Ready to make an Impact?

At Sobeys, making work meaningful is what we do. As we continue down the path of our digital transformation, we are looking for top talent who want to be part of this exciting journey.  Our Identity and Access Management team is looking for a seasoned team member who is passionate about Cyber Security and has experience taking access management to the next level. Watch our Director of Cyber Security, Angela Mathies, discuss our exciting work and why she chose Sobeys: https://vimeo.com/696132783/f544c1efaa

Ready to make an Impact?

At Sobeys, making work meaningful is what we do. As we continue down the path of our digital transformation, we are looking for top talent who want to be part of this exciting journey.  Our Cyber Security Team is looking for a seasoned team member who is passionate about Cyber Security and has experience taking SAP Roles Based Security to the next level.

You are a builder, influencer, and change agent

In this exciting role, you will be working alongside a team of high-performing Cyber Security professionals who are skilled and knowledgeable in all facets of Cyber Security and SAP. You will engage in Role Management such as updates related to role creation, maintenance, and design. From enterprise architecture to operational technology, you will help Sobeys continue to advance as the nationally recognized gold standard in grocery and pharmacy.

Sobeys Inc. is investing big in technology – Join us and invest in your future

We are on a journey to completely transform how we do business, and we offer a hybrid work model with the opportunity for additional flexibility.

Join us and you’ll be working with:

• Leading tools and systems in our modern infrastructure.
• A data-driven culture.
• Strong, collaborative team of energetic and experienced security experts.

This is an outstanding opportunity to join a leading Canadian company with a clear vision of their future in Cyber Security.  Are you ready to be part of this success story? #cyberatsobeys #DigitalatSobeys #LI-Hybrid

Responsibilities:

• RBS maintenance, including:

T-code requests for resource position
SAP errors and SU53 screens
RBS log submissions: T-code Addition/ Modifications/ Removals
Security IAM issues/questions assistance
Review of privileged access role applications and approval for users assigned (CFIN)

• RBS auditing, including privileged access role t-code approvals and monthly review for ECC sensitive t-codes.
• Update RBS Maintenance Logs with changes submitted for roles both ECC and CFIN, lead weekly meetings for both the above logs, provide Approval/Rejections of changes, and provide final approval of testing for RFC.
• Maintain Role Approvals for all QA business roles, IT roles approvals and in Production.
• Combination Approvals: enforce Sobeys practice of least privilege for resources to complete their duties by employing ZSECURE as a resource to highlight conflicts.
• Conduct Semi- Annual Role Review (Spring and Fall) across all Production Environments.
• Collaborate with the Identity and Access Management team to review/consult on Role Approver list for all SAP environments, address any issues with RBS log testing, fielding any questions on Sub roles to be applied.
• Monitoring and mitigating access conflicts, including the review of all current ECC roles for updates as the department structure changes, review of tcodes within a role for usage on resource’s accounts, and to help the business understand business changes must also be reflected through RBS tcodes changes on roles.

Requirements:

• An Undergraduate degree and a minimum of 3 years relevant experience.
• Knowledge and experience in the field of Role based Security in SAP.
• Accounting/Finance background with respect to Segregation of Duties is preferred.
• Experience in Access Controls Security including SAP and GRC (required), UNIX, Windows (AD), IBM Tivoli Identity Manager, and OS400 is an asset.
• Knowledge and experience in the field of information and network security practices, designs, tests, and processes.
• Certification as a CISSP or CISM an asset.
• Experience in Jira/Confluence and VPN preferred.
• Ability to effectively prioritize and execute tasks in a high-pressure environment.
• Ability to effectively communicate with all levels and areas of the business.
• 24/7 operations rotation.

#LI-Hybrid