Information Security/GRC Analy

Americold - Atlanta, GA

Americold provides temperature-controlled warehousing and transportation to food producers, restaurants, schools and retail outlets such as grocery stores. We're proud to provide an essential link in the food and beverage industry supply chain, and to play our part in ensuring families across the US and overseas can sit down together to eat.

Based in Atlanta, Georgia, Americold owns and operates 155+ temperature-controlled warehouses in the United States, Australia, New Zealand, China, Argentina, and Canada. In North America we have over 11,000 associates and offer a wide variety of employment opportunities - from warehouse forklift operators and supervisors to accounting, customer support, engineering, transportation, and technology solutions positions.


Primary Responsibility:
Assist the Director of Information Security and Disaster Recovery in maintaining a comprehensive, active and effective information security foundation for the services that the Technical Services Group provides to our internal and external Americold customers. This involves auditing, monitoring, administration and remediation of technical controls to meet IT SOX requirements. This position will independently perform a full range of advanced analytical and technical activities in the area of SAP Security over entire system landscape.

Essential Functions:
Assist in the coordination and achievement of IT SOX audit compliance objectives through stakeholder support and timely execution
Assist with coordination of semiannual enterprise user account reviews, including working with application owners and coaching business reviewers
Perform functional security configuration and maintenance tasks for SAP S4, BW/BI/BOBJ, and GRC Access Control System
Manage and mitigate Segregation of Duty conflicts of both users and roles with Business input using SAP GRC
Monitor and maintain SAP user IDs across non-production and production landscapes
Create SAP transports and works within change management guidelines ensuring that all transports moved into production maintain system integrity
Administer and maintain end user accounts, permissions, and access rights in the SAP S4, BW, BPC, BOBJ, and GRC systems
Creates and maintains SAP roles and authorizations based on business needs
Assists in the preparation and implementation of enterprise cybersecurity awareness training plans
Assists in forensic analysis, incident investigations and emergency incident response
Other duties as assigned.

Qualifications & Experience:
Four-year degree in Information Technology with an information security emphasis - preferred, or equivalent relevant experience.
Minimum of two years of experience in any of the following areas: SAP audit, SAP security design/re-design, SAP GRC Ruleset maintenance
Hands-on SAP GRC and security implementation; exposure to SAP GRC is preferred
Proven experience, clarity and courage to drive an agenda with the ability to influence without direct authority.

Knowledge, Skills and Abilities:
Ability to demonstrate a general knowledge of information security concepts (malware, virus, threats, confidentiality).
Knowledge in HANA database role configuration and user administration
Self-motivated and directed, with keen attention to detail.
Familiar with an international and multi-cultural environment
Ability to work in a team oriented environment.
Strong analytical and critical thinking skills that facilitate research leading to rapid solutions of problems
Ability to routinely multi-task between the tactical and the strategic: ability to work with flexibility, efficiency, enthusiasm, and diplomacy both individually and as part of a complex team effort.

Physical Requirements:
Requires the ability to sit for long periods of time, with frequent interruptions
Requires several hours per day of sitting, getting up and down from chairs, and reaching, or bending
Requires manual dexterity with normal hand and finger movements for typical office work
Talking, hearing, and seeing are important elements of completing assigned tasks
May require travel by car and/or plane for business
May require a visit to facility operations in temperatures at or below freezing
May carry loads related to travel and occasionally lifts, carries, positions, or moves objects weighing up to 20 pounds
Requires the performance of work activities including reasoning, negotiating, instructing, persuading, or speaking with others; and respond appropriately to constructive feedback from executive management
Americold is an Equal Opportunity/Affirmative Action Employer.