SAP GRC Analyst

KONE

We are a global leader in the elevator and escalator industry. At KONE, we make people's journeys safe, convenient, and reliable, in taller, smarter buildings.

Responsibilities:

1. Design, configure, and maintain SAP GRC solutions, including SAP GRC Access Control, SAP GRC Process Control, and SAP GRC Risk Management.
2. Work with business stakeholders to understand their risk and compliance requirements and translate them into technical solutions.
3. Collaborate with other technical teams, such as SAP Basis, Security & functional teams, to ensure that SAP GRC solutions are integrated seamlessly into the overall SAP landscape.
4. Implement and maintain security controls to protect sensitive data and ensure compliance with regulatory requirements.
5. Monitor and optimize the performance of SAP GRC solutions to ensure that they are running efficiently and effectively.
6. Troubleshoot and resolve technical issues related to SAP GRC solutions.
7. Stay up to date on new SAP GRC features and functionality and provide recommendations on how they can be used to improve the organization's risk and compliance posture.

Minimum Requirements:

1. 4-6 years of experience in SAP Security, Authorizations & GRC AC/PC.
2. Deep knowledge & understanding of various aspects of SAP Security & Authorizations, both from a technical as well as business process perspective.
3. Knowledge of SAP authorization concept for both on-premise systems such as ECC, BW, Portal, BPC, FIORI as well as S/4 HANA and new SAP Cloud solutions.
4. Experience with integration to Identity Management Systems for provisioning to SAP on-premises and Cloud applications, with Directory Services for Authentication via SSO.
5. Experience with SAP GRC Access Control for centralized risk management, compliant provisioning, and role administration.
6. Experience in handling Segregation of Duties (SOD) Risks, applying mitigation controls, supervising sensitive access and elevated privileges.
7. Ability to perform GRC/SOD control maintenance and remediation processes.
8. Good knowledge of Fiori, HANA, BW, BPC, S/4 HANA, and Cyber Security.
9. Conduct audits & facilitate external audits of access controls to ensure compliance with internal policies and regulations.
10. Design and implement control frameworks to ensure business processes comply with regulatory standards.
11. Monitor and report on the effectiveness of internal controls.
12. Propose enhancements and optimizations for existing SAP Security & GRC processes.

At KONE, we are focused on creating an innovative and collaborative working culture where we value the contribution of each individual. Employee engagement is a key focus area for us, and we encourage participation and the sharing of information and ideas. Sustainability is an integral part of our culture and daily practice. We follow ethical business practices and seek to develop a culture of working together where co-workers trust and respect each other, and good performance is recognized.