Devire is an international company specializing in recruitment, outsourcing and employer branding services. For more than 30 years, we have represented leading employers on the European market, by carrying out comprehensive recruitment projects, implementing the latest solutions in the area of IT services and by supporting in building the image of the employer of choice.

Our offices are located in Warsaw, Wroclaw, Poznan, Katowice as well as Munich, Frankfurt, Prague and Hradec Kralove.

SAP Security Consultant

Location: Warsaw

Interested in joining a cause-driven, customer focused company dedicated to positively impacting the health of animals, people and the planet? Search our job listings below.
  

The primary focus of this position will be ensuring a compliant and robust role-based security for SAP S4 centered ERP system landscape.

 

Key responsibilities include:

In partnership with the Information Technology Leadership and other Information Technology Advisors/Consultants, this role will have direct responsibilities across the Global Business Service IT for:

• Provide comprehensive SAP Security design, including detailed low-level guidance on implementation, that aligns with overall strategic and security architecture, that includes understanding infrastructure security, SAP system security and the business controls that work alongside an SAP implementation.
• Provide build oversight and management support for the SAP project team to ensure security considerations are carried forward throughout the implementation project
• Lead SAP Security projects as needed, potentially spanning multiple technology platforms and functional areas, including facilitating coordination across multiple third-party partners and staff.
• Lead technical discussions and proactively propose best practice approaches for SAP Security. Designing “best SAP Security practices” that accurately and efficiently utilize the existing SAP functionality and resources to provide a common InfoSecurity framework across all systems
• Proactively interact with program and security leadership to discuss and explain issues
• Maintain awareness of and provide program updates about SAP Security Notes, working with SAP Security and Basis administrators to appropriately implement guidance
• Develop and document processes that ensure SAP Landscapes are up to date with the latest Security patches provided by SAP
• Design capabilities for continuous monitoring and analysis of SAP systems to identify vulnerabilities
• Define and provide performance metrics (and reporting) for key SAP Security activities
• Provide support for on-going controls and audit activities including SAP Security system monitoring
• Ensures that the security approach chosen and security build in the systems will follow below objectives for the company
• Compliance with GxP, CSV, SOX and all other global and local requirements
• Security processes and the required IT solution have a low cost of ownership but meet the regulatory and business requirements
• Acceptance of the security processes and its underlying applications and software within the IT and business organization
• Engages with the business stakeholders (process leads) to understand the business processes as a prerequisite for the security requirements
• Balances segregation of duty requirements with the partially lean organizational set-up in some of the countries
• Defines together with the system integrator a pragmatic testing approach for roles and security that also meets the compliance requirements
• Works with internal and external partners to develop appropriate security posture for the entire SAP landscape

  

Basic Qualifications:

• Minimum of bachelor’s Degree in Business Management or Information Technology or similar area
• Prior experience with a new SAP environment standup or SAP standup as part of a divestiture, sale, spinout, or merger
• Minimum of 4 years of hands-on experience in SAP Security development and design
• Minimum of 4 years of experience in SAP system and design analysis, compliance, audit, and/or Sarbanes-Oxley
• Experience working in a regulated environment with highly confidential and/or sensitive information (e. g., GDPR, PII etc.)
• Strong SAP GRC knowledge
• Ability to build a role model that covers all regulatory, statutory and legal requirements, is manageable and transparent for the organization and sustainable
• Good Leadership and negotiating skills across different levels of organization
• Expertise in working in complex, diverse landscape (business, technology, regulatory and partners)
• Good knowledge of security trends, technologies and tools