EY MST - GRC Analyst - Senior Associate in Wrocław, Poland

MST - GRC Analyst - Senior Associate

Core Business Services

Requisition # WRO001T5

Post Date Sep 25, 2018

EY Global Delivery Services means 29.500 specialists providing globally IT, HR, finance, project management and strategic business services to EY member firms. In addition we deliver support and solutions to clients from all over the world.

As an organization jointly owned by the business and IT, the Mercury Support Team (MST) is a centralized, global organization that provides operational support for our integrated, SAP-centric platform (Mercury). As the solution continues to be deployed globally, the MST partners with the Mercury Program to support countries as they come online. Over time the team will play an integral governance role in the global solution. We will continue to work closely with the business to enable the full benefit and value to be realized from the investment and to set the future direction and technology road map.

The opportunity

The SAP GRC Analyst supports the GRC Leader in managing and ensuring adherence to the access controls and process controls framework for the Mercury Support Team (MST). The GRC Analyst works to define requirements for role / access changes and allocations. The GRC Analyst ensures that such requests assessed for impact against the Segregation of Duties and process controls framework by the relevant functional and technical teams. In addition, the GRC Analyst supports MST’s adherence to the Firm’s internal control framework, including participation in internal and external audits.


  • Work closely with the Functional Teams and Technical Teams as well as the business and off shore support teams to ensure Segregation of Duties (SOD) and critical actions are understood and appropriately built into the roles.

  • Ensures that application security standards are well integrated into systems by incorporating SOD testing into the security process

  • Monitors and maintains SAP application security policies, standards, guidelines, and procedures that are in alignment with the corporate strategic plan and supports the project team during the implementation

  • Responsible for implementation and integration of SAP GRC - SOD and other post go live sustainment tools

  • Work with the business managers in refining risk and mitigating controls

  • Support / educate business areas on risks and proposed mitigating controls

  • Understand compliance related issues as it relates to SAP roles

Requirements :

  • Bachelor’s degree in computer science, finance or a related discipline, or equivalent work experience

  • 3+ years of experience in service delivery or internal audit or related services

  • Understanding of SAP Security Administration

  • Experienced working with culturally diverse outsourced on/offshore staff for Project work and Production Support (Run) service delivery business process and risk and control background – candidate would be expected to support existing GRC solution.

  • Excellent problem solving and decision making skills

  • Proven track record of success as a team member

  • Ability to manage multiple requests and escalate issues as they arise

  • Operate in a dynamic, fast moving and changing environment

  • Operate in a global matrix environment