08 - Specialist, IT Solutions

General Overview

Functional Area:  Information Technology (ITM)
Career Stream:  IT Solutions (SOLN)
Role:  Specialist (SPE)
Job Title: Specialist, IT Solutions 
Job Code:  SPE-ITM-SOLN
Job Level:  Band 8
Direct/Indirect Indicator:  Indirect

Summary

The Specialist, IT Solutions within the SAP Security Team is responsible for ensuring the SAP Access is assigned in a controlled manner as designed and compliance is met. The individual will be responsible for supporting process improvements within the team’s own initiatives as well as both internal and external projects. The incumbent is able to interact with internal stakeholders and provide support and guidance on SAP Access. Incumbents are fully qualified to execute job/role accountabilities working independently on most aspects of the job. Work is performed within established professional standards and practices.  Tasks are moderately complex in nature where judgment is required to complete recurring assignments independently and to determine the best methods to follow to complete assignments. Erroneous decisions or failure to achieve results may have a negative impact on the divisions/department’s operations, schedules, and/or performance goals. Works under general Supervision.  Situations not covered by standard processes, procedures and methods are referred to manager or expert resource. May demonstrate work methods to new employees. Builds internal and external relationships, with emphasis on those that facilitate the achievement of job/role accountabilities, such as relationships with key suppliers, customers and internal service.

Detailed Description

Performs tasks such as, but not limited to, the following:

• Supports SAP projects
• Participates in evaluation, development, implementation SAP related processes
• Works with users to support and solution new business requirements
• Maintains responsibility for security access to SAP within the scope of various compliance requirements
• Support audit procedures/plans

Responsibilities Include:

Authorization Development

• Verify requirement with the business owners
• Maintain design specification documentation for each role (blueprint)
• All new transactions are reviewed by SAP Security and Internal Audit Management
• Ensure role is SOD free (with few exceptions) and no impact to existing users
• Sign off and forward requirement to development team
• Coordinate UAT
• Verify development after move to production

Emergency Access Management (GRC EAM / Fire Fighter)

• Setup EAM users and audit log approvers
• Provide training to EAM users and controllers, ensure training record signed off for Health Tech
• Streamline the process to facilitate IT governance using best practices
• Continuous monitoring to drive compliance as per policy
• Continuous review of the use cases to reduce the use of non emergency cases

GRC SOD/CA Controls

• Provide regular SOD and Critical Action reports to sites, business controls and IT governance teams
• Load mitigation control provided by the business into GRC
• Conduct annual review of Rule Set changes
• Conduct annual mitigating control review
• Conduct quarterly review of users tied to mitigating controls
• Run weekly SOD and Critical Transaction reports
• Review weekly SOD reports and actively work to reduce the risks by working with the business to remove access and/or modify assigned roles
• Be an Advisor for Mitigating Controls working with Business Controls, Site IT and Process Owners

ID management

• Provide guidance to the Site IT teams that support for the  primary production systems
• Manage generic accounts used for RFC connections, batch jobs & standard SAP accounts
• Responsible for development, quality and sandbox access (GRC Access Requests)
• Manage accounts for employees at respective sites where cross system SOD analysis is mandatory
• Support Access Administration for SAP systems, but not limited to BTP, BW4/Hana, ECC, GRC, GTS, PO and Solution Manager
• Coordinate with Site IT, Site Controllers and Process Owners for new risks without controls
• Team responds to any access issue that cannot be resolved via standard GRC ticket
• Support onboarding of 3rd party vendors

Compliance

• Participate in various Site Audits (Inventory, ISO, NIST, Purchasing, SOX as examples)
• Ensure SAP security standard is in alignment with IT Security Policy and in line with best practices
• Ensure SAP is configured according to the SAP Security Standard
• Review weekly Early Watch reports and take action when necessary
• Support the Annual ID and Role Validation process
• Support IT Controls, Internal & External Audit Teams

Project Support

• Business Requirement Gathering
• Blueprint (SAP Org Structure, New Transaction Analysis & Role Development)
• Authorization Development
• GRC SOD Rule Set Development
• SIT Support
• UAT Support
• SOD Analysis
• Mitigating Control Review
• Role Ownership Update in GRC and Approval for Go-Live Role Assignment
• Project Cutover (Golden Transactions, Update SAP Access, IDL Accounts, Fire Fighter Accounts)
• SOD Analysis

Knowledge/Skills/Competencies

• Knowledge of SAP GRC Access Control provisioning access and remediating SOD's
• Excellent knowledge of an Electronic Manufacturing Service (EMS) environment. Hands on as a process owner or lead within the manufacturing area is an asset
• High level of knowledge in one or more modules within SAP (examples FICO, MM, PP, SD, QM)
• Excellent knowledge of IT tools and systems relating to Access Control. Awareness of new tools and tech
• Strong knowledge of process and application analysis, design and requirements definition directly related to SAP Security
• Knowledge of project management process and SAP deployments
• Ability to deploy SAP Access for new Org structure for new site locations
• Ability to troubleshoot PR/PO release issues
• Ability to identify and resolve complex process/system
• Ability to evaluate, prioritize and problem solve a variety of tasks to ensure their timely and accurate completion
• Ability to communicate effectively, both verbally and in writing, with a wide variety of internal and external customers

Physical Demands

• Duties of this position are performed in a normal office environment.
• Duties may require extended periods of sitting and sustained visual concentration on a computer monitor or on numbers and other detailed data. Repetitive manual movements (e.g., data entry, using a computer mouse, using a calculator, etc.) are frequently required.

Typical Experience

• 4 to 6 years; Experience in similar roles

Typical Education

• Bachelor Degree or consideration of an equivalent combination of education and experience.

• Educational Requirements may vary by Geography

Notes

This job description is not intended to be an exhaustive list of all duties and responsibilities of the position. Employees are held accountable for all duties of the job. Job duties and the % of time identified for any function are subject to change at any time.