jobright.com
Join to apply for the
Senior Security Engineer - SAP GRC
role at
Jobright.ai 2 days ago Be among the first 25 applicants Join to apply for the
Senior Security Engineer - SAP GRC
role at
Jobright.ai Get AI-powered advice on this job and more exclusive features. Jobright is an AI-powered career platform that helps job seekers discover the top opportunities in the US. We are NOT a staffing agency. Jobright does not hire directly for these positions. We connect you with verified openings from employers you can trust. Job Summary: Costco IT is responsible for the technical future of Costco Wholesale, a leading retailer globally. The SAP GRC Engineer will support compliance with legal and regulatory obligations by developing security controls and managing GRC-related issues, ensuring the security of the technology environment. Responsibilities: Provides GRC, security, and technical expertise to support the development of GRC objects to satisfy business requirements. Analyzes and administers GRC policies to control physical and virtual system access. Identifies and investigates GRC issues and develops solutions that address compliance requirements that can/do impact GRC and security. Identifies, develops, and implements mechanisms to detect incidents in order to enhance compliance and support of the standards and procedures. Assesses business role requirements, reviews authorization roles, and supports authorizations. Demonstrates a comprehensive skill set with testing authorizations for multiple environments and coordinates testing with business/technical users. Validates system configurations to ensure the safety of information systems assets and protects information systems from intentional or inadvertent access or destruction. Implements best practice when applying knowledge of information systems security standards/practices (e.g. access control and system hardening, system audit and log file monitoring, security policies, and incident handling). Identifies GRC gaps that expose Costco to potential exploit and develop short- and long-term prioritized remediation to address those gaps. Determines strategy and protocol for network behavior, analysis techniques, and tool implementation. Creates dashboards, configures alerts, implements and supports security software platforms, and monitors tools/apps. Identifies opportunities for streamlining and increasing effectiveness through continuous process improvement. Implements practices, processes, and procedures consistent with Costco's information security policy and IT standards. Develops and documents GRC events and incident handling procedures into Playbooks. Ensures that incident documentation is comprehensive, accurate, and complete. Triages, prioritizes, investigates, and coordinates security events and incident handling activities. Creates and/or remediates GITC (General IT Controls) in support of meeting audit objectives for all SAP modules and their supporting Databases, within the Costco SAP landscape (i.e. Finance, Retail, Warehouse Management, Payroll, HANA, etc.). Designs IT testing procedures to identify and evaluate risk exposures and determine the effectiveness and efficiency of controls. Assists with the creation of effective remediation solutions and/or exception documentation where applicable. Serves as the subject matter expert and point of contact to Internal and External Auditors. Assists project teams with creation and implementation of IT controls objectives and integration into SAP-GRC. Assists with the successful completion of the quarterly UAR (User Access Review) audit process. Collaborates with Internal Audit in developing, testing, and devising solutions to effectively meet applicable IT control objectives. Takes responsibility for continued personal growth in the areas of technology, business knowledge, Costco policies, and platforms. Participates in team activities and team planning in regards to improving team skills, awareness, and quality of work. Qualifications: Required: Minimum of 12 years of experience of SAP GRC Access 10.0 and or 12.0 with expertise using the following modules: Account Request Management (ARM), Access Risk Analysis (ARA), Emergency Access Management (EAM), User Access Review (UAR), Process Control (PC), SAP ETD. Minimum of 7 years work experience in IT Risk Management, SOX compliance, and/or auditing with a strong background in IT controls. Minimum of 