Cybersecurity and Compliance Specialist at MAPFRE responsible for mitigating risks and ensuring data security compliance. Collaborating with internal teams to promote an ethical culture against internal fraud.
About the role
- Lead oversight of access controls and compliance processes for SAP systems at Boeing. Implement risk management solutions and collaborate with cross-functional teams to ensure data integrity.
Responsibilities
- Implement and manage SAP Access Control (AC) Governance, Risk, and Compliance (GRC) solutions and policies to ensure data protection and regulatory adherence
- Design and implement Access Control Policies and Risk Management solutions across SAP systems
- Collaborate with cross-functional teams to maintain system integrity, protect business data and streamline compliance processes
- Partner with internal Information Technology (IT) SOX Program Office to ensure effective SOX Controls are in place, documented in SOX Narratives, and executed periodically
- Understand how SOX Control activity supports the annual SOX process including Design Effectiveness, Operational Effectiveness, Roll Forward testing, recurring Control execution and remediation as necessary
- Utilize common SOX processes and methodologies to participate in internal/external audits
- Provide technical expertise in support of creating sample testing populations and justification for completeness of population specific to their control(s)
- Execute and deliver Automated Controls Testing Tool (ACTT) script results as requested by external auditor
- Provide evidence of control completion in the SOX book of records (AuditBoard)
- Articulate appropriateness of reports used as evidence to include source, validity, and completeness of the report(s)
- Communicate potential and realized control deficiencies
- Participate in root cause analysis of identified deficiencies and take appropriate corrective action plans to remediate
- Design and build SOD Ruleset requirements including Risks, Functions, and Permission adjustments and additions for new and existing implementations
- Design and build Mitigating Controls for all SAP users to ensure Risks are being monitored and controlled for users that maintain SODs
- Work with the Financial Controls Group to ensure Controls are appropriately linked to SAP GRC Mitigating Controls
- Provide reporting to the Financial Controls Group and Business Process Owners to ensure Mitigating Control assignments are approved and assigned appropriately
- Consult on SAP Role design decisions as they relate to SOX and Compliance requirements
- Design and implement Controls related to Global Trade Compliance to ensure Export Administration Regulation (EAR), International Traffic in Arms Regulations (ITAR), and Sensitive data elements are restricted to authorized persons
- Provide reporting related to US vs Foreign National access to Material Master and Routing Information
- Work with Global Trade Compliance Team to adjust SAP Role design elements to ensure they are aligned with Compliance policies
- Design and implement Controls as defined by Boeing Enterprise Security information protection standards and computing security policies
Requirements
- 5+ years of experience working in a cross-functional environment
- 5+ years of experience within information technology
- 5+ years of experience with SAP Security and/or SAP GRC
- 5+ years of experience with supporting regulatory compliance processes/audits (e.g. SOX, DFARS, etc)
- 5+ years of experience with Systems Applications and Processing (SAP), S/4 HANA
- 5+ years of experience as a technical lead
- 5+ years of experience in Business Intelligence/data analytics tools (Microsoft Power BI, Dashboards, SQL, Tableau, etc)
- 5+ years of experience developing corrective action plans to respond to internal/external audit inspections
Benefits
- health insurance
- flexible spending accounts
- health savings accounts
- retirement savings plans
- life and disability insurance programs
- paid time off
- unpaid time away from work
Job title
Job type
Experience level
Salary
Degree requirement
No Education Requirement
Tech skills
Location requirements
Security Architect for Qualysoft designing and reviewing security architecture for technology divisions. Collaborating on security assessments for infrastructure and endpoint solutions in IT services.
Health and Safety Technician responsible for improving workplace safety at Nespresso's headquarters and boutiques. Managing safety programs and compliance with regulations and standards.
Evaluador/a de Seguridad y Certificación Ferroviario en Bureau Veritas. Gestionando evaluaciones de seguridad en proyectos de transporte ferroviario a nivel internacional.
Cybersecurity Compliance Senior Consultant managing Truist’s cybersecurity compliance and risk management. Develops strategies, analyzes requirements, and oversees compliance initiatives across business segments.
Cybersecurity Compliance Consultant responsible for documenting cybersecurity requirements while collaborating with stakeholders. Overseeing Cybersecurity Policy Administration program and technical writing.
Security Officer ensuring safety for patients and staff at Lehigh Valley Health Network facilities. Protecting premises and responding to emergency incidents in a healthcare environment.
Security Advisor Specialist testing security controls and responding to threats for Intact Financial globally. Collaborating with a global team to strengthen security measures across the enterprise.
Cybersecurity Officer managing security compliance and risk management for Boeing's classified programs. Leading A&A processes in operational environments and ensuring compliance with security standards.
Cybersecurity Manager overseeing security policies and compliance for classified information systems. Managing risks and ensuring adherence to cybersecurity regulations and frameworks across the organization.