SAP Access Management Lead
Wella Company
full-time
Posted on:
Location Type: Hybrid
Location: Warsaw • 🇵🇱 Poland
Visit company websiteJob Level
Senior
Tech Stack
Cyber SecuritySwift
About the role
- Establish and own the SAP access management target operating model (business + IT)
- Define and operate global SoD ruleset, partnering with access/risk owners to mitigate risks
- Own all SAP access management controls, including SOX compliance
- Develop SAP security and access management strategies, roadmaps, and transformation initiatives
- Drive continuous service improvements in line with best practice and regulatory changes
- Own and enforce SAP access management policies, standards, and procedures
- Ensure quarterly access recertifications, joiner/mover/leaver processes, and mitigating controls are executed
- Monitor SAP license consumption and drive corrective actions
- Ensure security controls are embedded in new and upgraded SAP applications
- Act as point of contact for audits, owning remediation of findings
- Oversee end-to-end provisioning, de-provisioning, and access lifecycle processes
- Ensure automation, efficiency, and transparency in access workflows
- Manage BAU vendor services for SAP access management, ensuring SLAs and performance targets are met
- Oversee access-related incidents and breaches, ensuring swift resolution
- Lead SAP security transformation initiatives in collaboration with Audit and Cybersecurity
- Build repeatable processes, methods, and tools for access management across Wella
- Ensure complete and current documentation for all SAP security processes and controls
- Provide strategic leadership, mentoring, and guidance to SAP access/security teams
- Collaborate with Cybersecurity, Basis, Enterprise Architecture, and business stakeholders
- Communicate complex technical concepts to non-technical stakeholders
- Drive change and ensure alignment across diverse global teams
Requirements
- Deep knowledge of SAP roles, authorizations, and access concepts
- Expertise in SoD frameworks, access certification, and GRC tools (SAP GRC, SailPoint ARM)
- Strong understanding of identity governance, compliance, and regulatory requirements (SOX, GDPR, ISO)
- Hands-on experience with ECC and S/4HANA SAP security
- Proven leadership in vendor management, audits, and change delivery
- Excellent problem-solving, stakeholder engagement, and communication skills
- Bachelor’s degree in Computer Science, Information Systems, or related field
- SAP Security or GRC certification preferred
- 10+ years in SAP security and access management within global organizations
- Experience implementing access control in regulated industries
- Technical expertise in SAP GRC, SailPoint ARM, and SAP core security
- Familiarity with infrastructure security and modern identity governance tools
Benefits
- Hybrid work arrangement
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
SAP access managementSoD frameworksaccess certificationidentity governanceSAP securityECCS/4HANASAP GRCSailPoint ARMcompliance
Soft skills
leadershipproblem-solvingstakeholder engagementcommunicationmentoringguidancecollaborationchange managementservice improvementtransparency
Certifications
SAP Security certificationGRC certificationBachelor's degree in Computer ScienceBachelor's degree in Information Systems