7 years of experience with SAP Security across various applications, including but not limited to, S/4 HANA, ECC, BW, MDG, Fiori, PI/PO, eWM, and Solution Manager. Minimum of 7 years experience with SOD conflict resolution. Direct 'hands-on' experience in IT audits and functional experience using SAP GRC. Understanding of SAP cloud security. Strong understanding of Sarbanes-Oxley (SOX) and other compliance requirements that may impact controls. Expertise in working with internal and external auditors. Experience developing SAP GRC solutions that address Sarbanes-Oxley requirements. Effective communication and technical leadership; ability to fluently speak both technical and business language interchangeably. Ability to effectively mentor other team members on SAP compliance. Experience in successful project implementation and follow-up; strong time management skills. Strong conceptual, analytical, problem-solving, troubleshooting, and resolution skills. Ability to monitor and manage the progress of tasks and work independently. Ability to design, develop, and maintain SAP user management and security architecture across SAP environments, including hands-on role design and build across a number of complex SAP applications and databases. Scheduling flexibility to meet the needs of the business, including 24x7 on call rotational support. Preferred: Bachelors degree in Accounting, Business, Information Technology, or Computer Science preferred. Documentation and presentation skills catered to a diverse technical and business audience. Technical knowledge of SAP landscapes and roadmaps. Proficient in Google Workspace applications, including Sheets, Docs, Slides, and Gmail. Company: Costco IT is responsible for the technical future of Costco Wholesale, the third largest retailer in the world with wholesale operations in twelve countries. Founded in , the company is headquartered in Issaquah, WA, US, with a team of 1001-5000 employees. The company is currently Late Stage. Seniority level
Seniority level
Mid-Senior level Employment type
Employment type
Full-time Job function
Industries
Software Development Referrals increase your chances of interviewing at Jobright.ai by 2x Inferred from the description for this job
Medical insurance Vision insurance 401(k) Get notified when a new job is posted. Sign in to set job alerts for Security Engineer roles.
Senior Security Engineer, Corporate Security
Seattle, WA $148,000.00-$185,000.00 1 week ago Senior Security Engineer (Presales) - Northwest region (Seattle, WA)
Senior Security Incident Response Engineer, AWS, AWS CorpSec Response
Seattle, WA $143,300.00-$247,600.00 1 week ago Senior Security Incident Response Engineer, AWS, AWS CorpSec Response
Seattle, WA $143,300.00-$247,600.00 5 days ago Redmond, WA $148,000.00-$287,500.00 4 days ago Seattle, WA $143,300.00-$247,600.00 1 week ago Seattle, WA $230,700.00-$384,100.00 1 week ago Bellevue, WA $230,700.00-$384,100.00 1 week ago Senior Product Engineer - Security and Compliance
Seattle, WA $159,000.00-$278,250.00 6 days ago Project Consultant (Engineer) - Telecommunications / Security
Global Practice Architect, Security GTM, Google Cloud
Seattle, WA $218,000.00-$306,000.00 3 days ago Sr. Solutions Architect Cloud Security, Specialist Organization
Seattle, WA $138,200.00-$239,000.00 1 week ago Seattle, WA $100,000.00-$180,000.00 3 weeks ago Security Forensics Engineer / Investigations Specialist / Risk Specialist
Fraud & Security Analyst - Mountlake Terrace Headquarters
Seattle, WA $141,000.00-$202,000.00 4 days ago Bellevue, WA $264,000.00-$342,000.00 1 week ago Seattle, WA $171,900.00-$249,100.00 2 weeks ago Security Engineer (Identity and Access Management)
Redmond, WA $130,000.00-$150,000.00 1 week ago Senior Security Engineer - Northwest region (Seattle, WA)
Bellevue, WA $110,000.00-$140,000.00 1 week ago Seattle, WA $125,000.00-$140,000.00 1 week ago Seattle, WA $150,000.00-$190,000.00 1 day ago Redmond, WA $119,800.00-$258,000.00 2 weeks ago Redmond, WA $119,800.00-$258,000.00 1 week ago Bellevue, WA $128,000.00-$160,000.00 1 week ago Bellevue, WA $147,000.00-$208,000.00 1 week ago Security Engineer Technical Lead, Identity
Kirkland, WA $197,000.00-$291,000.00 1 day ago Seattle, WA $150,000.00-$190,000.00 1 day ago Redmond, WA $119,800.00-$258,000.00 6 days ago Seattle, WA $136,000.00-$212,800.00 2 weeks ago Were unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI. #J-18808-Ljbffr
