Security Specialist - SAP

Information Technology

Job Reference

220001DB

Function

Information Technology

Category

Business Professionals

Location

Warsaw GSC, Poland

Schedule

Full-time

The role

THE OPPORTUNITY

The SAP Platform Security Lead is responsible for ensuring that the SAP Platforms meets the Infrastructure / Cloud and Application Security policy requirements.  The SAP Platform Security Lead will oversee and deliver the Security Strategy of the SAP S4HANA platform and integrated interfaces for DLA Pipers Finance and HR Systems.

  • Ensure implementation of latest security solutions/standards in the SAP landscape
  • Ensure proactive security monitoring and immediate remediation of identified issues / threats / vulnerabilities in the SAP landscape
  • Ensure compliance with security controls in the SAP landscape
  • Stakeholder management for:

o    Security assessment of new patches/Releases/upgrades/integrations
o    Exception handling
o    Reporting and improvement

About the Team

The IT SAP Platform is a new service offering within IT to support the new SAP platforms covering HR and Finance Services.  The team has been formed to cover end to end service levels to the business services within DLA Piper and is supported by an underpinning 3rd party to provide Level 3 Application and platform expertise.  The IT SAP Platform works within IT and collaborates with other teams within IT and Finance Systems to ensure that ITIL best practice is followed and that consistent resolutions are delivered to the business. 

MAIN DUTIES AND RESPONSIBILITIES

Responsibilities include adhering to Information Security best practices and ITIL best practices: 

InfoSec Governance Duties

  • Work with the DLA Piper Info Sec Team in alignment of the security strategy/architecture for SAP application landscape in line with platform and IT service vision and strategy
  • Support the compliance across the services teams are adopted and followed with the right levels of controls in place
  • Work with the DLA Piper Info Sec Team in identifying security improvement initiatives in the SAP landscape. Incorporate the latest security trends/solutions identified in the market
  • Manage security and related risks and ensure mitigation plans are in place that have been identified across the SAP Landscape and feed into the Info Sec risk register
  • Support the annual audits performed and provide necessary detailed structured data and reporting.

Security Operations 

  • Ensure adherence to security policy, processes and procedures in the SAP landscape
  • Define/implement security controls in the SAP landscape to enforce defined security policy. Monitor and report on compliance with security policy and controls
  • Perform security assessments with respect to SAP upgrades, new releases and integrations with other systems
  • Report on system security health to the Platform Service Managers
  • Review and approve roles/personas and parameters of roles in line with segregation of duties. Manage exceptions to role-access mapping
  • Manage/remediate security related risks in the SAP environment
  • Understand security issues/vulnerabilities from the SAP platform support vendors and identify/implement mitigations for the same
  • Handle all security related exceptions and guide SAP teams on resolving the same
  • Manage Security Release roadmap in the SAP environment

ABOUT YOU

The role holder will have experience of working on large-scale international business services, matrix service organisations or Enterprise / global services preferably with experience of working on programmes, security services that cover industry best practice in security and compliance and have:

Basic Requirements

  • Experience in at least 4-6 implementation, upgrade or migration projects for SAP security/GRC
  • 3+ years experience on SAP Security for at least 2 SAP applications
  • Experience in the design and development of SAP security roles, GRC Admin Support, Identity & Access Management Admin support, Batch Monitoring
  • AP Certified Technology Associate - SAP System Security and Authorizations
  • SAP Certified Technology Professional - System Security Architect
  • Bachelor's degree in Computer Science or Information Technology or equivalent education
  • Proven experience of SAP or ERP Service Support – ideally within the legal sector and/or professional services or global scale environment. 
  • Self-starter who thrives in an ever-changing, fast-paced business environment
  • Agile and DevOps mindset – Fluent in both; promoting & demonstrating best practises; leading the way 
  • Experience of working in a matrix service organisation with multiple stakeholders
  • Excellent verbal and written communication skills

ABOUT US

DLA Piper is a global law firm with lawyers located in more than 40 countries throughout the Americas, Europe, the Middle East, Africa and Asia Pacific. Our global reach ensures that we can help businesses with their legal needs anywhere in the world. We strive to be the leading global business law firm by delivering quality, service excellence and value to our clients and offering practical and innovative legal solutions to help them succeed. Our clients range from multinational, Global 1000, and Fortune 500 enterprises to emerging companies developing industry-leading technologies, as well as government and public sector bodies.

OUR VALUES

In everything we do connected with our People, our Clients and our Communities, we live by these values:

  • Be Supportive – we are compassionate and inclusive, valuing diversity and acting thoughtfully
  • Be Collaborative - we are proactive, passionate team players investing in our relationships
  • Be Bold - we are fearless and inquisitive, challenging ourselves to think big and find creative new solutions
  • Be Exceptional - we are strategic and driven, exceeding standards and expectations

DIVERSITY AND INCLUSION

At DLA Piper, diversity and inclusion underpins how we live our values and everything we do.  We believe that everyone has a voice, and that everyone’s voice counts. We know that the rich diversity across our firm makes us stronger, more innovative and creative, which helps us to better serve our clients and communities. We are committed to providing an inclusive working environment and culture across our global firm, where everyone can bring their authentic self to work.

Diversity of perspective, thought, background and culture combine to make us the leading global law firm; that’s why we actively seek to build balanced teams. We welcome the unique contribution that you will bring to our firm and actively encourage applications from all talented people – however your talent is packaged, whatever your background or circumstance and regardless of how you identify.

We support anyone with a disability or long term health condition to ensure they have the opportunity to perform at their best. If you have not done so already, please let us know if you require any support so we can make the right adjustments and considerations should they be required.

AGILE WORKING

We recognise that people have responsibilities and interests outside of their career and that as a business, we all benefit from working flexibly. That's why we are open to discussing with candidates the different ways in which we are able to support requests for agile working arrangements.

PRE-ENGAGEMENT SCREENING

In the event that we make an offer to you, and where local legislation permits, we will conduct pre-engagement screening checks that may include but are not limited to your professional and academic qualifications, your eligibility to work in the relevant jurisdiction, any criminal records, your financial stability and references from previous employers.