SAP GRC (ITGC)

Ciel HR View all jobs

  • Gujarat
  • Permanent
  • Full-time
  • 1 month ago
ROLE OBJECTIVE: To manage, support SAP GRC Admin function and report periodic ITGC Governance control testing
for Applications and IT Infra Level.Experience -: 3 to 5 YearsLocation : Hazira (Surat) WFO onlySAP Security Skills:
 User Administration (Creating, Maintaining, Deleting User Account & Assigning Roles)
 Extensively used SUIM for User Management
 Tracing missing authorization object using SU53, ST01, RSECADMIN and recommended appreciate roles for end Users
 Authorization Matrix Architecture, Role Design & Structuring for SAP Project Implementation
 Under Risk Analysis and Remediation, performed User & Role analysis to identify existing SOD Violation
 Design and Scenario development for large scale business and go-live support, involves direct communication with customers, building business aligned roles in compliance with regulation compliance for SAP SystemsGRC Skills:
 Creation of connection from Business system to GRC
 Running the risk analysis at User & Role Level
 Creation Mitigation Control
 Repository Sync (Profile, Role & User)
 Creating and assigning Firefighters IDS to Firefighters, owners, and controllers on approval
 Creating Access Control owners for FFID owner/controller, Role/Risk Owner, Mitigation Monitor/approvals
 Activation of BC sets & MSMP workflow
 Worked Admin DelegationMonitoring and Testing:
 Conduct regular control testing, review control evidence, and ensure compliance with established standards.
 Oversee the implementation and execution of ITGC controls for applications.
 Work closely with IT teams and stakeholders to ensure controls are properly designed, documented, and implemented.
 Provide guidance and support in addressing control deficiencies or gaps.
 Address identified control deficiencies and track remediation actions.Compliance and Audit Support:
 Collaborating with internal and external auditors to support ITGC compliance efforts and audits. Ensure maintaining and providing relevant documentation, facilitating control walkthroughs and testing, and addressing audit findings and recommendations.
Incident Response and Remediation:
 Participating in incident response activities related to ITGC control failures or security breaches.
 Investigate incidents, identifying root causes, and developing corrective action plans to prevent recurrence.Documentation and Reporting:
 Ensuring proper documentation of ITGC control activities,
 In case of control failure or improvement needs to fulfil the following tasks: Control design, implementation, testing results, and remediation actions.
 Generating periodic reports for management and stakeholders to communicate the status of ITGC controls, compliance, and any identified issues or riskCollaboration and Stakeholder Management:
 Collaborate with various stakeholders, such as IT teams, internal audit, compliance, and senior management.
 Build and maintain effective relationships with stakeholders to promote a strong control environment.
 Coordinate with different functions to drive control improvements, address concerns, and ensure alignment.DESIRED PROFILE:
 Must have worked as SAP GRC Admin in large scale organization
 Must have handled multiple areas of IT audits, SOX / ICFR / IFC / SOC, IT Financial audits, IT Risk consulting or any other regulatory or Compliance audit
 Good Communication Skills - English Spoken & Written
 Basic MS Office Skills including Word/ExcelInterested candidate can share resumes on

Ciel HR