Senior Security Engineer - SAP GRC
role at
Jobright.ai 2 days ago Be among the first 25 applicants Join to apply for the
Senior Security Engineer - SAP GRC
role at
Jobright.ai Get AI-powered advice on this job and more exclusive features. Jobright is an AI-powered career platform that helps job seekers discover the top opportunities in the US. We are NOT a staffing agency. Jobright does not hire directly for these positions. We connect you with verified openings from employers you can trust. Job Summary: Costco IT is responsible for the technical future of Costco Wholesale, a leading retailer globally. The SAP GRC Engineer will support compliance with legal and regulatory obligations by developing security controls and managing GRC-related issues, ensuring the security of the technology environment. Responsibilities: Provides GRC, security, and technical expertise to support the development of GRC objects to satisfy business requirements. Analyzes and administers GRC policies to control physical and virtual system access. Identifies and investigates GRC issues and develops solutions that address compliance requirements that can/do impact GRC and security. Identifies, develops, and implements mechanisms to detect incidents in order to enhance compliance and support of the standards and procedures. Assesses business role requirements, reviews authorization roles, and supports authorizations. Demonstrates a comprehensive skill set with testing authorizations for multiple environments and coordinates testing with business/technical users. Validates system configurations to ensure the safety of information systems assets and protects information systems from intentional or inadvertent access or destruction. Implements best practice when applying knowledge of information systems security standards/practices (e.g. access control and system hardening, system audit and log file monitoring, security policies, and incident handling). Identifies GRC gaps that expose Costco to potential exploit and develop short- and long-term prioritized remediation to address those gaps. Determines strategy and protocol for network behavior, analysis techniques, and tool implementation. Creates dashboards, configures alerts, implements and supports security software platforms, and monitors tools/apps. Identifies opportunities for streamlining and increasing effectiveness through continuous process improvement. Implements practices, processes, and procedures consistent with Costco's information security policy and IT standards. Develops and documents GRC events and incident handling procedures into Playbooks. Ensures that incident documentation is comprehensive, accurate, and complete. Triages, prioritizes, investigates, and coordinates security events and incident handling activities. Creates and/or remediates GITC (General IT Controls) in support of meeting audit objectives for all SAP modules and their supporting Databases, within the Costco SAP landscape (i.e. Finance, Retail, Warehouse Management, Payroll, HANA, etc.). Designs IT testing procedures to identify and evaluate risk exposures and determine the effectiveness and efficiency of controls. Assists with the creation of effective remediation solutions and/or exception documentation where applicable. Serves as the subject matter expert and point of contact to Internal and External Auditors. Assists project teams with creation and implementation of IT controls objectives and integration into SAP-GRC. Assists with the successful completion of the quarterly UAR (User Access Review) audit process. Collaborates with Internal Audit in developing, testing, and devising solutions to effectively meet applicable IT control objectives. Takes responsibility for continued personal growth in the areas of technology, business knowledge, Costco policies, and platforms. Participates in team activities and team planning in regards to improving team skills, awareness, and quality of work. Qualifications: Required: Minimum of 12 years of experience of SAP GRC Access 10.0 and or 12.0 with expertise using the following modules: Account Request Management (ARM), Access Risk Analysis (ARA), Emergency Access Management (EAM), User Access Review (UAR), Process Control (PC), SAP ETD. Minimum of 7 years work experience in IT Risk Management, SOX compliance, and/or auditing with a strong background in IT controls. Minimum of 7 years of