Application Security & Access Control Operations Lead - Finance & Administration
Used Tools & Technologies
Not specified
Required Skills & Competences
Tag name is followed by "@" symbol and proficiency level value.
About proficiency levels:
- 1-2 — basic awareness. Minimal hands-on experience, and a rudimentary understanding of the technology's purpose;
- 3-6 — daily use. Comfortable and regular usage, capable of handling common tasks and challenges related to the technology;
- 7-9 — you are an expert, you can teach others, you know all the pitfalls and tricks;
- 10 — exceptional knowledge, comprehensive understanding, and adeptness in all aspects of the technology, including advanced problem-solving. Think twice before claiming or demanding such level.
Security @ 4
Project Management @ 4
Oracle @ 4
Audit @ 7
Compliance @ 4
- 1-2 — basic awareness. Minimal hands-on experience, and a rudimentary understanding of the technology's purpose;
- 3-6 — daily use. Comfortable and regular usage, capable of handling common tasks and challenges related to the technology;
- 7-9 — you are an expert, you can teach others, you know all the pitfalls and tricks;
- 10 — exceptional knowledge, comprehensive understanding, and adeptness in all aspects of the technology, including advanced problem-solving. Think twice before claiming or demanding such level.
Details
The energy of a newsroom, the pace of a trading floor, the buzz of a recent tech breakthrough; we work hard, and we work fast - while keeping up the quality and accuracy we're known for. Our culture is wide open, just like our spaces. We bring out the best in each other through collaboration. Through our countless volunteer projects, we also help network with the communities around us, too. You can do amazing work here. Work you couldn't do anywhere else.
Team
The Finance Application Security & Access Control team is responsible for governing user access across the Finance application landscape, ensuring the right users have the right access at the right time. The team manages provisioning, access reviews, Segregation of Duties (SoD), privileged access, and compliance controls to protect financial data and support regulatory requirements.
Role overview
As the Finance Application Security & Access Control Lead, you will be responsible for driving and governing access management processes across SAP, Oracle EPM, and cloud-based Finance applications. You will help strengthen the control environment by improving access governance practices, managing risk, and identifying opportunities to modernize the security and provisioning landscape.
Responsibilities
- Drive the technology roadmap for access governance and provisioning, evaluating new tools and capabilities to improve security, compliance, and operational efficiency
- Govern user provisioning and lifecycle management processes across Finance applications
- Lead access governance activities including user access reviews, role recertifications, and privileged access reviews
- Manage Segregation of Duties (SoD) risks, mitigation controls, and remediation efforts
- Govern Firefighter/Emergency Access Management processes and monitoring
- Oversee privileged and administrative access monitoring across cloud and on-prem applications
- Partner with Finance, Technology, Risk, and Audit teams to maintain a strong and audit-ready control environment
- Drive continuous improvement of security and access control standards across the Finance landscape
Requirements
- 10+ years of experience in IAM, Application Security, Access Governance, or ERP Security
- Strong experience with SAP and/or Oracle security models
- Hands-on experience with SAP GRC Access Control, including SoD analysis, access requests, and emergency access management
- Expertise in RBAC, role provisioning, user access reviews, and recertification processes
- Experience implementing and governing cloud application provisioning frameworks
- Experience supporting SOX compliance, audit activities, and access-related controls
- Strong analytical and risk assessment skills with the ability to identify and remediate control gaps
Nice to have
- Experience with Pathlock, Saviynt, or similar IAM/GRC platforms
- Experience supporting SAP BDC security and access controls
- Exposure to multi-platform access governance across SAP, Oracle, and SaaS applications
- Familiarity with privileged access management and continuous control monitoring solutions
- Experience in Project Management
Personal qualities
- A fresh perspective and willingness to challenge existing processes and controls
- A passion for simplifying and modernizing access governance through automation and technology
- Strong stakeholder management skills with the ability to influence across business and technology teams
- A continuous improvement mindset focused on balancing security, compliance, and user experience
Compensation & Benefits
Salary Range = 200,000 - 240,000 USD Annual + Benefits + Bonus
The referenced salary range is based on the Company's good faith belief at the time of posting. Actual compensation may vary based on factors such as geographic location, work experience, market conditions, education/training and skill level.
We offer one of the most comprehensive and generous benefits plans available and offer a range of total rewards that may include merit increases, incentive compensation (exempt roles only), paid holidays, paid time off, medical, dental, vision, short and long term disability benefits, 401(k) +match, life insurance, and various wellness programs, among others. The Company does not provide benefits directly to contingent workers/contractors and interns.