security of our SAP landscape. Enforce quality assurance and compliance for vendor-led security changes and serve as approver for PAM, EAM, and security system design.
Key Responsibilities
Day to day management of the team (indirect reports) to provision user access in the ERP applications using the respective ticketing system.
Responsible for designing, documenting standards and procedures for SAP user administration, outlining security creation and maintenance
Implementing/delivering complex SAP security developments.
Responsible for the approval of designs for new ERP security roles.
Responsible for supporting the SAP security and authorization environment. This includes support for all security roles, profiles, Groups
Engage with the wider business obtaining role build requirements
Provide detailed process improvement ideas
Work with the internal Controls and Compliance team to support SOX compliance in relation to General IT Controls over the SAP landscape.
Responsible for responding to, and acting on, compliance related issues, including those raised by internal and external audit
Drive innovation within the area of SAP security and controls, with a view to optimizing the control environment to enhance the security of our SAP landscape
Work closely with our Information Services team around technical activity and contract management, supporting in BAU and on a project basis as required including supporting new ERP platform implementations as required
To ensure all activities that are completed in the system are fully auditable
Provide periodic reports to the ERP Security Leadership
Develop relationships with stakeholders within the business
Provide support for incidents relating to ERP Security
Develop areas for improving the current processes
Maintenance of relevant SOPs, standards, and best practices.
Oversee security role ownership, approvals, access requests, role design, and change activities for both BAU & Projects
Implementing/delivering complex SAP security developments.
Enforce quality assurance and compliance for vendor-led security changes and serve as approver for PAM, EAM, and security system design.
Required Experience & Qualifications
Any bachelor’s or master’s degree in the relevant discipline or SAP certification experience.
8 + years of relevant experience in in SAP Security and GRC solutions.
At least two End-to-End security implementation cycles.
Technical Skills
A background in SAP ERP security architecture and implementation experience of SAP security from conception stage to completion.
Extensive knowledge and experience in SAP ECC, S/4HANA , Fiori, BTP & BW security, SOLMAN, SOX audit and support of GRC 12.0
Strong understanding of business processes and/or supporting SAP technologies
Experience in implementation, auditing or advisory in SAP ERP and GRC domains
Subject matter expert in SAP security design, being able to solve complex technical issues.
Understanding of SAP security processes, security architecture and administration with a thorough knowledge of BW, Fiori and BPC elements.
SAP security Consultation for Rollouts, Version upgrade, support, and implementation projects. Preparation of Requirement Specification, Blueprint, Test plan
Analyse and diagnose customer feedback, formulating action plans that will improve VoC
Work across boundaries within and external to Global ERP to ensure issues are resolved in a timely manner
Identify opportunities for improvement and implement the same.
Behavioural Competencies
Strong problem-solving and critical-thinking skills.
Excellent stakeholder management and communication; ability to present complex analyses simply.
Collaborative team player with experience working in cross-functional and regulated environments.
Proactive, adaptable and accountable for delivery and quality.
Key Performance Indicators (KPIs)
Timeliness and impact of delivered models/insights.
Model accuracy, robustness and business value
Stakeholder satisfaction and adoption rates.
Preferred
Domain knowledge in pharmaceuticals, healthcare industries.
Certifications/Expertise in the S/4 HANA, BTP Security and SAP cloud technologies.
Why GSK?
Uniting science, technology and talent to get ahead of disease together.
GSK is a global biopharma company with a purpose to unite science, technology and talent to get ahead of disease together. We aim to positively impact the health of 2.5 billion people by the end of the decade, as a successful, growing company where people can thrive. We get ahead of disease by preventing and treating it with innovation in specialty medicines and vaccines. We focus on four therapeutic areas: respiratory, immunology and inflammation; oncology; HIV; and infectious diseases – to impact health at scale.
People and patients around the world count on the medicines and vaccines we make, so we’re committed to creating an environment where our people can thrive and focus on what matters most. Our culture of being ambitious for patients, accountable for impact and doing the right thing is the foundation for how, together, we deliver for patients, shareholders and our people.
Inclusion at GSK:
As an employer committed to Inclusion, we encourage you to reach out if you need any adjustments during the recruitment process.
Please contact our Recruitment Team at IN.recruitment-adjustments@gsk.com to discuss your needs.
Important notice to Employment businesses/ Agencies
GSK does not accept referrals from employment businesses and/or employment agencies in respect of the vacancies posted on this site. All employment businesses/agencies are required to contact GSK's commercial and general procurement/human resources department to obtain prior written authorization before referring any candidates to GSK. The obtaining of prior written authorization is a condition precedent to any agreement (verbal or written) between the employment business/ agency and GSK. In the absence of such written authorization being obtained any actions undertaken by the employment business/agency shall be deemed to have been performed without the consent or contractual agreement of GSK. GSK shall therefore not be liable for any fees arising from such actions or any fees arising from any referrals by employment businesses/agencies in respect of the vacancies posted on this site.
It has come to our attention that the names of GlaxoSmithKline or GSK or our group companies are being used in connection with bogus job advertisements or through unsolicited emails asking candidates to make some payments for recruitment opportunities and interview. Please be advised that such advertisements and emails are not connected with the GlaxoSmithKline group in any way.
GlaxoSmithKline does not charge any fee whatsoever for recruitment process. Please do not make payments to any individuals / entities in connection with recruitment with any GlaxoSmithKline (or GSK) group company at any worldwide location. Even if they claim that the money is refundable.
If you come across unsolicited email from email addresses not ending in gsk.com or job advertisements which state that you should contact an email address that does not end in “gsk.com”, you should disregard the same and inform us by emailing askus@gsk.com, so that we can confirm to you if the job is genuine.