Primary Purspose: The Manager III, SAP Security & GRC is responsible for leading SAP Security, Identity & Access Management (IAM), and Governance, Risk & Compliance (GRC) operations in support of the Retail Spine transformation, a business led, IT enabled modernization initiative aimed at strengthening long term competitiveness, improving operational efficiency, and establishing future state enterprise capabilities. This leader manages a team of SAP security analysts and GRC specialists responsible for role design, access controls, compliance, and audit readiness across all SAP S/4HANA and integrated systems. The Manager III partners closely with the SAP Functional teams, business process owners, Audit, InfoSec, Systems Integrator, and third party technology providers to ensure secure, compliant, and scalable SAP operations that enable Retail Spine program success. Duties & Responsibilities: • Provide strategic and operational leadership across SAP Security and GRC functions, ensuring a secure, compliant, and well-governed technical landscape spanning S/4HANA, BTP, Fiori, and all integrated systems within the RISE with SAP environment. • Own the SAP role design standard, including role catalog governance, authorization concept, segregation of duties (SoD) frameworks, mitigation controls, and access request workflows ensuring designs are clean core aligned and sustainable across the programme lifecycle. • Define and govern identity and access management integration standards, including SSO, MFA, and Azure AD/Entra ID federation, in partnership with Enterprise Security and SI architects ensuring secure, scalable identity patterns are established and enforced across the SAP landscape. • Lead SAP GRC platform operations covering Access Control (AEM, ARM, BRM, EAM), Firefighter and Emergency Access Management processes, periodic access reviews, SoD conflict analysis, and continuous controls monitoring maintaining audit-ready posture at all times. • Own SOX, PCI, GDPR, and internal and external audit readiness for the SAP landscape, including access control evidence management, risk logs, mitigation plans, and remediation tracking in close partnership with Internal Audit, External Audit, and Enterprise InfoSec. • Ensure security is embedded across the full release lifecycle covering transport reviews, role change impact assessments, interface security validations, and landscape change controls operating consistently across agile, hybrid, and waterfall delivery models. • Govern the security obligations and deliverables of the SI and vendor partners, ensuring secure solution design, adherence to established standards, quality of security-related work products, and timely risk escalation and remediation. • Partner with SAP Technology leadership and Solution Architects to define and maintain secure solution patterns, hardening standards, and security architecture aligned to the RISE with SAP shared responsibility model and Retail Spine future state architecture. • Establish and maintain KPIs and operational metrics for SAP Security and GRC functions including role change cycle time, access request SLA adherence, SoD remediation velocity, and audit finding closure rates and drive continuous improvement through automation and process optimization across IAM and GRC workflows. • Provide security leadership during go-lives, cutovers, system refreshes, environment provisioning, and major Retail Spine transformation waves ensuring security controls are validated, access is appropriately provisioned, and risk is formally accepted or mitigated prior to each milestone. • Coach and develop SAP security analysts and GRC specialists, building capability in cloud-native SAP security, BTP security patterns, identity management, and emerging technology risk fostering a strong security engineering culture aligned to the demands of a modern SAP transformation. Basic Qualifications: • Bachelor's degree in Information Technology, Cybersecurity, Computer Science, or related field. • 10+ years of experience in SAP Security and SAP GRC Access Control. • 3-5+ years leading security or technical teams in large, complex SAP landscapes. • Strong hands on experience with SAP role design, SoD, Firefighter, GRC Access Control, and audit/compliance frameworks. • Working knowledge of SAP S/4HANA, HANA, Fiori, SAP BTP, and integrated security architecture. • Experience partnering with System Integrators and managing multi vendor delivery models. • Strong understanding of SOX, PCI, GDPR, and enterprise security standards. • Excellent communication, stakeholder engagement, and leadership skills. Preferred Qualifications: • Master's degree in Cybersecurity, Technology Management, or related discipline. • SAP or security certifications (e.g., SAP Security, SAP GRC, CISM, CISSP, CISA). • Experience supporting large scale SAP transformations, including S/4HANA migrations or RISE with SAP models. • Knowledge of identity governance (IGA), privileged access management (PAM), and cloud security patterns. • Background in retail, consumer goods, or other high volume transaction environments.