Job Description

Site Name:

Bengaluru Luxor North Tower

Posted Date:

Jul 17 2025

Job Purpose-

To be part of ERP Security Team and deliver day to day SAP operations. Dynamically consulting with our team on ERP security knowledge and skills, including but not limited to, User access management and role administration and SoX.

Key Responsibilities-

Day to day management of the team (indirect reports) to provision user access in the ERP applications using the respective ticketing system. Responsible for the approval of designs for new ERP security roles. Responsible for supporting the SAP security and authorization environment. This includes support for all security roles, profiles, Portal groups and detailed knowledge of Profile Generator within the SAP systems. Managing the project team to deliver solutions and processes in support of project objectives and requirements - leading the project team members with clear direction and communication. Define the deployment strategy and prepare and execute the project plan - ensuring the project solution is transition to full support post-delivery. Engage with the wider business obtaining role build requirements. Manage the partners/ internal resource engagement, project plan, budget, risks and issues Provide detailed process improvement ideas. Responsible for identifying, reporting and managing to resolution any non-compliances with SAP security policy, coordinating the actions of Business users, the service provider and Controls and Compliance team Execute and maintain ERP security controls. Work with the internal Controls and Compliance team to support SOX compliance in relation to General IT Controls over the SAP landscape. Responsible for responding to, and acting on, compliance related issues, including those raised by internal and external audit. Drive innovation within the area of SAP security and controls, with a view to optimizing the control environment to enhance the security of our SAP landscape. Work closely with our Information Services team around technical activity and contract management, supporting in BAU and on a project basis as required including supporting new ERP platform implementations as required. To ensure all activities that are completed in the system are fully auditable. Provide periodic reports to the Head of ERP Security and Controls. Develop relationships with stakeholders within the business. Provide support for incidents relating to ERP Security and coordinating with partners to ensure that to follow and achieve the SLA. Develop areas for improving the current processes and suggest the improvements and automation.

Minimum Level of Job-Related Experience Required:

Extensive SAP Security Expertise:

10-13 years of hands-on experience in SAP Security, including authorization concepts, role design, segregation of duties (SOD), and implementation.

Comprehensive SAP Technology Knowledge:

Proficient in SAP ECC, BI, HR, PLM, HR, SOLMAN, HANA DB and BTP security frameworks, with additional expertise in Fiori, BW, BPC, and S4 HANA (preferred).

Governance, Risk, and Compliance (GRC):

In-depth experience with SAP GRC 12.0, including the understanding of configuration and management of Access Control components & Process control management, especially ARA (Access Risk Analysis), rulesets, remediation and about mitigation controls.

Compliance and Audit Expertise:

Strong knowledge of SOX audit requirements, compliance regulations, controls frameworks, and segregation of duties concepts in SAP ERP environments.

Project and Implementation Experience:

Proven track record in SAP security consultation for system rollouts, version upgrades, implementation, and support projects, including the development of requirement specifications, blueprints, and test plans.

Business Process Integration:

Strong understanding of business processes and the ability to align SAP security architecture with organizational goals and operational needs.

Problem-Solving and Optimization:

Experience in identifying and addressing complex security challenges, optimizing SAP security processes, and ensuring effective risk management.

Educational Background:

A graduate in a related discipline or equivalent professional experience- BE/ B Tech/ B Sc in Computer science Or BCA/ MCA

Leadership:

strong communication and leadership skills to collaborate with cross-functional teams and drive successful outcomes

Certification:

SAP Certified Technology Professional, ITIL Certification, CISM will be a plus.

Skills

Project Management, SAP ERP Operations, SAP Governance Risk and Compliance (SAP GRC), SAP Project Management, SAP Security

Why GSK?

Uniting science, technology and talent to get ahead of disease together.

GSK is a global biopharma company with a special purpose - to unite science, technology and talent to get ahead of disease together - so we can positively impact the health of billions of people and deliver stronger, more sustainable shareholder returns - as an organisation where people can thrive. We prevent and treat disease with vaccines, specialty and general medicines. We focus on the science of the immune system and the use of new platform and data technologies, investing in four core therapeutic areas (infectious diseases, HIV, respiratory/ immunology and oncology).


Our success absolutely depends on our people. While getting ahead of disease together is about our ambition for patients and shareholders, it's also about making GSK a place where people can thrive. We want GSK to be a place where people feel inspired, encouraged and challenged to be the best they can be. A place where they can be themselves - feeling welcome, valued, and included. Where they can keep growing and look after their wellbeing. So, if you share our ambition, join us at this exciting moment in our journey to get Ahead Together.

Important notice to Employment businesses/ Agencies

GSK does not accept referrals from employment businesses and/or employment agencies in respect of the vacancies posted on this site. All employment businesses/agencies are required to contact GSK's commercial and general procurement/human resources department to obtain prior written authorization before referring any candidates to GSK. The obtaining of prior written authorization is a condition precedent to any agreement (verbal or written) between the employment business/ agency and GSK. In the absence of such written authorization being obtained any actions undertaken by the employment business/agency shall be deemed to have been performed without the consent or contractual agreement of GSK. GSK shall therefore not be liable for any fees arising from such actions or any fees arising from any referrals by employment businesses/agencies in respect of the vacancies posted on this site.


It has come to our attention that the names of GlaxoSmithKline or GSK or our group companies are being used in connection with bogus job advertisements or through unsolicited emails asking candidates to make some payments for recruitment opportunities and interview. Please be advised that such advertisements and emails are not connected with the GlaxoSmithKline group in any way.

GlaxoSmithKline does not charge any fee whatsoever for recruitment process. Please do not make payments to any individuals / entities in connection with recruitment with any GlaxoSmithKline (or GSK) group company at any worldwide location. Even if they claim that the money is refundable.

If you come across unsolicited email from email addresses not ending in gsk.com or job advertisements which state that you should contact an email address that does not end in "gsk.com", you should disregard the same and inform us by emailing askus@gsk.com, so that we can confirm to you if the job is genuine.