Description
Job ID: 19575
Job Title: PI COE SAP IT Controls Lead
Division: PepsiCo Corporate
Country: United States of America
State/Province: Illinois
City: Chicago
Relocation Available:
Reg/Temp: Regular
Full Time: Yes
Date Posted: Jul 29 2009
Location: Chicago, IL
No relocation available.
Position Description:
The COE SAP IT Controls Lead will work closely with the COE Technical Teams, Regional Technical teams, local implementation project teams, CSA and Internal Audit. The SAP IT Controls Lead ensures that application security and controls standards are well integrated into global systems, by designing controls around SAP IT Processes in collaboration with several business partners.
This position is responsible for implementing an IT Controls framework for PepsiCo International SAP implementation markets. The SAP IT Controls Lead will utilize tools such as Approva Bizrights and GRC for mitigating SOD violations across the PI markets and provide design recommendations for end user job mapping. This resource will also be responsible for identifying areas of opportunity to leverage Bizrights and GRC to lower sustainment costs and enhance risk protection for SAP implementation markets.
This position is also responsible for developing and training regional technical teams on SAP IT processes, Control Risks and Segregation of Duties. While this position has no direct reports, this individual is responsible for providing knowledge transfer to regional staff and leading the implementation and deployment of SAP IT Controls activities in the international markets.
Key Responsibilities:
Working with the business and IT community:
? Serve as the SAP IT Controls process coordinator for the globe and coordinate SAP IT control activities for the international markets by providing direction and technical assistance to the regional teams. Plan, communicate, and coordinate IT related compliance activities including compliance assessments related to IT security and SOX controls.
? Lead the implementation of the SAP IT Controls framework in international markets and promote compliance to business process controls, IT process controls and Enterprise Security management controls.
? Monitor the SAP environments for Sarbanes-Oxley Compliance, including but not limited to Segregation of Duties and Sensitive transactions. Assist change management and security resources in the international market to mitigate Segregation of Duties violations via implementation of mitigating controls or redesign of SAP jobs.
? Provide input on how access security control techniques should evolve as enhancements to existing functionality occur. Control solutions should balance the associated cost/benefits, practicality and sustainability of the proposed solutions
? Assist in the implementation of a SOD tool such as Bizrights and GRC with the SAP platform and follow established security-monitoring protocols to ensure the Company?s information security policies and technical solutions are maintained at acceptable levels. Follow a routine of security audits of systems based on industry standards, and participate in providing recommendations for corrective actions based on findings.
? Define and maintain PI SAP security standards, processes, policies, and strategies and ensure alignment with PepsiCo corporate strategy.
? Review IT changes that may impact SOX compliance and offers recommendations. Report and investigate non-compliance to management.
? Collaborate with internal and external auditors to prepare SAP security reports and to provide information as requested.
Communication:
? Communicate control requirements within the assigned process team and work together to assure the implementation of well controlled process solutions.
? Keep team and sub-team leads informed of progress and promptly report any delays or significant issues.
? Coach team in use and application of control and security techniques.
Teamwork:
? Train users in IT processes and procedures; train resources in international markets to adapt the global IT framework, and provide assistance during external and internal audits.
? Actively participate in workshops and team discussions.
? Work with team members to ensure adequate design of work stream processes and the incorporation of related controls
? Work with audit, risk, and quality personnel to explain and evaluate the structure and design of control processes
Other:
? Understand and utilize project documentation tools and systems in compliance with project standards.
Job Requirements: Job Qualifications - Competencies:
? Minimum of 3+ years experience in implementing SAP controls or security
? Minimum of 2 full life cycle implementations
? Broad understanding of Sarbanes Oxley compliance and COSO framework. Familiarity with audit, business controls, and segregation of duties is a plus.
? Deep understanding of principles of risk and control processes in general.
? Posses an understanding of SOX specific control attributes including distinctions between controls that are preventive/detective, automated/manual, relevant for fraud, and the SOX assertions that must be covered for financial reporting risks.
? Possess an understanding of SAP configuration settings and their use in designing automated control techniques
? Possess an understanding of how standard and custom reports can be integrated into manual control processes where automated control solutions cannot be established.
? Possess extensive knowledge about the SAP authorization concept and prior experience in role design and SOD mitigation.
? Knowledge of Approva BizRights and SAP?s GRC tool.
? General understanding of the other process areas within the program (e.g. Supply Chain, Finance, Go-To-Market).
Job Qualifications - Behaviors:
? Ability to lead complex design decisions for Technology amongst (often) competing priorities.
? Ability to plan and organize development work and deliverables
? Ability to present and defend design decisions across functional areas.
? Ability to train security resources on control activities and techniques and knowledge transfer
? Possess good decision making skills.
? Be an excellent communicator.
? Be organized and capable of multi-tasking.
? Possess a process focus in the building of security policies and procedures and collaborating with various business partners
Performance Measurements:
? Ability to escalate and continuously highlight open issues in a timely manner
? Ability to turn around questions and issues in a timely manner
? Ability to deploy a global SAP IT Controls framework at international locations implementing SAP
? Ability to support a project team across multiple ERP systems
? Ability to plan and organize development work and deliverables
Details:
Job Id:
17465263
Annual Salary:
Position Type:
Education Level:
No Selection
Experience Level:
No selection
Posted:
1/20/2010 2:49:44 AM
Map
Careers & Community for Talented People with Disabilities