SAP Security Authorisations Controller
SAP Security Authorisations Controller required to maintain client's security and authorisation governance processes, policies and procedures and supporting operating model for SAP.
Manage requests for all new SAP accounts in line with the client's security and authorisation governance policies.
Manage the client's SAP licence management and relevant submissions.
Manage the SAP element of the annual finance audit.
Validating solutions including user roles and authorisations to meet with the defined requirements for security, roles and segregation of duties.
Validation of risk matrices within the business to ensure the segregation of duties rule set reflects a representative view of conflicts relevant to the business.
Identification and enforcement of mitigating controls within SAP.
Identifying opportunities to improve processes or implement associated ancillary tools to assist in ongoing Identity Management.
Maintaining the Authorisation governance processes, policies and procedures and supporting operating model for SAP.
Act as the conduit between the client and third party suppliers for maintaining user authorisations.
To work closely and build successful relationship with the business representatives, third parties and external & internal Audit/Risk Assurance Team.
To undertake the necessary preparation for the annual SAP licencing audit and manage the process with third party suppliers and SAP to carry out the evaluation. Manage the interaction with SAP to discuss and conclude any issues arising.
To undertake the necessary preparation for the annual IT audit and manage the process with third party suppliers and the external auditor to carry out the evaluation. Manage the interaction with the auditors to discuss and conclude any issues arising.
1) Change Action Board (CAB) with Third Party Suppliers and client resources;
a. Check Grey Data. Manage and maintain Grey Data list,
b. Review of all Impact Analyses Forms (IAF) for changes and break-fixes,
c. Grey data change process. Review of changes: Small/simple changes via third party supplier ticked submission, bigger changes via PMW process.
2) Data error overview. Check all data errors in SAP logged by third party suppliers;
a. List provided by third party suppliers periodically.
3) Data steward organization;
a. Modelling of master data roles and assignments and BPP of master data;
i. Segregation of duty management (Profile Tailor Dynamics licence),
ii. Review/reassign Business Process Leads per site,
iii. Monitoring of Role based access control,
b. Table checks, check on consistency and quality of data.
Specific knowhow and technical skills:
- SAP User and Authorisations Reporting Suite (ECC and BO).
- SAP Security awareness.
- SAP Solution Manager.
- Experience of using MS Office applications to an advanced level is desirable.
All applicants must be based in the UK and confirm that they are able to prove their eligibility to work in the UK.