Support access management life cycles and governance around active directory, SAP, and any other applications
Support the federation and single sign technologies
Develop an understanding of Newell Brands current and forward-looking threat profile
Monitor and report on the identity threat landscape
Document and escalate incidents that may cause ongoing and immediate impact
Documenting expiring credentials and managing communications to stakeholders
Support the Privileged Access Management (PAM) program by enforcing least‑privilege and just‑in‑time access controls, and partnering with infrastructure, and application teams
Administer SAP user access across ECC, BW, APO, and related systems, including provisioning, modification, and deprovisioning in alignment with global security standards and least-privilege principles
Design, build, and maintain SAP roles using PFCG, ensuring Segregation of Duties (SoD) compliance and proper organizational-level restrictions
Analyze and resolve authorization issues using SU53, ST01, SUIM, AGR tables, and related tools; identify root causes of recurring access issues and implement sustainable solutions
Support SAP security activities during system implementations, including security blueprinting, role mapping, role build and transport coordination, UAT support, and post-go-live hyper care
Triage and resolve security tickets, including access requests, authorization failures, GRC workflow issues, and user lock/expiration troubleshooting, while meeting established SLAs
Provide audit and compliance support by generating user access reports, role change documentation, Firefighter logs, and SoD risk analysis, partner with Internal Audit, External Audit, and Compliance teams during control reviews and remediation efforts
Requirements
(Preferred) bachelor’s degree in information security, Computer Science, Information Management Systems, or related field
5+ years of experience in Information Technology
2+ years of experience performing Information Security related duties
Strong problem solving and communication skills
Experience in SAP GRC Access Controls, AskIT/AnswerIT, Single Sign-on (SSO), Windows Active Directory, Cloud Solutions, Entra ID, Azure, IGA
Ability to support multiple projects, shifting priorities, and changing environments/landscapes
Demonstrates initiative and the ability to perform with limited supervision