The Clorox Company
SAP Security & GRC Solution Architect
The Clorox Company, Pleasanton, California, United States, 94566
Solution Architect – SAP Security & GRC (Talent Acquisition Manager)
Mountain View, CA | $118,200 - $204,300 | 1 week ago
We are looking for a experienced SAP Security & GRC Solution Architect to play a key role in supporting and enhancing Clorox’s enterprise SAP landscape. The architect will serve as a subject matter expert and hands‑on in SAP GRC, IAG, IAS, and cloud security platforms. The role supports post‑go‑live stabilization, secure audit‑ready operations, and the transition from project‑based delivery to long‑term operations.
Responsibilities
Contribute to the overall SAP security architecture strategy for Clorox, spanning ECC, S/4HANA, GRC, and cloud‑based SAP platforms.
Hands‑on review, inspection, debug, and verification on all SAP and security platforms.
Support ongoing SAP security operations and maintenance, with a focus on role design, licensing impact and cost recommendations, risk remediation, system access control, audit readiness, and audit reporting/remediation.
Drive our SAP and Security strategy across our different security teams.
Update SAP security architecture as we evolve to meet our security strategy and implementations.
Provide subject matter expertise in SAP GRC Access Control (ARA, BRM, ARM, EAM), including integration with SailPoint IGA where applicable.
Guide and support secure implementation and integration of cloud applications (e.g., IAS, IAG, BTP, SAC, Enable Now, Ariba, etc.).
Provide technical guidance on SSO configuration, SAML assertion handling, secure key maintenance, and related authentication patterns.
Troubleshoot and support SAP access provisioning failures across platforms (GRC, MyAccess, AD/SSO integration).
Collaborate with Enterprise Architecture, IAM, and Cybersecurity to ensure alignment with company‑wide identity and access strategies.
Support and contribute to the shift from project‑based delivery to stable, long‑term SAP security operations post‑Vista.
Architect and support SAP IAG Bridge integrations with GRC Access Control, including configuration of Identity Authentication (IAS) and Identity Provisioning Services (IPS), secure SAP Cloud Connector, and BTP subaccount administration.
Qualifications
8+ years of SAP Security/GRC experience.
Experience in security design and support for SAP transformation programs.
Familiarity with SailPoint or similar for integration between GRC and IGA platforms.
Experience supporting large‑scale user migrations and cutover activities.
Exposure to SAP development lifecycle, ABAP code review, and security vulnerability triage.
Familiarity with JSON structure and its use in API integrations, access provisioning workflows, or troubleshooting cloud‑based identity systems (e.g., SAP IAG, SailPoint, MyAccess).
Deep expertise in SAP Security and GRC Access Control (GRC 12.0 or later).
Hands‑on experience with IAS/IAG, SAP BTP, and SAP S/4HANA security models.
Experience supporting security for SAP cloud applications and authentication technologies (SSO, SAML, Secure Key Exchange).
Strong knowledge of compliance and control frameworks including SOX, ITGCs, and SOD.
Ability to troubleshoot SAP access provisioning issues across hybrid environments.
Strong collaboration skills and ability to work with cross‑functional teams, including audit, infrastructure, IAM, and business stakeholders.
Excellent documentation, communication, and facilitation skills.
A continuous improvement mindset and a strong sense of ownership.
Proven ability to work independently and drive solutions forward.
Benefits
Medical, Vision, and Disability insurance
401(k) with company match
Paid maternity and paternity leave
Tuition assistance
Employment Type Full‑time | Mid‑Senior level | Information Technology | Manufacturing
#J-18808-Ljbffr
We are looking for a experienced SAP Security & GRC Solution Architect to play a key role in supporting and enhancing Clorox’s enterprise SAP landscape. The architect will serve as a subject matter expert and hands‑on in SAP GRC, IAG, IAS, and cloud security platforms. The role supports post‑go‑live stabilization, secure audit‑ready operations, and the transition from project‑based delivery to long‑term operations.
Responsibilities
Contribute to the overall SAP security architecture strategy for Clorox, spanning ECC, S/4HANA, GRC, and cloud‑based SAP platforms.
Hands‑on review, inspection, debug, and verification on all SAP and security platforms.
Support ongoing SAP security operations and maintenance, with a focus on role design, licensing impact and cost recommendations, risk remediation, system access control, audit readiness, and audit reporting/remediation.
Drive our SAP and Security strategy across our different security teams.
Update SAP security architecture as we evolve to meet our security strategy and implementations.
Provide subject matter expertise in SAP GRC Access Control (ARA, BRM, ARM, EAM), including integration with SailPoint IGA where applicable.
Guide and support secure implementation and integration of cloud applications (e.g., IAS, IAG, BTP, SAC, Enable Now, Ariba, etc.).
Provide technical guidance on SSO configuration, SAML assertion handling, secure key maintenance, and related authentication patterns.
Troubleshoot and support SAP access provisioning failures across platforms (GRC, MyAccess, AD/SSO integration).
Collaborate with Enterprise Architecture, IAM, and Cybersecurity to ensure alignment with company‑wide identity and access strategies.
Support and contribute to the shift from project‑based delivery to stable, long‑term SAP security operations post‑Vista.
Architect and support SAP IAG Bridge integrations with GRC Access Control, including configuration of Identity Authentication (IAS) and Identity Provisioning Services (IPS), secure SAP Cloud Connector, and BTP subaccount administration.
Qualifications
8+ years of SAP Security/GRC experience.
Experience in security design and support for SAP transformation programs.
Familiarity with SailPoint or similar for integration between GRC and IGA platforms.
Experience supporting large‑scale user migrations and cutover activities.
Exposure to SAP development lifecycle, ABAP code review, and security vulnerability triage.
Familiarity with JSON structure and its use in API integrations, access provisioning workflows, or troubleshooting cloud‑based identity systems (e.g., SAP IAG, SailPoint, MyAccess).
Deep expertise in SAP Security and GRC Access Control (GRC 12.0 or later).
Hands‑on experience with IAS/IAG, SAP BTP, and SAP S/4HANA security models.
Experience supporting security for SAP cloud applications and authentication technologies (SSO, SAML, Secure Key Exchange).
Strong knowledge of compliance and control frameworks including SOX, ITGCs, and SOD.
Ability to troubleshoot SAP access provisioning issues across hybrid environments.
Strong collaboration skills and ability to work with cross‑functional teams, including audit, infrastructure, IAM, and business stakeholders.
Excellent documentation, communication, and facilitation skills.
A continuous improvement mindset and a strong sense of ownership.
Proven ability to work independently and drive solutions forward.
Benefits
Medical, Vision, and Disability insurance
401(k) with company match
Paid maternity and paternity leave
Tuition assistance
Employment Type Full‑time | Mid‑Senior level | Information Technology | Manufacturing
#J-18808-Ljbffr