Rivian logo

Staff SAP Security & GRC Analyst

🔍 Found ClimateTechList useful?

ClimateTechList is free for job seekers, no registration required, and I, Steven, run it by myself at cost part-time.

The site gets about 30,000-40,000 users a month. Help support this site and make it easier for other future climate job seekers!

You can buy me a coffee to support the site below. Thanks!

Job Description

About Rivian Rivian is on a mission to keep the world adventurous forever. This goes for the emissions-free Electric Adventure Vehicles we build, and the curious, courageous souls we seek to attract. As a company, we constantly challenge what’s possible, never simply accepting what has always been done. We reframe old problems, seek new solutions and operate comfortably in areas that are unknown. Our backgrounds are diverse, but our team shares a love of the outdoors and a desire to protect it for future generations. Role Summary As a Staff SAP Security and GRC Analyst, you will leverage your technical expertise in SAP GRC risk analysis, configuration of GRC and complex security roles. Your responsibility will span across implementation and support projects of enterprise finance and supply chain business of organization. You will add value by independently mapping Fiori apps and ABAP transaction to correct business process, support new configuration of new application, enhancement, and post implementation support that would be delivered by Security team. As Senior SAP Security and GRC analyst you will design and deliver solutions to improve the security, work on Governance, Risk, and Compliance (GRC) program initiatives. Competence on job-based roles, Fiori space and pages for business task mapping. This position will be located at our Normal, IL facility and report directly to the Sr. Manager, ERP Development. Responsibilities Collaborate with business stakeholders and functional teams to understand requirements, translate them into security requirement and build scalable authorization solutions that meet the needs of an exponentially growing organization. Design, develop and implement SAP Security solutions for new projects and ongoing enhancements across the core modules of SAP S/4HANA, SAP Fiori and SAP BTP. Participate in multiple parallel projects through activities including but not limited to creation of new roles based, update existing roles, user account setup to multiple test phases , cutover and hyper-care support. Support mass load change of security objects leveraging scripts, authorization and Fiori debugging, triage complex security problems, work with technical/functional team with perception of urgency. Assist in implementation and maintenance of SAP security controls and procedures. Support the administration of Governance Risk and Compliance system which includes access control, risk management, emergency access request, business role management and compliance reporting. Accountable to maintain SAP users, authorizations, roles, GRC risks, SOD, mitigation and audit reviews for S/4 HANA and FIORI security for setting up catalogs and groups, Target mapping of semantic object and action. GRC implementation, automation, upgrade Access risk analysis, Access request management, business role management, and emergency access management application imbedded GRC/S4. Support different SAP testing cycle conducted by testing team. Provide Support SAP GRC for access management, risk analysis, role management, risk assessment, and emergency access functionality. Coordinate UAR review, and get all review completed by reviewers. Complete other assigned duties that may be tasked Qualifications 8+ years of experience as SAP GRC and Security consultant Bachelor’s degree in Computer Science, Information Technology, or related field (or equivalent work experience) Implementation experience across multiple modules of SAP ECC or SAP S/4HANA. Experience working with internal and external Auditing teams. Implementation experience across multiple modules of SAP ECC or SAP S/4HANA. Preferably on the manufacturing modules such as PP, QM, PM, EWM, etc. Must have hands-on experience in designing and developing new roles and authorizations in ECC or S/4HANA and with GRC Access Control and Risk Management modules. Experience in implementing authorizations in SAP BTP and SAP Fiori is beneficial. Ability to prioritize tasks and manage multiple projects simultaneously. Excellent problem-solving and analytical skills Strong communication skills Comfortable working in a collaborative environment Equal Opportunity Rivian is an equal opportunity employer and complies with all applicable federal, state, and local fair employment practices laws. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, ancestry, sex, sexual orientation, gender, gender expression, gender identity, genetic information or characteristics, physical or mental disability, marital/domestic partner status, age, military/veteran status, medical condition, or any other characteristic protected by law. Rivian is committed to ensuring that our hiring process is accessible for persons with disabilities. If you have a disability or limitation, such as those covered by the Americans with Disabilities Act, that requires accommodations to assist you in the search and application process, please email us at [email protected]. Candidate Data Privacy Rivian may collect, use and disclose your personal information or personal data (within the meaning of the applicable data protection laws) when you apply for employment and/or participate in our recruitment processes (“Candidate Personal Data”). This data includes contact, demographic, communications, educational, professional, employment, social media/website, network/device, recruiting system usage/interaction, security and preference information. Rivian may use your Candidate Personal Data for the purposes of (i) tracking interactions with our recruiting system; (ii) carrying out, analyzing and improving our application and recruitment process, including assessing you and your application and conducting employment, background and reference checks; (iii) establishing an employment relationship or entering into an employment contract with you; (iv) complying with our legal, regulatory and corporate governance obligations; (v) recordkeeping; (vi) ensuring network and information security and preventing fraud; and (vii) as otherwise required or permitted by applicable law. Rivian may share your Candidate Personal Data with (i) internal personnel who have a need to know such information in order to perform their duties, including individuals on our People Team, Finance, Legal, and the team(s) with the position(s) for which you are applying; (ii) Rivian affiliates; and (iii) Rivian’s service providers, including providers of background checks, staffing services, and cloud services. Rivian may transfer or store internationally your Candidate Personal Data, including to or in the United States, Canada, the United Kingdom, and the European Union and in the cloud, and this data may be subject to the laws and accessible to the courts, law enforcement and national security authorities of such jurisdictions. Please note that we are currently not accepting applications from third party application services.

ClimateTechList.com logo

Rivian number of job openings over time by month

ClimateTechList is the web's largest aggregator of climate, clean tech, renewable energy & green jobs. Contact us if you'd like to use partner or use our current or historical jobs data in any way.

Apply to Job

👉 Please mention that you found the job on ClimateTechList, this helps us get more climate tech companies listed here, thanks!

Get a referral to Rivian

If possible, try to get a warm intro/referral to Rivian before applying! Do a LinkedIn search to see who you may know at the company. See this LinkedIn post from Steven for more details on this tactic.

All job openings from Rivian

Join ClimateTechList Talent Collective

Want to be matched with companies directly? Apply to the talent collective.

Here's how it works:

  1. You submit an application

  2. We'll share your profile with climate tech companies potentially interested in chatting with you

  3. We'll reach out if there's a company interested in talking to you.

Join ClimateTechList Talent Collective

Want to be matched with companies directly? Apply to the talent collective.

Here's how it works:

  1. You submit an application

  2. We'll share your profile with climate tech companies potentially interested in chatting with you

  3. We'll reach out if there's a company interested in talking to you.