Application Controls Engineer, Enterprise Platform, SAP Security

About Astellas

Astellas is a global life sciences company committed to turning innovative science into VALUE for patients. We provide transformative therapies in disease areas that include oncology, ophthalmology, urology, immunology and women's health. Through our research and development programs, we are pioneering new healthcare solutions for diseases with high unmet medical need. Learn more at Astellas.com (https://www.astellas.com/en) .

Are you driven to make a real difference in the lives of patients

We're seeking passionate individuals who thrive in dynamic environments, embrace new ideas, and aren't afraid to take intelligent risks. People who act with unwavering integrity and are deeply committed to making a tangible impact.

Purpose And Scope

As an Applications Controls Engineer, you will be a crucial player in driving our digital initiatives forward in our agile organization. Our agile operating model consists of two components – Digital Capability and Digital Execution. Digital Execution is about aligning multiple missions around business goals and facilitating collaboration on a larger scale. Digital Capability, on the other hand, will focus on the growth and development of individuals within a specific area of expertise. This dual structure enables us to scale agile practices efficiently while maintaining a focus on both product development and individual skill enhancement.

An Application Controls or SAP GRC (Governance, Risk, and Compliance) Engineer is a specialized role within DigitalX, focusing on the design, implementation, and maintenance of control systems and compliance mechanisms within SAP and other Enterprise Platforms and applications. This position plays a crucial role in ensuring that Enterprise Platforms & Applications are secure, compliant with regulatory standards, and aligned with the organization's risk management strategies. The role requires a blend of technical SAP expertise, a deep understanding of governance, risk, and compliance (GRC) principles, and the ability to apply these in a practical, business-oriented manner.

You will be at the forefront of implementing innovative solutions and will have the opportunity to work on cutting-edge technologies in your field.

Essential Job Responsibilities

• SAP GRC Configuration and Management: Configure, manage, and optimize SAP GRC modules, including Access Control, Process Control, and Risk Management, to ensure effective governance, risk mitigation, and compliance with internal and external regulations.
• Application Control Implementation: Design and implement robust application controls within SAP and other Applications/systems to safeguard against unauthorized access, data breaches, and fraud. Ensure controls are in place for critical business processes and are aligned with best practices.
• Compliance and Auditing: Conduct regular audits and compliance checks within SAP and other JSOX-related systems to identify potential vulnerabilities or non-compliance issues. Work closely with internal and external auditors to facilitate audits and address findings.
• Risk Assessment and Mitigation: Perform risk assessments related to SAP and other applications and GRC processes. Develop and implement strategies to mitigate identified risks and ensure that risk management practices are integrated into the Enterprise platforms and applications.
• Incident Response and Resolution: Respond to security incidents and compliance breaches within SAP and other systems. Collaborate with DigitalX cybersecurity teams to investigate incidents, implement corrective actions, and prevent future occurrences.
• Training and Support: Provide training and support to SAP users on GRC processes and application controls. Develop user guides, training materials, and support documentation to enhance understanding and compliance.
• Continuous Improvement: Continuously monitor and evaluate the effectiveness of SAP GRC processes and controls. Recommend and implement improvements to enhance security, compliance, and efficiency.
• Stakeholder Collaboration: Collaborate with DigitalX, business units, and external partners to ensure SAP GRC initiatives align with business objectives and technology strategies. Communicate effectively with stakeholders to provide updates and gather feedback.
  
  

Required

• Bachelors or Master's degree in relevant field, e.g., Computer Science, Data Science, Finance.
• SAP GRC Expertise: Strong technical knowledge of SAP GRC modules and functionalities, including experience with configuration and management of Access Control, Process Control, and Risk Management.
• Understanding of Application Controls: Deep understanding of application control frameworks and the ability to design and implement controls within SAP to mitigate risks.
• Risk Management and Compliance: Knowledge of risk assessment methodologies, compliance requirements (e.g., JSOX, GDPR), and the ability to apply these in an SAP and other relevant enterprise applications context.
• Analytical Skills: Excellent analytical and problem-solving skills, with the ability to identify issues, analyze complex data, and develop effective solutions.
• Technical Proficiency: Familiarity with SAP architecture, security principles, and data protection practices. Proficiency in relevant programming languages and technologies is a plus.
• Communication: Strong communication and interpersonal skills, with the ability to explain complex GRC concepts to non-technical stakeholders and collaborate effectively across teams.
• Adaptability: Ability to adapt to changing regulatory environments and technology landscapes. A willingness to continuously learn and stay updated with the latest SAP GRC developments.
  
  

Working Environment

Astellas Global Capability Centres – Overview

Astellas Global Capability Centres (GCCs) are strategically located sites that give Astellas the ability to access talent across various functions in the value chain and to co-locate core capabilities that are currently dispersed. âOur three GCCs are located in India, Poland and Mexico.â

â_ _The GCCs will enhance our operational efficiency, resilience and innovation potential, enabling a timely response to changing business demands.â

â_ _Our GCCs are an integral part of Astellas, guided by our shared values and behaviors, and are critical enablers of the company's strategic priorities, sustainable growth, and commitment to turn innovative science into VALUE for patients.

What awaits you at Astellas

• Global collaboration: Become part of a connected global business of like-minded life science leaders, all dedicated to improving patients lives worldwide.
• Real-world patient impact: Contribute to transformative therapies that reach patients around the world, knowing your work makes a difference every day.
• Relentless Innovation: Join a company at the forefront of scientific breakthroughs, where you'll have the opportunity to shape the future of healthcare.
• A Culture of Growth: Chart your own course within a supportive environment that values your contributions, champions your development, and empowers you to pursue your passions.
  
  

Our Organizational Values and Behaviors

Values:Innovation, Integrity and Impact sit at the heart of what we do.

Behaviors: We come together as One Astellas , working with courage and a sense of urgency . We are outcome focused and consistently take accountability for our person

Category PlatformX

Astellas is committed to equality of opportunity in all aspects of employment.

EOE including Disability/Protected Veterans