Specialist, SAP Security

20600 Emerald Parkway, Cleveland, Ohio 44135 United States of America Why Oatey? Since 1916, Oatey has provided reliable, high-quality products for the residential and commercial plumbing industries, with a commitment to delivering quality, building trust and improving lives. Today, Oatey operates a comprehensive manufacturing and distribution network comprised of industry leading family of companies: Oatey, Cherne, Keeney, Quick Drain, Hercules, Dearborn, Oatey Canada, William H. Harvey, Masters, Contact, Belanger, Lansas, and Durgo. At Oatey, we're doing big things and by joining us, you'll have the chance to do big things too. You can build a strong career in an innovative, inclusive, high-performance environment, with the confidence that your company cares about you, our customers and our world. Ready to make an impact in a place where you matter? - Position Summary: The SAP Security Specialist is responsible for the design, governance, and ongoing management of SAP security and access controls within Oateys SAP S/4HANA environment. This role serves as an individual contributor, owning Business Role Management, SAP GRC Access Control, and user access governance to ensure secure, compliant, and business-aligned SAP solutions. The position partners closely with business, functional, and technical teams to translate job responsibilities into least-privilege role designs, support audit and compliance requirements, and continuously improve SAP security maturity. Position Responsibilities: Responsible for maintaining business blueprint and design documents that support Security and GRC activities. Administer SAP GRC Access Control suite of programs, including user provisioning, segregation of duty management, emergency access, role management and reporting. Design, implement, and govern business roles aligned to job functions and business processes, including role lifecycle management, ownership, and periodic review. Partner with business and functional stakeholders to translate job responsibilities into compliant, least-privilege SAP role designs. Administer GRC User Access Management Process to monitor key business processes. Responsible for leading SAP GRC maintenance, user role/account management maturity and evolution. Develop InfoSec capabilities while developing and maintaining security standards, policies, procedures and processes while ensuring that company systems are fully compliant with all applicable regulatory requirements and privacy laws. Maintain SAP S/4HANA & FIORI Security based solutions. Coordinating with various teams for administration of Security and GRC tasks. Assist functional and technical team with solving critical issues, as it relates to Security or GRC. Assist team in administering heterogenous security tool landscape. Integrate SAP security and GRC systems with other security tools and platforms to orchestrate end-to-end security processes and improve interoperability. Knowledge and Experience: 5+ Years SAP Security and GRC experience. Good understanding of the SAP authorization concept and the role-based access control model. Ability to set up roles and administer them to users (including derived and composite roles). Hands-on experience with Business Role Management in SAP, including job-based role modeling and role lifecycle governance. Experience in SAP GRC Access Controls Suite / Process Controls Suite. Experience with SAP GRC 12 including reporting capabilities and S4 HANA. Experience with implementation of mitigation controls for SOD violations and remediation. Multiple years experience in SAP system audit and risk management and able to effectively strategize control testing and implementation. 5 years in relevant security governance, risk and compliance roles focused on executing SAP security and associated identity and access management function. Experience in risk assessments and audits related to all products and functions e.g., HANA, Basis, Fiori etc. implemented as part of the SAP technology portfolio. Strong skills in SAP Security Design Configuration and Administration. Experience with automation technologies such as scripting languages, APIs, and workflow automation tools. Education and Certification: Bachelor of Science degree in Computer Science, Engineering, or a related subject, or equivalent relevant work experience. #LI-SV1 #LI-Hybrid Compensation Range for the Position: $86,418.00 - $112,343.50 - $138,269.00 USD Target Cash Profit Sharing for the Position: 12.00% Offer amount determined by experience and review of internal talent. Oatey Total Rewards Generous paid time off programs and paid company holidays to support flexibility and work-life balance Annual Discretionary Cash Profit Sharing Immediate eligibility and vesting in 401(k), including 100% company match, up to 5% of eligible compensation Market leading health insurance including medical, dental, vision, and life insurance offerings for associates and qualified dependents Significant company contribution to Health Savings Account with a High Deductible Health Plan (HDHP) Short-Term and Long-Term Disability income protection coverage at no cost to associates Paid Maternity and Paid Parental Leave Tuition reimbursement A strong set of complementary resources to support associate well-being, including resource groups, EAP, and dedicated mental health support. Equal Opportunity Employer The Oatey family of companies are an equal opportunity employer committed to Diversity, Equity, and Inclusion. We recruit, employ, promote, and offer competitive pay for all jobs without regard to race, color, creed, religion, sex, age, national origin, disability, sexual orientation, or any other characteristic protected by law. WORKING AT OATEY We value our associates and provide opportunities for growth. Oatey is a collaborative, diverse workplace attracting the brightest minds and creative thinkers in our industry. We constantly challenge associates to come up with new ideas and reward them for their efforts. As a result, many of our associates choose to stay and build long term careers at Oatey. http://oatey.com/careers