FirstBank Jobs

Application Controls Engineer, Enterprise Platform, SAP Security

Do you want to be part of an inclusive team that works to develop innovative therapies for patients? Every day, we are driven to develop and deliver innovative and effective new medicines to patients and physicians. If you want to be part of this exciting work, you belong at Astellas!

Astellas Pharma Inc. is a pharmaceutical company conducting business in more than 70 countries around the world. We are committed to turning innovative science into medical solutions that bring value and hope to patients and their families. Keeping our focus on addressing unmet medical needs and conducting our business with ethics and integrity enables us to improve the health of people throughout the world. For more information on Astellas, please visit our website at www.astellas.com .

This is a remote position and is based in India. Remote work from certain states may be permitted in accordance with Astellas’ Responsible Flexibility Guidelines. Candidates interested in remote work are encouraged to apply.

Purpose and Scope:

As an Applications Controls Engineer, you will be a crucial player in driving our digital initiatives forward in our agile organization. Our agile operating model consists of two components – Digital Capability and Digital Execution. Digital Execution is about aligning multiple missions around business goals and facilitating collaboration on a larger scale. Digital Capability, on the other hand, will focus on the growth and development of individuals within a specific area of expertise. This dual structure enables us to scale agile practices efficiently while maintaining a focus on both product development and individual skill enhancement.

An Application Controls or SAP GRC (Governance, Risk, and Compliance) Engineer is a specialized role within DigitalX, focusing on the design, implementation, and maintenance of control systems and compliance mechanisms within SAP and other Enterprise Platforms and applications. This position plays a crucial role in ensuring that Enterprise Platforms & Applications are secure, compliant with regulatory standards, and aligned with the organization's risk management strategies. The role requires a blend of technical SAP expertise, a deep understanding of governance, risk, and compliance (GRC) principles, and the ability to apply these in a practical, business-oriented manner.

You will be at the forefront of implementing innovative solutions and will have the opportunity to work on cutting-edge technologies in your field.

Essential Job Responsibilities:

• SAP GRC Configuration and Management: Configure, manage, and optimize SAP GRC modules, including Access Control, Process Control, and Risk Management, to ensure effective governance, risk mitigation, and compliance with internal and external regulations.

• Application Control Implementation: Design and implement robust application controls within SAP and other Applications / systems to safeguard against unauthorized access, data breaches, and fraud. Ensure controls are in place for critical business processes and are aligned with best practices.

• Compliance and Auditing: Conduct regular audits and compliance checks within SAP and other JSOX related systems to identify potential vulnerabilities or non-compliance issues. Work closely with internal and external auditors to facilitate audits and address findings.

• Risk Assessment and Mitigation: Perform risk assessments related to SAP and other applications and GRC processes. Develop and implement strategies to mitigate identified risks and ensure that risk management practices are integrated into the Enterprise platforms and applications.

• Incident Response and Resolution: Respond to security incidents and compliance breaches within SAP and other systems. Collaborate with DigitalX cybersecurity teams to investigate incidents, implement corrective actions, and prevent future occurrences.

• Training and Support: Provide training and support to SAP users on GRC processes and application controls. Develop user guides, training materials, and support documentation to enhance understanding and compliance.

• Continuous Improvement: Continuously monitor and evaluate the effectiveness of SAP GRC processes and controls. Recommend and implement improvements to enhance security, compliance, and efficiency.

• Stakeholder Collaboration: Collaborate with DigitalX, business units, and external partners to ensure SAP GRC initiatives align with business objectives and technology strategies. Communicate effectively with stakeholders to provide updates and gather feedback.

Qualifications:

Required

• Bachelors or Master’s degree in relevant field, e.g., Computer Science, Data Science, Finance.

• SAP GRC Expertise: Strong technical knowledge of SAP GRC modules and functionalities, including experience with configuration and management of Access Control, Process Control, and Risk Management.

• Understanding of Application Controls: Deep understanding of application control frameworks and the ability to design and implement controls within SAP to mitigate risks.

• Risk Management and Compliance: Knowledge of risk assessment methodologies, compliance requirements (e.g., JSOX, GDPR), and the ability to apply these in an SAP and other relevant enterprise applications context.

• Analytical Skills: Excellent analytical and problem-solving skills, with the ability to identify issues, analyze complex data, and develop effective solutions.

• Technical Proficiency: Familiarity with SAP architecture, security principles, and data protection practices. Proficiency in relevant programming languages and technologies is a plus.

• Communication: Strong communication and interpersonal skills, with the ability to explain complex GRC concepts to non-technical stakeholders and collaborate effectively across teams.

• Adaptability: Ability to adapt to changing regulatory environments and technology landscapes. A willingness to continuously learn and stay updated with the latest SAP GRC developments.

Category

Astellas is committed to equality of opportunity in all aspects of employment.

EOE including Disability/Protected Veterans