Position Profile :
The SAP Security Analyst is responsible for the global architecture, design, development, exploitation, and standards of the Emerson Automation Solutions solution components in the SAP security and controls area.
This includes the execution of role-based security, single and composite roles, separation of duties, and general security authorizations.
The Security Analyst is responsible to ensure adherence to Emerson security policies within the SAP landscape and implementation of best practices.
This position requires deep subject matter expertise in SAP ECC, BI, and Governance Risk and Compliance toolsets including SAP GRC and Security Weaver
The Security Analyst will be responsible to learn the security designs in all the Emerson Automation Solutions SAP Systems and recommend / drive improvement and design standardization opportunities that result in a lower support complexity.
This position will be the primary interface with Internal & External audit teams and is responsible for overseeing the execution and submission of audit requests
This role will act as a contributor for security related projects, automation and change
Responsible for SAP security implementation and management
Participate in weekly meetings with internal & external counterparts
Audit processes performed by third parties to ensure compliance to Emerson standards
Oversee, Design and implement SAP user authorization and profile maintenance in Emerson Automation Solutions SAP Systems
Maintain and update security guidelines, policies, procedures and controls for the operation of the SAP systems to ensure compliance with SOx and general IT controls requirements
Provide guidance and work closely with Emerson Change teams to ensure adherence to security standards
Translate security requirements originating in the Emerson change team into specifications for work that can be carried out by this role or any other assigned party
Coordinate and execute periodic SOx audits with Internal and External Audit personnel
Lead potential mitigation efforts and monitor the ongoing status of action plans
Monitor fulfillment of SAP agreements, licenses and obligations, and conduct on-going license audits periodically / annually
Design, development and analysis of SAP user authorizations and technical security roles
Oversight, Configuration and maintenance of Security Weaver GRC tool and SAP GRC integrated with SAP
Facilitate system and integration testing including the functionality, performance, and fit to ensure that it meets the original requirements and works within the defined standards
Maintain and update security parameters, guidelines, policies, procedures and controls for the operation of the SAP systems
Prepare and manage Segregation of Duties (SOD) rule set and support review of SOD conflicts and mitigating controls with the business.
Provide governance for security change requests
Assist in definition and development of SAP security policies and procedures
Oversee and executes production support related tickets dealing with user administration and role defects (SU01 user creation, license types, role assignments)
Serves as escalation point for critical production issues related to Security or other areas
Work closely with other internal and external teams to ensure compliance to all security design standards
Ensure SAP system complies with SOX and general IT security requirements
Coordinate periodic SOX audits with Internal and External Audit teams and lead potential mitigation efforts
Personal Specifications :
Education : Four (4) year degree or equivalent experience
A minimum of 10 years experience in SAP Security
Skills : Demonstrated IT compliance expertise with at least 10 years of hands-on experience in leading an IT compliance environment
In depth knowledge of IT security & IT controls concepts, practices, and procedures
Demonstrated advanced technical knowledge in SAP security roles and authorizations design
Demonstrated hands-on working experience in security tools or Governance, Risk and Compliance (GRC) applications like Security Weaver, SAP GRC
Behavioural Competencies :
Champions Integrity and Trust
Learning / Change Agility
Builds Effective Teams