Manager, SAP Security Business Process Owner bei Johnson & Johnson

At Johnson & Johnson, we believe health is everything. Our strength in healthcare innovation empowers us to build a world where complex diseases are prevented, treated, and cured, where treatments are smarter and less invasive, and solutions are personal. Through our expertise in Innovative Medicine and MedTech, we are uniquely positioned to innovate across the full spectrum of healthcare solutions today to deliver the breakthroughs of tomorrow, and profoundly impact health for humanity. Learn more at https://www.jnj.com

Job Function:

Job Sub Function:

Job Category:

All Job Posting Locations:

Job Description:

Johnson & Johnson is currently recruiting for a Manager, SAP Security Business Process Owner. This position is located in Bangalore, India.

The SAP Security BPO will play a key role in defining and deploying a cohesive security strategy, ensuring consistent, compliant, and optimized security controls across the entire suite of finance applications. This pivotal role focuses on designing, implementing, and managing security and access controls within SAP S/4 HANA, SAP Fiori, and BW for J&J’s global Finance platform

Position Overview & Responsibilities

The candidate technical and functional expertise in SAP security architecture, particularly in Fiori security models, BW security frameworks, and role management will be critical in guiding secure system deployment, optimizing access controls, and ensuring compliance. They will be expected to challenge existing practices, innovate security role design, and set benchmarks for security and compliance within SAP environments.

The ideal candidate will serve as a global subject matter expert in SAP security, including Fiori app security, BW security, role and authorizations management, and segregation of duties (SoD). They will oversee the design, deployment, and governance of security controls that align with internal policies and regulatory standards, working closely with global process owners, compliance teams, and regional finance shared services.

• Act as the Business Product Owner for SAP Security requirements, working closely with finance teams to understand and define security needs, role specifications, and access controls.
• Facilitate project implementations by translating business requirements into technical role definitions, provisioning authorizations, and ensuring adherence to security policies.
• Partner with IT security teams to ensure security roles and configurations accurately reflect business needs and technical standards in SAP S/4 HANA, BW and SAC.
• Lead the design, deployment, and ongoing management of SAP S/4 HANA security roles, authorization objects, and Fiori security configurations.
• Oversee security architecture ensuring best practices for access control and segregation of duties.
• Support centralized user access management processes across SAP S/4 HANA, BW, and SAC, promoting standardization and compliance.
• Collaborate with global compliance teams, process owners, and IT security to develop security standards, role design guidelines, and SoD controls tailored to SAP S/4 HANA, BW and SAC environments.
• Analyze and assess security change requests, evaluating impact on compliance and security posture, and providing recommendations for role design adjustments.

Qualifications

• A bachelor’s degree in Systems, IT, or related fields.
• Minimum of 10 years’ extensive experience in SAP S/4 HANA security, with proven expertise in Fiori security models, BW security architecture, and role management.
• Hands-on experience with SAP S/4 HANA implementation, security configuration, and role design.
• Strong understanding of SAP Fiori security architecture, including frontend and backend security considerations.
• Strong understanding of Finance business processes.
• Familiarity with SAP BW security frameworks, user authorization management, and data access controls within SAP.
• In-depth knowledge of SAP security protocols, SoD controls, and compliance frameworks.
• Excellent communication skills, capable of translating complex security concepts to technical and non-technical audiences.
• Knowledge of automation tools and analytics software (SQL, Alteryx) is a plus.
• Willingness to travel up to 10%, domestically or internationally.