SAP Authorization Officer

Job Content

Daikin Europe Group uses SAP as main ERP system throughout the EMEA Region and for all processes (more than 3000 users, 60 key users, 70 business owners). The system management, including user access and authorizations, is centralized in IT EMEA department.

Within this framework, the SAP Authorization Officer (SAO) is part of the Corporate Planning team of the Headquarters, and safeguards the business interests and compliance requirements related to authorizations for the DENV (G). The compliance requirements are regulated by the BOD of DENV, by the DENV Audit Committee, by JSOX, and by internal and external auditors.

The SAO analyses requested changes in SAP authorizations and approves with the purpose of limiting Segregation of Duties (SOD) conflicts and critical or confidential access, and of maintaining an appropriate concept throughout the group. This involves:

• Daily support to the business by sharing authorisation expertise and communication with the IT team implementing required changes
  • Being the first line of support on matters of SAP access and supporting business to identify acceptable changes to authorizations;
  • Remotely supervising and coordinating the work of an external team for subcontracted activities;
  • From a technical and business point of view, challenging solutions proposed by IT for implementing requested changes, and during projects involving SAP authorizations;
  • Reacting timeously to issues raised by business;
  • Providing support and solutions for authorization incidents, and conflict resolution;
• Controlling activities related to SAP Authorisations
  • Executing JSOx controls to monitor compliance;
  • Actively monitoring the evolution of the authorizations concept and user access;
  • Designing and performing regular audits on the authorization concept, user access and security risks;
  • Being the point of contact for internal and external audit for matters regarding SAP authorizations in the DENV (G).
• Training the various parties involved in the process
  • Training key users, including maintenance of supporting documents describing the authorization process;
  • For newly integrated entities (during projects and post go-live), supporting the change management for authorizations related procedures;
• Continuously improving the processes around authorisations management
  • Concept redesign to better fit the current business context and risks;
  • Focus on customer satisfaction, compliance, and safeguarding the authorizations concept;
  • Redesigning and improving authorization procedures and identifying best practices;
  • Analysing potential business case for the implementation of other GRC tools;
  • Maintaining the CSI tool (rule set used to detect SOD conflicts and sensitive access);
  • Maintaining all documentation related to SAP auth. process (e.g. procedures for external parties);
• Reporting status to management
  • Regular reporting to direct management (department manager Corporate Planning);
  • Sharing SAP authorizations status during management meetings;
  • Raising awareness of potential issues/inefficiencies to top management, for which support is needed;