Manager
The Manager, Enterprise Access Controls oversees the Enterprise Access Controls team. This team is responsible for building and maintaining the proper security controls around applications and information assets, including all critical applications. This position will be working very closely with the WW Compliance, and various project teams around SAP and Active Directory security policies. This is a hands-on, technical position with visibility throughout IT and critical application business units.
This position will be working closely with the Information Security Risk Management team.
Responsibilities to include, but not limited to:
* Ensure that the proper application and system security controls and processes are implemented around user access and roles for critical and sensitive business infrastructure
* Oversight and review of all access control related processes and workflows at the network, system, database, and application layers
* In depth security involvement with SAP and Active Directory user / role creation, management, and approval workflows
* Work closely with the Compliance team using the SAP GRC Application and SAP Authorization processes and troubleshooting efforts
* Build and maintain operational run books for offshore team members. Focus on continual process improvements and shift left activities
* Build and maintain security reporting capabilities, including alerting and response procedures
* Ability to independently identify system process security weaknesses, recommend solutions, and track change implementations
* Supervisory responsibilities include managing a team of employees and contractors, domestically and internationally. Conduct performance reviews, set goals and measure progress. Maintain work schedules, on-call calendars, and vacation time to ensure proper team coverage. Conduct interviews and fill open positions as needed.