Moderna is looking to solve the problem of driving access-management procedures, periodic access reviews, and audit readiness across their global SAP landscape, while also architecting secure, compliant solutions for S/4HANA and adjacent platforms.
Requirements
- 7-8 years of SAP Security & GRC (v10.0 +) experience, including S/4HANA and Fiori-role design
- Deep knowledge of access-management principles, SOD analysis, SOX/GxP compliance, and ITGCs
- Hands-on expertise with SAP GRC 12.0 modules (ARM, EAM, ARA) and CHARM processes in Solution Manager
- Implementation experience with GRC, supporting security design for Greenfield implementations, upgrades and similar projects
- Applications/Solution experience with Security and GRC implementation for SAP Ariba, MDG, GTS, BTP, ATTP
- SAP certifications in Security and/or GRC Access Control
- Global implementation or multi-landscape experience
Responsibilities
- Define and maintain SAP security guidelines, operating procedures, and SoD framework
- Own SOX, GxP, and ITGC controls; coordinate testing and remediation
- Drive periodic user-access reviews and license optimization initiatives
- Design, build, and transport security roles across SAP landscapes; leverage CHARM workflows
- Translate business requirements into technical role designs and custom GRC rules
- Set security and GRC architecture standards for ongoing SAP projects and upgrades
- Evaluate risk and control impacts of role changes; provide guidance to project teams
Other
- Bachelor’s degree or Equivalent
- Outstanding communication skills and aptitude for collaborating with technical and business stakeholders
- Strong troubleshooting skills, attention to detail, and commitment to service-level excellence
- Ability to work in a 70/30 work model with 70% in-office presence
- U.S. person (citizen, permanent resident, asylee, or refugee) due to export control laws
