Job ID: 480348

Exempt

Oldcastle Infrastructure™, a CRH company, is the leading provider of utility infrastructure solutions for the water, energy, and communications markets throughout North America. We’re more than just a manufacturer of precast concrete, polymer concrete, or plastic products. We’re a trusted and strategic partner to engineers, contractors, distributors, specifiers, and more. With our network of more than 80 manufacturing facilities and more than 4,000 employees, we’re leading the industry with innovation and a safety-first mindset.

Job Description Summary

Oldcastle Infrastructure Inc. (OII) is looking for a SAP Security Architect. He/She will be responsible for architecting, designing, implementing, and supporting SAP Security and in particular SAP GRC Access control modules in a greenfield implementation environment of S4/Hana private cloud. The right candidate is able to architect and design a SAP solution and to follow a pragmatic hands-on approach to put it in place.

This position will report to the Director SAP CoE and will work closely with the SAP functional and technical teams, the IT infrastructure and security teams, and the system integration partner in architecting, designing, implementing, and governing the SAP security framework for a large business process transformation prograbe involving an S/4 Hana implementation. The SAP security architect will also work with the Internal Audit, Risk, and Compliance teams to ensure the internal and external audit requirements are met.

Essential Duties and Responsibilities

Architect, Design, manage, and deploy SAP Security

• 
  Conduct detailed analysis and design sessions with functional teams and business

• Hands-on build and test security roles, resolve defects during test cycles, support UAT, and plan and execute security related cutover activities

• Architect governance processes to provision and administer security roles for SAP and connected applications

• Develop Support Concept and run support and maintenance

• Identify role owners and automate the role and user provisioning processes

• Perform user access review and provide analysis for internal and external auditors as required

• Evaluate business risks associated with security role design, implement appropriate controls to address those risks, and provide recommendations on ways to simplify and streamline the security design

• Monitor, report, and remediate elevated role provisioning to ensure unauthorized access removal for live production

• Ensure role provisioning and user access privileges comply with company security policies and SOX regulation

Implement and support SAP GRC Access control

• 
  Architect, design, build, test, and maintain a centralized GRC rule sets, workflows, and approvers for user provisioning /de-provisioning, authentication/authorization/emergency access, and access recertification based on business needs, industry best practices, and regulatory requirements.

• Implement and maintain a sustainable SOX concept

Lead SAP security project tasks and project members

• 
  Lead an offshore team. Guide resources, assign tasks, and ensure their timely completion

• Determine resource and capacity constraints and escalate issues to management

• Manage all security related project milesontes and tasks, run task lists, assign owners, track completion

• Work closely together with other project groups to stay in synch on common goals

Required Skills/Education

• 
  10+ years of experience in SAP application security.

• 2+ full life cycle SAP S/4 Hana security implementations, including greenfield implementations.

• 2+ GRC access control implentations on S4/Hana.

• Thorough understanding of the latest S4/Hana SAP Authorization concepts.

• Knowledge of information security frameworks, methodologies, policies, standards, and best practices.

• Knowledge of identity and access management tools and processes.

• Thorough understanding of SoX ITGC controls.

• Ability to assess business role requirements, design authorization roles, and manage supporting authorizations.

• Ability to speak to infrastructure-level security concerns and to work with the technical team to ensure such concerns are addressed.

• Ability to provide guidance and direction to SAP technical and non-technical staff as well as Internal Audit key stakeholders on SAP security frameworks and processes.

• Demonstrated experience managing customer-facing, strategic projects as well as Application Development projects.

• Strong conceptual, analytical, problem-solving, troubleshooting, and resolution skills.

• Ability to work in a collaborative team environment with individuals at appropriate levels of the company.

• Bachelor's Degree or equivalent in Computers, Information Technology, or related field.

• Experience leading an offshore team.

• Ability to own and drive work with little guidance.

• Ability to travel to Atlanta one week each month and occasional travel to sites (go-lives, testing, etc.)

Work and Physical Requirements

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job.

• 
  Sitting for extended periods.

• Ability to safely lift up to 50 pounds.

• Ability to travel (overnight) as required based on business needs up to 25%.

• Ability to drive up to 4 hours for onsite services and meetings.

• Must pass the background check, alcohol, and drug testing.

• The position may require work outside of normal business hours in response to critical incidents or business-impacting project deliverables.

• Preferred work location: Oldcastle Infrastructure’s headquarters in Atlanta, GA or Remote in North Amercia.

What CRH Offers You

• 
  Highly competitive base pay
• Comprehensive medical, dental and disability benefits programs
• Group retirement savings program
• Health and wellness programs
• A culture that values opportunity for growth, development, and internal promotion

About CRH

CRH has a long and proud heritage. We are a collection of hundreds of family businesses, regional companies and large enterprises that together form the CRH family. CRH operates in a decentralized, diversified structure that allows you to work in a small company environment while having the career opportunities of large international organization.

If you’re up for a rewarding challenge, we invite you to take the first step and apply today! Once you click apply now, you will be brought to our official employment application. Please complete your online profile and it will be sent to the hiring manager. Our system allows you to view and track your status 24 hours a day. Thank you for your interest!

Oldcastle Infrastructure, a CRH Company, is an Affirmative Action and Equal Opportunity Employer.

EOE/Vet/Disability-If you want to know more, please click on this link.