Senior Specialist ERP Platform Security Services EMEA

In Johnson & Johnson we are transforming our traditional ERP solution into the latest and greatest S/4 HANA solution supporting our business to be ready for the digital revolution.

We are looking for a Manager ERP Security and Controls who will be responsible for ensuring the seamless operation of our SAP systems and enhancing our overall security and controls framework. You will have the chance to join a team of experts in the field and work closely with different teams to identify and implement security measures that protect our organization from potential threats.

Responsibilities:

• Develop and maintain a comprehensive security and controls framework for SAP systems.
• You will have hands-on technical configuration of security on SAP applications when required, for example in high risk or highly complex enhancements.
• Conduct regular audits and assessments to identify potential vulnerabilities and risks.
• Monitor and analyze system logs and alerts to detect any unauthorized access or activities.
• Offer guidance and support to end-users regarding effective security practices and procedures.
• You will be applying conceptual knowledge and technology to enable business processes and solve procedural problems.
• You will design, build, and deploy authorizations to meet business security requirements.
• You will assist in management of technical changes through the landscape, responsibility for quality and assurance that control points are satisfied.
• You will resolve customer complaints/technical issues in collaboration with support team and responds to suggestions for improvements and enhancements.
• Collaborate with diverse teams to implement necessary security measures.
• You will coordinate contractor resources and vendor teams to deliver ongoing support to the business, including task management, provision of mentoring and support and serving as point of escalation.
• You will lead contractor resources to deliver the security elements of improvements and upgrades with accountability for clearing roadblocks and ensuring timely and quality delivery of security requirements.
• Own the control execution lifecycle by verifying adherence to control requirements, liaising with stakeholders to prioritize remediation activities, and maintaining documentation and status reporting until audit findings are fully resolved for both internal and external audits.

Requirements:

• Bachelor’s degree in Information Technology, Computer Science, or related field — or equivalent experience.
• 8+ years experience working with ERP (SAP & JDE) security and controls.
• In-depth technical mastery (5 years + experience) of ERP security and authorizations, including hands-on experience of security role build, role assignment, tracing, trouble shooting, remediation analysis and technical support and be able to provide technical mentoring and guidance to others.
• Strong technical Mastery across of security configuration, processes, and standard methodologies in ERP systems: JDE, SAP Security, BI Security, Fiori Security, SAP BTP, SAP HANA Security, SAP GRC Access, and S/4 HANA Security strongly preferred.
• Initiative and capability to work independently while pulling in and collaborating with others as required will be strong character traits.
• Demonstrated proficiency in clear and concise communication, adapting to different audiences ranging from technical experts to non-technical colleagues.
• Excellent analytical and problem-solving skills.
• Ability to assess functional requirements and translating into technical solutions is required.
• Awareness of GxP and SOX regulatory frameworks strongly favored.
• Comprehensive knowledge of industry standards and regulatory compliance.

Preferred / Advantageous:

• Certifications such as SAP GRC, CISM, CISSP, or equivalent.
• Prior experience in large, global SAP landscapes and cross-border program delivery.
• Experience integrating SAP security workstreams into modern identity/access tooling.
• Functional background in any supply chain and/or finance processes strongly favored.

Hybrid