Moderna logo

Senior Systems Engineer, SAP Security

Moderna
Full-time
Remote friendly (Cambridge, MA)
United States
$130,800 - $209,400 USD yearly
IT

Role Summary

Senior Systems Engineer responsible for Moderna’s SAP Security and GRC roadmap, driving access-management procedures, periodic access reviews, and audit readiness across the global SAP landscape. Architect secure, compliant solutions for S/4HANA and adjacent platforms, and support upgrades, implementation and enhancement initiatives for Security and GRC.

Responsibilities

  • Security Governance & Compliance: Define and maintain SAP security guidelines, operating procedures, and SoD framework; own SOX, GxP, and ITGC controls; coordinate testing and remediation; drive periodic user-access reviews and license optimization initiatives.
  • Access Management & GRC: Full-cycle implementation and support of SAP GRC 12.x modules (ARM, ARA, BRM, EAM, access certifications); design, build, and transport security roles across SAP landscapes; leverage CHARM workflows; translate business requirements into technical role designs and custom GRC rules.
  • Architecture & Project Support: Set security and GRC architecture standards for ongoing SAP projects and upgrades; evaluate risk and control impacts of role changes; provide guidance to project teams; coordinate SIT/UAT for security objects and drive cut-over activities.
  • Audit, Monitoring & Reporting: Primary contact for internal/external audit inquiries; deliver evidence and action plans; track KPIs and SLAs; prepare regular metrics for management reporting; lead continuous improvement of monitoring and alerting capabilities.
  • Innovation & AI Enablement: Research and recommend AI/ML solutions for predictive access analytics, risk scoring, and anomaly detection; pilot and operationalize AI features that enhance security intelligence and compliance automation.

Qualifications

  • Education: Bachelor’s degree or equivalent.
  • Overall Experience: 7-8 years of SAP Security & GRC (v10.0+) experience, including S/4HANA and Fiori-role design; deep knowledge of access-management principles, SoD analysis, SOX/GxP compliance, and ITGCs; hands-on with SAP GRC 12.0 modules (ARM, EAM, ARA) and CHARM processes in Solution Manager.
  • Implementation Experience: Experience implementing GRC, supporting security design for Greenfield implementations, upgrades and similar projects.
  • Applications/Solution experience: Security and GRC implementation for SAP Ariba, MDG, GTS, BTP, ATTP.
  • Skills: Strong troubleshooting, attention to detail, commitment to service-level excellence; outstanding communication and collaboration with technical and business stakeholders.

Skills

  • Security and GRC design and implementation
  • SAP GRC 12.x modules (ARM, ARA, BRM, EAM)
  • CHARM workflows and Solution Manager
  • SOX, GxP, ITGC compliance
  • Access management, SoD analysis
  • AI/ML for security analytics and compliance monitoring (preferred)

Education

  • Bachelor’s degree or equivalent

Additional Requirements

  • SAP certifications in Security and/or GRC Access Control (preferred)
  • Global implementation or multi-landscape experience (preferred)
  • Exposure to AI/ML tools for security analytics and compliance monitoring (preferred)
  • Familiarity with SAP licensing models and optimization tactics (preferred)
Apply now
Share this job