Enterprise Solutions Sr Analyst

• Management of SAP GRC workflows and master data in compliance with controls. Provide governance and technical assistance to IT teams, control teams and key business users. (Executing actions & Making decisions)
• Facilitate and execute GRC workflow and master data change activities including providing assistance/ guidance to functional/ technical teams
• Define and maintain GRC configuration standards
• Monitor the GRC workflow and master data design to support Sarbanes-Oxley Compliance (SOX), including Segregation of Duties (SOD) and business/ technical sensitive transactions
• Work with SAP Security and SAP Governance team to define GRC solutions and influence role build strategy in line with system capabilities
• Provide recommendations on ways to simplify/ streamline existing processes and controls to gain productivity
• Ensures SOX controls compliance by executing SAP security sector procedures
• Reviews OSS Notes, security patches; implements and tests those patches
• Manages the execution of SAP GRC reporting approach and adoption, including risk assessment processes, continuous monitoring, training and reporting (Providing consultation)
• Participate and drive workshops and team discussions between SAP security and GRC teams
• Integrate security governance within overall control environment and sustain activities with the impacted parties
• Interaction with audit, risk, and control personnel to explain and evaluate the structure and design of GRC processes
• Plan, communicate and coordinate key control (e.g., SOX) activities such as the quarterly related IT application control reporting
• Reinforce correct SAP security and GRC procedures with project teams and third party provider teams
• Participates in security reviews
• Manage internal/ external audit relationships to maintain a positive outlook on the progression of SAP GRC processes (being informed)
• Work with Controls Governance and IT teams to ensure holistic approach is taken to remediate Corporate Audit findings

• Minimum 10+ years of Total experience
• Minimum 5+ years SAP security and 4+ years of GRC experience
• Minimum of 1 full life cycle implementation
• Competent in GRC configurations, Access Controls, BRF+ , Emergency Access Management, Converged solution for cloud
• Good to have GRC 12 experience
• Knowledge of SAP security authorization concept, as well as design and implementation methodology
• Demonstrates ability with SAP security transactions and SAP GRC
• Multiple years of IT system support experience
• Understanding of internal controls, segregation of duties (SOD), sensitive transactions analysis, basic SAP development (e.g.,
• ABAP integration points), SAP modules, SAP Transport Management System, SAP Web Application Server, NetWeaver, HANA)
• Analytical, motivated, and self-confident with communication to business users, IT partners, and managers
• Establish project deliverables and priorities working closely with PMO
• Ensures team success through organizational, functional, and team alignment towards team mission and objectives
• Proficient knowledge in Microsoft office tools including MS Access
• English proficiency required
• Product certification(s) in SAP Security Administration and or SAP GRC
• Information Security certifications such as CISA, CISM, CGEIT, CRISC
• Knowledge of COBIT, IT risk frameworks, and experience with ITIL processes
• Experience in an IT customer facing role; comfort and confidence interacting with various levels of users, including frontline management
• Ability to communicate solutions and impacts to customers and stakeholders
• Ability to excel in an aggressive, change oriented environment
• Ability to support weekend and off-hours activities
• Service oriented attitude

PepsiCo