What are the responsibilities and job description for the SAP Security Analyst - Information Technology position at Subaru of Indiana Automotive, Inc.?
Date: Jan 30, 2025
Location: Lafayette, IN, US, 47905
Company: Subaru
SAP Security Analyst
Information Technology
Position Summary:
The SAP Security Analyst is responsible for the creation and maintenance of General IT control objectives in SAP S4/Hana. Additionally, perform other administrative tasks related to S4/HANA basis. This position will be responsible for ensuring that all SAP security IT control objectives are complying and running to full efficiency. This role will also assist with the daily and monthly reporting of SOD (Segregation of Duties) activities from SAP in support of meeting applicable compliance objectives. This is a cross-functional role, working closely with the SAP Security team and other functional teams to ensure security requirements and solutions meet compliance objectives. Candidates must also perform small basis functions including OSS notes implementation, apply add-ons and support packages.
Outline of Duties:
- Provide SAP User and Role Administration across multiple SAP modules including S/4HANA, Fiori, Solution Manager, other SAP cloud applications, Ariba.
- Assist in the build and modifications of SAP Security roles.
- Assist in the development and execution of processes and techniques to ensure compliance with Security policies and guideline
- Maintain auditable role development and change history.
- Assess business role requirements, review authorization roles, and support authorizations.
- Implement best practices when applying knowledge of information systems security standards/practices (e.g. Access control and system hardening, system audit and log file monitoring, security policies, and incident handling).
- Create and/or remediate GITC (General IT Controls) in support of meeting audit objectives for all SAP modules, and their supporting Databases, within the SIA SAP landscape (i.e. Finance, Procurement, Warehouse Management, Ariba, HANA, etc.)
- Assist with the creation of effective remediation solutions and/or exception documentation where applicable.
- Serve as the subject matter expert and point of contact to Internal and External Auditors.
- Assist with the successful completion of the quarterly UAR (User Access Review) audit process.
- Perform SAP System monitoring for performance and health.
- Implement SAP OSS notes, apply add-ons and support packages.
- Troubleshoot and fix production critical technical issues.
- Perform various SAP marketplace activities like software downloads, connection maintenance and coordination with SAP.
Minimum Qualifications:
- Bachelor’s degree in Information Technology, Computer Science, Business, or equivalent.
- Technical knowledge of SAP landscapes and roadmaps.
- Minimum of 5 years of experience in IT Risk Management, SOX compliance, and/or auditing with a strong background in IT controls.
- Minimum of 5 years of experience with SAP Security across various applications including S/4 HANA, ECC, BW, MDG, Fiori, PI/PO, eWM, and Solution Manager
- Minimum of 5 years of experience with SOD conflict resolution.
- Strong understanding of SOX/J-SOX and other compliance requirements that may impact SAP Security
- Strong understanding of some Basis activities like implementing SAP OSS notes, patches, support packages.
- Experience working with S/4HANA in a private cloud environment
- Experience working with a large, complex SAP environment with multiple landscapes and clients.
Desired Qualifications:
- Masters Degree in Computer Science or equivalent.
- Experience in a manufacturing environment.
- Certification in SAP Security/GRC and another security tools.
- Experience working with S/4HANA in a private cloud environment.
Nearest Major Market: Lafayette
