Job Description
Our Company's Information Technology division partners with colleagues across the organization to help serve our patients and customers around the world. Ours is a high-energy team of dynamic, innovative individuals dedicated to leveraging information and technology to efficiently drive revenue and productivity, thereby advancing our Company's contribution to global medical innovation.
Enterprise IT (EIT) is an essential component of the division that provides support to the Pharmaceutical Research (our Research & Development Division), Supply Chain (our Manufacturing Division), Marketing (HH) organizations as well as Enabling Functions.
The SAP Platform Team, part of the EIT organization, owns our Company's SAP Global Template which enables enterprise-level capabilities through harmonized business processes and data. The team is responsible for the operation of all SAP and integrated solutions, governance of the associated enterprise assets, and cost-effective delivery of capabilities to support achievement of immediate and future state business objectives.
We are looking for an experienced Associate Director of SAP Security to lead our SAP security initiatives and drive strategic security programs. This role will involve overseeing the security framework for SAP systems, managing a team of security professionals, and collaborating with cross-functional teams to ensure the integrity and confidentiality of our data. The Associate Director will play a critical role in shaping the security posture of our organization and ensuring compliance with regulatory requirements
This Associate Director role will be responsible for:
- Strategy & Leadership: Management and evolution of Security strategy, and related processes and tools, for SAP Platform team in alignment with broader SAP Platform and EIT team strategy and objectives
- Lead, mentor, and develop a high-performing team of SAP security professionals, fostering a culture of security awareness and continuous improvement.
- Provide thought leadership / insight into future state security strategies to support our Company's journey to S/4
- Planning and Execution:
- Develop and execute a comprehensive SAP security strategy that aligns with organizational objectives, risk appetite, and compliance requirements.
- Establish and enforce security policies, standards, and procedures for SAP systems, ensuring adherence to industry best practices and regulatory requirements.
Required Skills:
• 10+ years of experience in SAP role design, implementation, and managing system access
• In-depth knowledge of SAP security architecture, role management, and authorization concepts.
• Extensive experience in implementing security aspects in various SAP applications like ECC, ATTP, BI, GBT, GTS, MDG, HANA Security, Solution Manager...
• Minimum of 3 full lifecycle implementations of SAP projects.
• Hands on experience in implementing security in cloud-based SAP solutions (Ariba, Concur) and emerging security technologies (BTP, DataSphere).
• Significant experience managing medium to large projects (developing plans, identifying resource requirements, tracking progress, managing issues, etc.)
• Personal accountability, teaming, and organizational skills to drive and track success.
• Ability to collaborate in a matrix organization, participating in cross-divisional projects and building peer relationships.
• Strong interpersonal skills and a track record of interacting with executive stakeholders.
• Strategic thinking and problem-solving abilities, with a focus on proactive risk management.
• Aptitude and interest for learning new technology.
• Aptitude for ‘translating’ business needs into relevant technical strategies and solutions.
• Excellent communication skills
Preferred Skills:
- Experience in SAP GRC (Governance, Risk, and Compliance) solutions and security tools
- Experience with Agile Methodologies, Demand Management Tools (Jira) and collaboration tools (Confluence, Mural, MS Teams) is preferred.
Education Requirements:
- Bachelor’s degree or equivalent degree in business, computer science, information technology, or related discipline