Access Compliance Specialist - SAP S/4 HANA

PANDORA Global Business Services Organization (GBS)  is part of the structures of the world's largest jewelry manufacturing and sales company, whose products help millions of people around the world express their feelings every day.

Our GBS team performs a wide range of financial processes beyond standard transaction processing. We strive to streamline all of our financial processes and continually enhance the support and services we provide to customers and business partners. We work closely with PANDORA's local management, business controllers, customer service departments throughout Europe and the Middle East, and with our colleagues in the global office in Copenhagen. Here in Warsaw, we are responsible for about 90% of all the company's financial and accounting transactions worldwide.

PANDORA's business has something unique about it - as does our people-oriented organizational culture. Regardless of position or workplace, we work together in line with the values of "We Care, We Dream, We Dare, We Deliver" and strive for continuous learning and knowledge sharing.

The Access Compliance Specialist plays a critical role in ensuring compliance, security, and efficiency within the SAP S/4HANA access control framework. Responsibilities encompass various aspects of access management, from advising & approving access requests to collaborating with stakeholders to optimize access roles. The role of Access Compliance Specialist involves overseeing user access within SAP systems, with a primary focus on ensuring efficient, secure, and compliant management in accordance with regulatory mandates and company policies.

Key functions include:

• Compliance Adherence: Ensuring alignment with organizational policies and regulatory requirements, the Authorization Specialist meticulously follows the SAP S/4HANA access control framework.
• Segregation of Duties Oversight: By approving and advising on access requests, the specialist ensures that segregation of duties (SoD) within the SAP S/4HANA environment remains intact, minimizing risks of conflicts or violations.
• Stakeholder Collaboration: Engaging with stakeholders, the specialist gathers access requirements and contributes to the design of appropriate access roles, fostering alignment between business needs and access management protocols.
• Process Optimization: Proactively seeking opportunities to streamline access management processes, the specialist collaborates closely with Internal Audit, Global Business Services (“GBS”), and D&T teams, enhancing operational efficiency and compliance.
• User Support and Guidance: Providing essential support and guidance to end users, the specialist assists with access provisioning, role assignments, and authorization-related inquiries, ensuring smooth operations and user satisfaction.
• Continuous Improvement: Following SAP security best practices, industry standards, and emerging technologies, the specialist continually evaluates and enhances access control mechanisms to adapt to evolving security landscapes.
• Cross-Functional Collaboration: Actively participating in cross-functional projects, the specialist integrates access management processes with other SAP modules or enterprise systems, fostering interoperability and enhancing overall system efficiency.
• Policy Development: Contributing to development of access control policies and procedures for SAP systems, ensuring alignment with regulatory requirements and industry best practices.

Qualifications:

• Bachelor's degree in Finance, Economics, Risk and Compliance or a related field. Master’s degree preferred.
• Proven 3+ years of experience in compliance activities, including:
  • Assessing access-related risks, prioritize them based on potential impact, and implement controls and mitigation strategies to reduce risk exposure within ERP systems.
  • Identifying access management challenges, troubleshoot issues, and propose innovative solutions to address them within ERP systems.
  • Contributing to access control policies design, configuring roles and permissions, and reviewing access requests and certifications to ensure accuracy and compliance.
• Knowledge of regulations and industry standards related to data privacy, information security and IT governance.
• Analytical mindset to analyze access-related data, identify trends, patterns, and anomalies, and make data-driven decisions to improve access control processes and mitigate security risks.
• Knowledge of SAP systems, SAP Access Controls, GRC and SAP security concepts – nice to have.
• Strong communication skills to collaborate with stakeholders, including business users, IT teams, auditors, and security professionals, and to convey access management concepts and requirements effectively.
• Candidate will be able to work independently, be self-driven and also deliver through others when necessary.

We offer: 

• Work in a company with a unique organizational culture focused on people and continuous development 
• Cooperation on the basis of an employment contract with a basic salary and a real achievable annual bonus 
• Hybrid work model 
• Free parking for employees regardless of position (reservation required) 
• Flexible working hours (7am/10am - 3pm/18pm) 
• Support for professional competence development (including LinkedIn Learning platform access for all employees)
• Attractive package of Medicover medical care for employees and family members, including dental package 
• Generali life insurance 
• Multisport card and cafeteria program on the MyBenefit platform 
• Additional days off e.g. for birthdays and health check 
• Very attractive discounts on PANDORA products 
• Subsidy for "home office" equipment 
• Employee Pension Plans (PPE) 
• Additional benefits under the company's social fund (e.g., holiday or kindergarten subsidies) 
• Employee Recommendation Program 

Pandora’s recruitment procedures are designed to be transparent and clear for all candidates. This helps us ensure that applicants are provided with a fair and equal opportunity to demonstrate their competencies and skills by removing blocking factors, possible biases, and risks of discrimination. We encourage everyone applying to our vacancies to refrain from adding identity-related elements such as a photo, marital status, and age.