Sr. SAP GRC Analyst

Sr. SAP GRC Analyst Lennox International - 3.2 Richardson, TX Job Details Full-time 1 hour ago Qualifications Bachelor's degree in management information systems Compliance risk assessment Internal controls Management Information Systems Bachelor's degree in finance SAP Ariba Compliance audits & assessments Data reporting SAP Materials Management Information Systems Scalable systems Security assessment 3 years Finance System maintenance Information security compliance Bachelor's degree System risk assessment (security system operation) Access control implementation Mentoring Scalability SAP GRC Bachelor's degree in accounting Senior level Financial audit support Accounting SAP EWM Full Job Description

WHAT YOU'LL BE DOING

Under limited supervision serve as technical and functional bridge between IT and business partners to support a secure, compliant, and scalable SAP environment. Perform security and compliance assessments and support the ongoing evolution of the SAP GRC (Governance Risk Compliance) environment, ensuring risks are accurately identified, assessed, and mitigated.

Ruleset Governance & Optimization:

Support the GRC Manager on initiatives related to ruleset architecture, Segregation of Duties (SoD) conflicts, and SAP GRC reporting. Lead the ongoing review, maintenance, and enhancement of GRC rulesets to ensure alignment with evolving business processes. Refine ruleset logic at the authorization object and field level to reduce false positives while ensuring complete risk coverage.

Access Control & Risk Mitigation:

Review and adjudicate access requests to determine if requested roles are appropriate while adhering to the principle of least privilege. Perform detailed evaluations of mitigating controls to ensure they are properly designed and effectively mitigate the specific risks they are assigned to cover. Identify and assess access and compliance risks associated with IT projects and system enhancements, ensuring appropriate controls are incorporated.

Audit & Reporting:

Gather and report data to support internal/external auditors and compliance partners.

WHAT WE ARE LOOKING FOR

Requires a Bachelor's degree in management information systems, Accounting/Finance, or a related technical field or an equivalent combination of education and experience. Requires at least 5 years related experience. Requires at least 3 years of direct experience in SAP GRC and/or SAP Security. Strong, hands-on experience with SAP GRC (Access Control). A technical understanding of SAP authorization objects and T-codes related to the EWM, TML, FI, MM, GTS, and HR modules. Ability to analyze complex business systems and identify risks and control weaknesses. Strong interpersonal skills to explain to business owners why a specific access request may be inappropriate and how to remediate the issue. Ability to mentor junior team members and build effective partnerships across IT and business teams. Experience with procurement systems (SAP Ariba) is a plus.