experience with SAP Security across various applications, including but not limited to, S/4 HANA, ECC, BW, MDG, Fiori, PI/PO, eWM, and Solution Manager. Minimum of 7 years experience with SOD conflict resolution. Direct 'hands-on' experience in IT audits and functional experience using SAP GRC. Understanding of SAP cloud security. Strong understanding of Sarbanes-Oxley (SOX) and other compliance requirements that may impact controls. Expertise in working with internal and external auditors. Experience developing SAP GRC solutions that address Sarbanes-Oxley requirements. Effective communication and technical leadership; ability to fluently speak both technical and business language interchangeably. Ability to effectively mentor other team members on SAP compliance. Experience in successful project implementation and follow-up; strong time management skills. Strong conceptual, analytical, problem-solving, troubleshooting, and resolution skills. Ability to monitor and manage the progress of tasks and work independently. Ability to design, develop, and maintain SAP user management and security architecture across SAP environments, including hands-on role design and build across a number of complex SAP applications and databases. Scheduling flexibility to meet the needs of the business, including 24x7 on call rotational support. Preferred: Bachelors degree in Accounting, Business, Information Technology, or Computer Science preferred. Documentation and presentation skills catered to a diverse technical and business audience. Technical knowledge of SAP landscapes and roadmaps. Proficient in Google Workspace applications, including Sheets, Docs, Slides, and Gmail. Company: Costco IT is responsible for the technical future of Costco Wholesale, the third largest retailer in the world with wholesale operations in twelve countries. Founded in , the company is headquartered in Issaquah, WA, US, with a team of 1001-5000 employees. The company is currently Late Stage. Seniority level
Seniority level
Mid-Senior level Employment type
Employment type
Full-time Job function
Industries
Software Development Referrals increase your chances of interviewing at Jobright.ai by 2x Inferred from the description for this job
Medical insurance Vision insurance 401(k) Get notified when a new job is posted. Sign in to set job alerts for Security Engineer roles.
Senior Security Engineer, Corporate Security
Seattle, WA $148,000.00-$185,000.00 1 week ago Senior Security Engineer (Presales) - Northwest region (Seattle, WA)
Senior Security Incident Response Engineer, AWS, AWS CorpSec Response
Seattle, WA $143,300.00-$247,600.00 1 week ago Senior Security Incident Response Engineer, AWS, AWS CorpSec Response
Seattle, WA $143,300.00-$247,600.00 5 days ago Redmond, WA $148,000.00-$287,500.00 4 days ago Seattle, WA $143,300.00-$247,600.00 1 week ago Seattle, WA $230,700.00-$384,100.00 1 week ago Bellevue, WA $230,700.00-$384,100.00 1 week ago Senior Product Engineer - Security and Compliance
Seattle, WA $159,000.00-$278,250.00 6 days ago Project Consultant (Engineer) - Telecommunications / Security
Global Practice Architect, Security GTM, Google Cloud
Seattle, WA $218,000.00-$306,000.00 3 days ago Sr. Solutions Architect Cloud Security, Specialist Organization
Seattle, WA $138,200.00-$239,000.00 1 week ago Seattle, WA $100,000.00-$180,000.00 3 weeks ago Security Forensics Engineer / Investigations Specialist / Risk Specialist
Fraud & Security Analyst - Mountlake Terrace Headquarters
Seattle, WA $141,000.00-$202,000.00 4 days ago Bellevue, WA $264,000.00-$342,000.00 1 week ago Seattle, WA $171,900.00-$249,100.00 2 weeks ago Security Engineer (Identity and Access Management)
Redmond, WA $130,000.00-$150,000.00 1 week ago Senior Security Engineer - Northwest region (Seattle, WA)
Bellevue, WA $110,000.00-$140,000.00 1 week ago Seattle, WA $125,000.00-$140,000.00 1 week ago Seattle, WA $150,000.00-$190,000.00 1 day ago Redmond, WA $119,800.00-$258,000.00 2 weeks ago Redmond, WA $119,800.00-$258,000.00 1 week ago Bellevue, WA $128,000.00-$160,000.00 1 week ago Bellevue, WA $147,000.00-$208,000.00 1 week ago Security Engineer Technical Lead, Identity
Kirkland, WA $197,000.00-$291,000.00 1 day ago Seattle, WA $150,000.00-$190,000.00 1 day ago Redmond, WA $119,800.00-$258,000.00 6 days ago Seattle, WA $136,000.00-$212,800.00 2 weeks ago Were unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI. #J-18808-Ljbffr