Lead Analyst, SAP GRC Security

Now that you've found the job description, what's next?

At VF, we strive to foster a culture of belonging based on respect, connection, openness, and authenticity. As a purpose-led, performance-driven company, we are committed to inclusion, diversity, equity, and action. So, before we get to the job details, take a minute to learn a little more about us - our values and our culture - visit VF Careers (~~~) or ~~~ .

What will you do?

A day in the life of a Lead Analyst, SAP GRC Security at VF looks a little like this.

As VF Corporation continues to develop and mature its SAP Governance, Risk, and Compliance capabilities, we are creating the position of Lead Analyst, SAP GRC Security, which will report into the Senior Manager, SAP GRC Security. This position will have specific responsibilities for management of VF's Global SAP GRC environment and be responsible for partnering with the Senior Manager, SAP GRC Security and the Senior Manager, SAP Compliance to maintain the effective operation of VF's SAP GRC system.

Let's break down that day in the life a bit more.

• Configure and maintain GRC 12 Access Request Management (ARM), Access Risk Analysis (ARA), Business Role Management (BRM) and Emergency Access Management (EAM) functionality.

• Configure and maintain GRC 12 UAR functionality and support quarterly access reviews leading to successful completion.

• Lead and Manage complex SAP GRC or SAP Security projects and support global SAP initiatives with SAP GRC or Security needs.

• Day to day technical support and resolution of GRC issues working with both SAP Support and SAP BASIS teams.

• Provide support from the SAP GRC or security perspective for projects including new SAP system implementations, implementation of new capabilities affecting SAP GRC or Security, or new compliance initiatives.

• Assist with application-level operational support for SAP GRC (not including basis level support) Access Request Management, Business Role Manager, Access Risk Analysis, and Emergency Access Request modules.

• Partner with SAP Compliance to configure and maintain the GRC ruleset and related Risks, Functions, and Mitigating Controls.

• Analyze and remediate GRC SOD Risks at both user level and role level to resolve and avoid financial and operational risks.

• Evaluate OSS Notes, upgrades, etc. and provide impact analysis, risks, and recommendations for implementation.

• Confirm functionality post OSS note or upgrade installation.

• Configure and apply GRC mitigating controls for approved SOD and Privileged access risks.

• Support Audit and Compliance teams by providing them with reports and analysis needed for external and internal audits or testing.

• Lead testing and validation efforts to ensure GRC Support Pack (SP) levels are implemented and are current to VF standards.

• Lead testing and validation efforts associated with connected system SAP version upgrades and enhancements.

• Actively pursue Process improvement opportunities to introduce new capabilities and improve business performance with a focus on an "automation first" strategy.

• Design, implement, and support SAP access security requirements and role design to secure the GRC environment.

• Lead and support the integration of new SAP environments into the GRC landscape.

• Work with the Business Process Owners and other security teams to restrict sensitive transactions and security authorizations and ensured segregation of duties (SOD) and adherence to the global SAP security strategy across all business areas.

• Provide support and ensure that all project activity involving the SAP landscape follows established global standards as it relates to SAP GRC and Security at VF.

• Mentor and train junior staff on technical advances as well as current and new features of the GRC platform.

What do you need to succeed?

We all have unique skills that we bring to work and celebrate every day. For this role, there are foundation skills you'll need to succeed and excel. Additionally, while formal education in a related field is great to have, we are most interested in your 7+ years of experience and professional achievements.

Years of Related Professional Experience: 7 Educational/ Position Requirements:

• Bachelor's degree in Technology or related discipline or relevant years of experience.

• 7+ years of experience with SAP security, including expert knowledge of SAP GRC Access Control and its component modules (ARM, BRM, EAM, UAR and ARA)

• Expert knowledge of SAP security as it applies to different SAP products (e.g., SAP S/4, SAP HANA, SAP CAR, SAP MDG, SAP Solman, SAP Fiori)

• Experience with the creation and management of SAP transports with the use of the SAP Change and Risk Management (ChaRM) module of Solution Manager.

• SAP certification related to SAP GRC or SAP security a plus.

• Proven understanding of IT SOX controls, control operations, SOX deficiency management and impacts to overall SOX audit.

• Proficiency in Microsoft Office Applications (Word, Excel, PowerPoint, and Visio) as well as Smartsheet.

• Ability to forge close partnerships with DT stakeholders, auditors, and other key business partners.

• Comfortable working with a global team located in the Americas, Asia, and Europe

• Ability to multi-task, prioritize and work independently.

• Quick learner with excellent interpersonal and time management skills and is a team player who is highly motivated and detail oriented.

• Excellent verbal and written communications skills

• High level of energy and commitment, stress tolerance

• Demonstrated flexibility and creativity.

• Strong problem-solving skills

• Ability to prepare and articulate objective, defensible, fact-based information.

Hiring Range :

$104,000.00 USD - $130,000.00 USD annually

Incentive Potential : This position is eligible for additional compensation awards that may include an annual incentive plan, sales incentive, or commission potential. Specific details of the additional compensation eligibility for this position will be provided during the recruiting and interview process.

Benefits at VF Corporation : You can review a general overview of each benefit program offered, including this year's medical plan rates on ~~~ and by clicking Looking to Join VF? Detailed information on your benefits will be provided during the hiring process.

P lease note, our hiring ranges are determined and built from market pay data. In determining the specific compensation for this position, we comply with all local, state, and federal laws.

At VF, we value a diverse, inclusive workforce and we provide equal employment opportunity for all applicants and employees. All qualified applicants for employment will be considered without regard to an individual's race, color, sex, gender identity, gender expression, religion, age, national origin or ancestry, citizenship, physical or mental disability, medical condition, family care status, marital status, domestic partner status, sexual orientation, genetic information, military or veteran status, or any other basis protected by federal, state or local laws. If you are unable to submit your application because of incompatible assistive technology or a disability, please contact us at ~~~ . VF will reasonably accommodate qualified individuals with disabilities to the extent required by applicable law.

Pursuant to all applicable local Fair Chance Ordinance requirements, including but not limited to the San Francisco Fair Chance Ordinance, VF will consider for employment qualified applicants with arrest and conviction records.

VF Diversity Vision Statement VF is committed to creating an inclusive environment that welcomes and values the differences among all of our associates, customers, suppliers and the communities in which we live and conduct business. The continued success and growth of VF is enhanced through initiatives that promote diversity throughout VF around the ~~~ is an equal employment opportunity/ affirmative action employer of minorities, females, protected veterans and the disabled. VF is committed to providing equal opportunities in employment, and treating our VF associates and VF applicants without discrimination on the basis of their race, color, gender, age, national origin, religion, sexual orientation, gender identity or expression, marital status, citizenship, disability, protected veteran status, HIV/AIDS status, or any other legally protected factor.