ERP (SAP) Risk and Compliance Expert - Remote

Job Description: ERP Risk and Compliance Expert

Position Overview

The ERP Risk and Compliance Expert is responsible for supporting risk assessments

and monitoring risks across all SAP ERP systems. This role drives continuous

improvements across the SAP ERP landscape through periodic IT General Controls

(ITGC) assessments. The ideal candidate will have a strong understanding of SAP ERP

systems, risk management, and ITGC controls, and will be adept at identifying and

mitigating risks to ensure the integrity and security of the ERP environment.

Key Responsibilities

1. Risk Assessment Support

• Conduct and support comprehensive risk assessments for all SAP ERP

systems.

• Identify potential risks and vulnerabilities within the SAP ERP

environment.

• Collaborate with cross-functional teams to develop and implement risk

mitigation strategies.

2. Risk Monitoring

• Continuously monitor risks across all SAP ERP systems to ensure timely

identification and response.

• Utilize risk monitoring tools and techniques to track and report on risk

status.

• Provide regular updates and reports on risk levels to senior management

and stakeholders.

3. Continuous Improvement

• Drive continuous improvements across the SAP ERP landscape by

conducting periodic ITGC control assessments.

• Identify areas for improvement in ITGC controls and recommend

enhancements.

• Implement best practices and industry standards to strengthen ITGC

controls and reduce risk.

4. Collaboration and Coordination

• Work closely with IT, security, and compliance teams to ensure alignment

on risk management and control objectives.

• Coordinate with external auditors and regulatory bodies as needed to

support compliance efforts.

• Provide guidance and support to teams on risk management and control-

related matters.

5. Documentation and Reporting

• Maintain accurate and up-to-date documentation of risk assessments,

ITGC control assessments, and risk monitoring activities.

• Prepare and present detailed reports on risk assessment findings, ITGC

control status, and continuous improvement initiatives.

• Ensure documentation and reporting meet regulatory and organizational

requirements.

Qualifications

• Education: Bachelor's degree in Information Security, Computer Science,

Information Systems, or a related field.

• Experience: Minimum of 5 years of experience in SAP ERP risk management,

ITGC controls, or a related area.

• Certifications: Relevant certifications such as CISA, CRISC, or SAP-specific

certifications are preferred.

Skills:

• Strong understanding of SAP ERP systems and their associated risks.
• In-depth knowledge of ITGC controls and risk management frameworks.
• Excellent analytical and problem-solving skills.
• Ability to manage multiple tasks and projects simultaneously.
• Effective communication and interpersonal skills.
• Proficiency in using risk assessment and monitoring tools.

Interested candidates can share their updated resume to rolly.martin@thompsonshr.com