Principal SAP Security GRC Engineer

Lantheus is headquartered in Bedford, Massachusetts with offices in Canada, and Sweden. For more than 60 years, Lantheus has been instrumental in pioneering the field of medical imaging and has helped physicians enhance patient care with its broad product portfolio.

Lantheus is an entrepreneurial, agile, growing organization that provides innovative diagnostics, targeted therapeutics, and artificial intelligence (AI) solutions that empower clinicians to find, fight and follow disease. At Lantheus our purpose and values guide our behaviors in all interactions and play a vital role in creating a dynamic environment that contributes to our success. Every employee is crucial to our success; we respect one another and act as one knowing that someone's health is in our hands. We believe in helping people be their best and are seeking to bring together a diverse group of individuals with different viewpoints and skill sets to be a part of a productive and inclusive team.

This position is site-based and requires a presence on-site three days per week.

Summary

As Principal SAP Security and GRC Engineer, you will leverage your technical expertise in SAP GRC risk analysis, GRC configuration, and security roles. Your responsibility will span support and enhancement of SAP Roles and GRC processes, participation in software product evaluations, project planning, application integrations, implementation, testing, troubleshooting, and support of the SAP platform. . As the Principal SAP Security and GRC Engineer you will design and deliver solutions to improve the security, work on Governance, Risk, and Compliance (GRC) program initiatives.

This position requires strong communications, planning and technical skills working directly with various levels of the business and external vendors.

The candidate is expected to lead high-quality project and support work for his/her stakeholders, continue to build the SAP S/4HANA capability at Lantheus, and foster its continued growth within Lantheus' Organization.

Key Responsibilities/Essential Functions

• Collaborate with business stakeholders and functional teams to understand requirements, translate them into security requirements, and build scalable authorization solutions that meet the needs of an exponentially growing organization.
• Design, develop, and deploy SAP Security solutions to enhance solutions across the core modules of SAP S/4HANA, GTS, Ariba, SAP Fiori, and SAP BTP.
• Lead multiple SAP GRC initiatives through activities, including-but not limited to-creating new roles, updating existing roles, setting up user accounts for multiple test phases, cutover, and hyper-care support.
• Support mass load change of security objects leveraging scripts, authorization, and Fiori debugging, triage complex security problems, and work with technical/functional team with the perception of urgency.
• Lead the implementation and maintenance of SAP security controls and procedures.
• Provide key support to the administration of the Governance, Risk, and Compliance system, which includes access control, risk management, emergency access requests, business role management, and compliance reporting.
• Accountable for maintaining SAP users, authorizations, roles, GRC risks, SOD, mitigation, and audit reviews for S/4 HANA and FIORI security for setting up catalogs and groups, Target mapping of semantic object and action.
• GRC implementation, automation, upgrade Access risk analysis, Access request management, business role management, and emergency access management application embedded in GRC/S4.
• Oversee SAP GRC as it pertains to access management, risk analysis, role management, risk assessment, and emergency access functionality.
• Coordinate UAR review and get all reviews completed by reviewers.
• Complete other assigned duties that may be tasked

Requirements

• 12+ years of experience, with at least 10 years as a SAP GRC and Security consultant
• Bachelor's degree in computer science, Information Technology, or related field (or equivalent work experience)
• Lead Implementation experience across multiple modules of SAP S/4HANA.
• Experience working with internal and external Auditing teams.
• Implementation experience across multiple modules of SAP S/4HANA. Preferably on the SAP modules such as PP, QM, SD, MM, FI, CO, EWM, etc.
• Must have hands-on experience designing and developing new roles and authorizations in S/4HANA, HANA database, and GRC Access Control and Risk Management modules.
• Experience in implementing authorizations in SAP BTP and SAP Fiori is beneficial.
• Ability to prioritize tasks and manage multiple projects simultaneously.
• Excellent problem-solving and analytical skills
• Strong communication skills
• Comfortable working in a collaborative environment
• Experience in the pharmaceutical and medical device industry is a major plus
• Agile methodology knowledge is a plus.

Core Values
The ideal candidate will embody Lantheus core values:
* Let people be their best
* Respect one another and act as one
* Learn, adapt, and win
* Know someone's health is in our hands
* Own the solution and make it happen

Lantheus is an equal opportunity employer that provides a workplace free from discrimination. All qualified applicants and employees are considered without regard to race, color, sex, gender identity or expression, age, religion, national origin, ancestry, ethnicity, disability, veteran status, genetic information, sexual orientation, marital status, or any other characteristic protected by law.