IS UAM Design Architect

Global IS Domain Delivery Manager

As the IS UAM Design Architect for SAP CFIN, you will oversee the design, maintenance, facilitation, and access implementation related to the CFIN functional system roles.
You will have possibility to act as the architectural authority for Access Management. This role is critical in designing and maintaining a secure, efficient, and compliant SAP access framework, ensuring optimal role-based access controls across the enterprise.
The work model for the role is #LI-Hybrid
This role is contributing to the Corporate Finance Function and is part of the Finance IS Domain and Corporate Finance.
You will be mainly accountable for:
* Lead the design, development, and maintenance of SAP roles and authorizations in SAP Central Finance.
* Ensure compliance with SoD principles, mitigating risks associated with user access and privilege management.
* Implement and maintain SAP GRC Access Control solutions, including Access Risk Analysis (ARA), Emergency Access Management (EAM), and Business Role Management (BRM).
* Collaborate with business stakeholders and security teams to define and refine role design strategies aligning with compliance requirements.
* Conduct risk assessments to identify potential security vulnerabilities and implement proactive remediation strategies.
* Monitor and enforce access policies, ensuring adherence to SOX, GDPR, and other regulatory requirements.
* Optimize and automate user provisioning and de-provisioning processes using SAP GRC tools.

• Bachelor's or master's degree in computer science, Information Systems, Business Administration, or a related field. Relevant certifications in SAP S/4HANA, SAP CFIN, or IT architecture would be advantageous.
• 8+ years of experience in SAP security, user access management, and role design, with a focus on SAP Central Finance.
• Strong expertise in SAP GRC Access Control (ARA, BRM, EAM, ARM) and SoD remediation.
• Deep understanding of SAP authorization concepts, role-based access control (RBAC), and security best practices.
• Hands-on experience with SAP S/4HANA role design, including business and technical role mapping.
• Strong knowledge of regulatory compliance frameworks such as SOX, GDPR.
• Experience with SAP Fiori role management and security implementation.
• Ability to perform security audits and risk assessments, delivering actionable recommendations..
• Experience with SAP Identity Management (IDM) and SAP Cloud Identity Access Governance (IAG).
• SAP Certification in GRC Access Control or SAP Security is a plus.

Our mission in ABB IS (Information Systems) is to harness the power of information technology to deliver valuable, reliable, and competitive IS services for ABB. If you have a strong technical skills, analytical mind, and the drive to help us stay ahead of the competition, you are the one we are looking for.
We value people from different backgrounds. Apply today for your next career step within ABB and visit www.abb.com to learn about the impact of our solutions across the globe. #MyABBStory
It has come to our attention that the name of ABB is being used for asking candidates to make payments for job opportunities (interviews, offers). Please be advised that ABB makes no such requests. All our open positions are made available on our career portal for all fitting the criteria to apply. ABB does not charge any fee whatsoever for recruitment process. Please do not make payments to any individuals / entities in connection to recruitment with ABB, even if is claimed that the money is refundable. ABB is not liable for such transactions. For current open positions you can visit our career website https://global.abb/group/en/careers and apply. Please refer to detailed recruitment fraud caution notice using the link https://global.abb/group/en/careers/how-to-apply/fraud-warning