Job Description

The Position

We need an ERP Authorizations Expert who has:

Expertise in implementing and maintaining authorizations/security standards and solutions for SAP systems (e.g. ERP, EP, BW, Fiori, GRC, HANA DB) for at least six years full-time (incl. minimum four years\xe2\x80\x99 experience in SAP Authorizations);

Good understanding of Industry\xe2\x80\x99s Best Practices and SAP Audit Guidelines;

Bachelor\'s Degree (Computer Science, IT, Engineering Preferred)

Strong verbal and written communication skill and use straightforward communication with advanced level of spoken and written English is a must as well as the will to work in the multicultural, international virtual project team;

SME in the space of SAP ERP ECC, SAP Security

Strong ability in root cause analysis of issues, provide solution and driving solution to completion

Ability to work as part of a team with strong time management skills

High attention to detail, proactive and passionate for process improvement

Good leadership skills and ability to work in a multicultural team environment

Knowledge of the newest security developments, trends, and tools;

Working knowledge on SODs & Critical Actions

Good understanding of access controls and Financial & IT compliance

Proven track record of IT projects where working in a key technology role (i.e. subject matter expert, solution architect, tech lead); preferably to have SAP Certification in Users Administrations / Authorizations;

Proposes solution architecture and contributes to creating ERP architecture strategy, shows passion for innovation, has strong communication, collaboration, coaching and interpersonal skills, teaches and enables other team members;

Helps the organization to define, maintain and improve IT processes and standards, knows ITIL (at least at the Foundation level), constantly develops and expands own expertise by acquiring new technical and business knowledge and following emerging IT trends and market solutions;

Nice to have:

SAP S/4HANA certification

Experience in SAP Business Technology Platform (BTP)

Experience with Attribute Based Access Control (ABAC) concept

Experience with the newest trends and tools like Identity Access Governance, Identity and Access provisioning, ABAC, Enterprise Threat Detection, UI Masking, Vulnerability management (e.g. Onapsis Secure Platform), GRC Access Control, GRC Process Control

Let\xe2\x80\x99s find out what a usual day of work might look like. You will:

Design architecture of authorization solutions for SAP systems and implement these solutions in e.g. SAP ERP, EP, BW, S/4HANA, BW/4HANA, GRC.

Review the business blueprint, functional specifications for SAP security role development and user acceptance test plans and participate in cutover activities during go-live phases.

Develop a centralized process for SAP security role administration.

Ensure that the security roles are appropriately assigned to users and tested thoroughly before deployment.

Evaluate business risks associated with security role design, implement appropriate controls to address those risks and provide recommendations on ways to simplify and streamline the security design.

Experience in GRC access control, RAR (Risk Analysis and Remediation) and SOD (segregation of duty),mitigation and remediation

Identify role owners and automate the role and user provisioning processes.

Monitor, report and remediate elevated role provisioning to ensure unauthorized access removal for live production

Reviews and resolves problems in a timely fashion

Provide a technical consultancy and contribution to projects requiring expert competence,

Ensure fulfillment of high technical standards and quality requirements,

Be responsible for setting technological development directions for the organization by analyzing, selecting, implementing and encouraging new solutions, tools, and IT standards

Actively initiate and conduct innovation projects with a view to optimizing processes, introduce new solutions, and increase work efficiency.

Roche is an equal opportunity employer. We care about inclusion in terms of gender, age, race, skin colour, nationality, religion, marital status, sexual orientation, background, physical or mental disabilities and on every other grounds. Applying for our position, we assure you that we will assess your application solely on the basis of your competencies.

Who we are

At Roche, more than 100,000 people across 100 countries are pushing back the frontiers of healthcare. Working together, we\xe2\x80\x99ve become one of the world\xe2\x80\x99s leading research-focused healthcare groups. Our success is built on innovation, curiosity and diversity.

The Roche Services & Solutions as well as People Support Solutions organisations located in Kuala Lumpur provide end-to-end business solutions for Finance, Procurement, IT, Communications, People & Culture (Human Resources) and beyond to our Roche colleagues across the APAC region. Today Roche employs altogether around 1100 employees in Malaysia.

Roche is an Equal Opportunity Employer.

Roche