Req ID




Campo personalizado 2:  85310
Categoría:  IT – Information Technology
Fecha:  25 may. 2023

Granollers, B, ES, 08403

SAP Security Subject Matter Expert

SAP Security Manager

IT GLOBAL - (Permanent role, based in Granollers, Spain)

Coty is one of the world’s largest beauty companies with an iconic portfolio of brands across fragrance, color cosmetics, skin care and body care. COTY is the global leader in fragrance and number three in color cosmetics. COTY’s products are sold in over 150 countries around the world. COTY and its brands are committed to range of social causes as well as seeking to minimize its impact on the environment. For additional information about Coty Inc., please visit



SAP Security & GRC COE is primarily responsible to review/deliver Security & Governance across SAP applications. This would include review and monitoring of the design, build, test and implementation of SAP security solutions in AMS and assigned projects. This position works directly with all levels of the organization and requires in-depth knowledge on SAP Security & GRC  architecture, governance, Risks and SODs. The position would need detailed exposure to change management and Project lifecycle and also would need hands on exposure across various SAP Application Security Design. Below are the key Job Responsibilities.  



  • SME for Security and Authorization activities across SAP applications
  • Represent SAP Security & GRC considerations for Support and projects
  • Act as a liaison with other technical teams and also manage escalations in support and project delivery.
  • Follow the defined procedures, processes and in line with the Company policies and Security best practices & standards.
  • Monitor security changes executed and perform the quality reviews. Fix any deviations and provide feasible enhancements when required.
  • Evaluate and review all GRC AC configuration changes and the creation and maintenance of security roles in the application.
  • Hands on delivery  in project and support based on assigned work.
  • Support all phases of project lifecycle and also assist AMS team for any query/clarifications
  • Owner, Approver and Reviewer of all SAP Security team Collaterals (i.e. Share point, Mailbox, Reference Documents and also approver for Security Roles and GRC Approver)
  • Review & analysis of SAP Security tickets to provide trending and/or present possible process improvements
  • Review & assess the SAP Security Strategy Document for possible risks & their remediation
  • Status reporting, proactively manage foreseen project risk and plan for remediation/mitigation. Handling E2E Project Metrics & Incident Analysis with weekly status report.



  • Bachelor’s degree in information Technology systems, computer science, and/or business, or equivalent work experience.
  • Minimum 5+ years or equivalent level of experience in SAP ECC security design and implementation.
  • Experience in SAP security Applications including S4 HANA, GRC12, cloud applications. Hands-on
  • Experience in SAP ECC, BW4HANA, SAP GRC, SAP Portal, S4HANA , BTP
  • Good to have experience in Audit and Advisory service organizations
  • Must have experience or Exposure in different Security design /approaches
  • Experience with SAP Governance Risk and Compliance tools. Experience in GRC AC technical implementation or upgrade.
  • Experience working with end-users to translate business requirements into systems specifications
  • Strong experience in Segregation of duties concept. Ability to conduct user or role remediations. Having experience in designing a security SoD Matrix is a plus.
  • Excellent written and oral communications skills; ability to lead discussions, present ideas to audiences of all sizes, and interact with all levels of the organization as needed.
  • Ability to handle multiple projects simultaneously, with attention to detail and due dates.
  • Recognizes impacts of changes and ensures appropriate due diligence performed before making changes and is thorough in testing solutions before implementing to avoid rework.
  • Should have good experience in User License management
  • Expertise in ticket management and reporting; Exposure to ticketing tools
  • Expertise in Running and publishing various SOX reports like, UAR, Critical Actions, SOD, Critical Permissions, Firefighter Log Review
  • Expertise in SAP Security automation and scripts creation for mass maintenance
  • Expertise in troubleshooting SAP security & GRC issues. 
País/región:  ES
Población:  Granollers