Enterprise Access Management Control Specialist


Oil & Gas

Achtergrond opdracht

General Position Definition        
Enterprise Access Management (EAM) is part of the ET SOM (Enterprise Technology Service and Operations Management) organization in IT Services and Operations. EAM manages the access provisioning to the business critical applications compliant with internal and external control requirements.
The EAM Control specialist is a key role within the Enterprise Access Management (EAM) team, reporting into the Connectivity SOM Controls Lead, providing controls monitoring, reviewing and ensuring all security aspects meet stakeholder expectation and full compliance with SOx and broader control framework
Position description - Accountabilities

  • Support and monitor of the execution of the controls in the Enterprise Access Management space
  • Monitoring and execution of various SOX controls to ensure compliance.
  • Collaboration with the User Access Provisioning team to continuously improve of security procedures and controls for IT applications – mainly SAP
  • Managing the controls dashboards, reports, status updates and compliancy operations
  • Support evidence gathering for the periodic audits (Management testing/Internal/External)
  • Provide analysis to support remediation activities which are part of observations/ findings from the internal/external audits
  • Support the onboarding & offboarding of the ITGC/Sox controls for new applications handle by EAM team
  • Hands on development and testing of security controls and documenting controls per auditor guidelines
  • Managing the expectations of various stakeholders and Liaising with the business, Suppliers and Auditors
  • Working closely with the Internal control, Internal Audits & Offshore testing teams and the operations team to ensure that access controls executed in timely manner and compliant

Special Challenges:
 Ability to work with multiple stakeholders, business and teams across the globe

Functie eisen

Skills & Requirements:

  • Minimum 5 -8 years of IT Controls/Audits experience, with at least 3 years of experience in user Access Management
  • Demonstrated understanding of audit certification and regulatory requirements
  • Demonstrated experience in conducting Users access management audits and risk assessments
  • Knowledge of IT risks and security standards, guidelines, best practices and frameworks
  • Strong security controls frame work experience
  • Knowledge and experience in SAP Security and/or GRC tools would be an advantage
  • CISSP/CISA or equivalent certification would be an advantage

Key Competences required

  • Knowledge and experience in Risks, ITGC & SOX controls
  • Excellent communication skills, fluent in English (written/verbal)
  • Previous exposure to senior level decision-makers and stakeholders
  • Champions Customer and Stakeholder Focus Skill
  • Displays Interpersonal Effectiveness Skill
  • Demonstrates Courage Skill
  • Values Difference Skill
  • Delivers Results Through Others Skill

Opdracht informatie

Interested? Please send us your CV (Word), motivation and hourly rate.

Gerelateerde opdrachten

Voor IT Security