EY MST - GRC Analyst - Senior Associate in Wrocław, Poland
MST - GRC Analyst - Senior Associate
Core Business Services
Requisition # WRO001T5
Post Date Sep 25, 2018
EY Global Delivery Services means 29.500 specialists providing globally IT, HR, finance, project management and strategic business services to EY member firms. In addition we deliver support and solutions to clients from all over the world.
As an organization jointly owned by the business and IT, the Mercury Support Team (MST) is a centralized, global organization that provides operational support for our integrated, SAP-centric platform (Mercury). As the solution continues to be deployed globally, the MST partners with the Mercury Program to support countries as they come online. Over time the team will play an integral governance role in the global solution. We will continue to work closely with the business to enable the full benefit and value to be realized from the investment and to set the future direction and technology road map.
The SAP GRC Analyst supports the GRC Leader in managing and ensuring adherence to the access controls and process controls framework for the Mercury Support Team (MST). The GRC Analyst works to define requirements for role / access changes and allocations. The GRC Analyst ensures that such requests assessed for impact against the Segregation of Duties and process controls framework by the relevant functional and technical teams. In addition, the GRC Analyst supports MST’s adherence to the Firm’s internal control framework, including participation in internal and external audits.
Work closely with the Functional Teams and Technical Teams as well as the business and off shore support teams to ensure Segregation of Duties (SOD) and critical actions are understood and appropriately built into the roles.
Ensures that application security standards are well integrated into systems by incorporating SOD testing into the security process
Monitors and maintains SAP application security policies, standards, guidelines, and procedures that are in alignment with the corporate strategic plan and supports the project team during the implementation
Responsible for implementation and integration of SAP GRC - SOD and other post go live sustainment tools
Work with the business managers in refining risk and mitigating controls
Support / educate business areas on risks and proposed mitigating controls
Understand compliance related issues as it relates to SAP roles
Bachelor’s degree in computer science, finance or a related discipline, or equivalent work experience
3+ years of experience in service delivery or internal audit or related services
Understanding of SAP Security Administration
Experienced working with culturally diverse outsourced on/offshore staff for Project work and Production Support (Run) service delivery business process and risk and control background – candidate would be expected to support existing GRC solution.
Excellent problem solving and decision making skills
Proven track record of success as a team member
Ability to manage multiple requests and escalate issues as they arise
Operate in a dynamic, fast moving and changing environment
Operate in a global matrix environment