Head-SAP Global Access & Control

Pune, Maharashtra
  1. Full Time
  2. Finance
000000186480
Posting date:23 Jun, 2017

Role Title: Head - SAP Global Access & Control


Role Purpose:

Senior management accountability for the Global SAP Global Access & Control team. The SAP Global Access and Control team provides in-depth user access expertise for global SAP and numerous other systems in the SAP landscape including role design, user provisioning and segregation of duties management.


The role is responsible for all role design and ongoing role maintenance for the SAP systems, global user provisioning, the global Segregation of Duties rule set and business ownership of the SAP GRC tool, including solution extensions like Access Violation Management. This manager will work in close cooperation with our Global Process Owners to define the best possible access for those operating the process and eliminate or mitigate the identified risk for the global SAP processes. Furthermore they will co-operate extensively with IT Security, the owners of the corporate identity management approach and ensure proper integrated access processes.


Act as SPOC for Internal Audit, Global SOX and external audit to ensure compliance of the GRC solutions incl. Segregation of Duties in line with Vodafone policy and S404 regulations. Own some key global controls such as Full User Access Review.  


Key Accountabilities:

o                     Define the global SAP (EVO) SoD Business Risks (SoD rule set) and related mitigating controls and ensure compliance with both.

o                     Ensure that SAP GRC is set up in line with the SoD rule-set in line with Vodafone policies and S404 regulations.

o                     Ensure that the SOD rule set is maintained in line with SAP role changes, changes to the Core Business Model and changes to the core SAP solution

o                     Develop and implement SAP system roles

o                     Manage global SAP user provisioning

o                     Governance of Critical Transactions list and reporting

o                     Manage Business and Technical Fire-fighter access

o                     Work in close cooperation with the GPOs to define the best possible access for             the people operating the process and eliminate or mitigate the identified risk for the global SAP processes.

o                     Build strong relations with the GFCC (Group Financial Controls Compliance) team and Internal Audit to ensure compliance requirements for SoD and SAP system access are properly translated and implemented.

o                     Develop and maintain the global SAP role design standards

o                     Develop and maintain all SAP global access and control policies for the group

o                     Define and maintain the Segregation of Duties rule set

o                     Provide SoD leadership guidance to the implementation teams and SI partner in the SAP Authorization design

o                     Manage a multi-location team of role designers and compliance staff

o                     Ensure team capacity is properly managed to ramp up or down according to system change plans

                     Improve overall role design architecture for global systems within SAP landscape

                     Ensure a good integration of the SoD approach in overall robust Access Control Framework together with IT

                     Drive improvement in SOD mitigating controls monitoring, through increased automation and standardised reporting of control effectiveness.

                     Devise a future orientated rolling roadmap for SAP access, roles and segregation of duties which takes full advantage of new technological developments

                     Deep understanding of Vodafone Policy manual, S404 Risk and Controls

                     In depth knowledge of SAP Core Business Model processes

                     Understanding of SAP Authorizations

                     Knowledge of SAP GRC Tool and extensions including User Access Review

                     Experience of complex automated triggers for large scale user bases > 50,000 users

                     Experience of a hybrid identity and access management architecture

                     Manage the SAP User Access Validation reporting and dashboards

                     Manage the SAP User Access and risk reporting and dashboards

                     Incident reporting on risk violations

                     Communications with Auditors, both internal and external and senior stakeholders

                     Preparation of detailed papers and presentations to senior management on all topics related to SAP global access and control


Life at Vodafone

Raniya's Work Experience

James "Vodafone changed my life"

James "Vodafone changed my life"