This position works within the Governance Risk and Compliance team and is responsible for user access management, role maintenance, and production support within the business application landscape. The incumbent will analyze, recommend and implement activities in these areas of responsibility to meet the needs of the business units, while maintaining compatibility across applications/systems.
The position is also tasked with understanding, documenting, and troubleshooting any potential Separation of Duty related issues within each system, and advising on how they are remediated or mitigated.
This position reports to the Governance, Risk and Compliance Manager along with the Governance, Risk and Compliance Analyst. The incumbent works closely with the various system support resources to manage user access and roles in each system.
Primary internal contacts of the incumbent include IT Leadership, IT Process Leads, Business Process Owners, Business Process Leads, Application Owners, Business Unit IT Managers, and the Security Administrators.
The following accountabilities are to be carried out in a manner consistent with the spirit and philosophy outlined in The Andersons' Statement of Principles:
Create and maintain user roles and security profiles for all transactional applications within the business application landscape.
Lead role change activities including providing assistance/guidance to the business and technical teams in understanding the defined roles and their effect on the implementation of business processes.
Assist change management and business resources to mitigate Segregation of Duties violations via implementation of mitigating controls or redesign of user roles.
Work with the Security Administrators to ensure that the roles have been properly defined, maintained, and assigned.
Plan, communicate, and coordinate key audit/risk related activities such as Segregation of Duties reviews.
Maintain security policies and documentation of user roles.
Troubleshoot security errors efficiently and accurately.
Develop an understanding of the Statement of Principles so as to conduct all operations in a manner consistent with the philosophy contained therein.
· Bachelor’s Degree in related discipline or 5 years+ experience in IT
· 3+ years experience in application security - users and roles
· Understanding of Active Directory authentication preferred
· Audit and compliance experience in Sarbanes-Oxley / publicly traded commercial environment preferred
· Strong customer focus and analytical thinking ability
· Strong interpersonal and communication relationship skills
Note: The statements herein are intended to describe the general nature and level of work being performed, but are not to be seen as a complete list of responsibilities, duties, and skills required of personnel so classified. Also, they do not establish a contract for employment and are subject to change at the discretion of the employer. The Andersons is a Drug-Free Workplace.