Director, Enterprise Architecture – SAP Security

About The Role

Our Novartis Information Security & Compliance (ISC) group continues to evolve through 2023! As part of our continued evolution we are looking for a Director, Enterprise Architecture – SAP Security to join our team!

In a rapidly evolving landscape, the Director, Enterprise Architecture – SAP Security is a pivotal role, responsible for the comprehensive security of our complex SAP environment that ranges from SAP NetwaeverNetWeaver to S4/HANA and cloud technologies.

As we continue our journey, you will be tasked with designing and supervising robust cybersecurity measures across the organization hybrid landscape.

You will be expected to leverage your expertise in SAP technologies as well as its infrastructure and supporting processes and components to ensure that our systems and our data is secure and meets all relevant compliance rules required by law or organizational polices.

As a global role, this position will involve close collaboration with stakeholders across different geographies to harmonize the required efforts throughout the organization.

Your responsibilities include, but are not limited to:

• Strategic Roadmap Development: Formulate and maintain a strategic SAP cybersecurity roadmap that aligns with the overall business strategy, ensuring it supports and advances business objectives while mitigating security risks.
• Policy Development and Maintenance: Develop and maintain comprehensive security policies, standards, and procedures to support the secure operation of the company's SAP systems and compliance with regulatory requirements.
• Technology Review and Approval: Lead in researching, reviewing, and approving new SAP technologies and solutions. Ensure that these align with our security policies and standards, and that they can be securely integrated into our existing architecture.
• Risk and Vulnerability Identification: Proactively identify and evaluate potential insecure designs and vulnerabilities in our SAP landscape. Design appropriate measures to mitigate the identified risks.
• Operational Support: Act as the subject matter expert in SAP cybersecurity for audits and various projects. Provide guidance, support, and recommendations based on deep cybersecurity knowledge, organizational policies and deep understanding of our SAP landscape.
• Stakeholder Management and Communication: Establish and manage effective communication with stakeholders at all levels of the organization. Translate complex security and compliance requirements into comprehensible information for both technical teams and C-suite executives.
• Architecture Frameworks and Modeling: Leverage extensive knowledge and experience in architectural frameworks and modeling to create and maintain effective, efficient, and secure system designs.
• Technical Documentation: Responsible for creating, updating, and maintaining technical documentation related to our SAP cybersecurity posture, using appropriate tools and methodologies. This includes, but is not limited to, system designs, security policies, incident reports, and audit results.
  
  
  
  

Commitment to Diversity & Inclusion:

We are committed to building an outstanding, inclusive work environment and diverse teams representative of the patients and communities we serve.

Role Requirements

What you will bring to the role:

• University working and thinking level, degree in business/technical/scientific area or comparable education/experience.
• Professional information security certification, such as CISSP, CISM or ISO 27001 auditor / practitioner is preferred. Professional (information system) risk or audit certification such as CIA, CISA or CRISC is preferred
• 5+ years of working architecture experience;
• 5+ years of working experience with SAP Security technologies.
• Experience in reporting to and communicating with senior level management (with and without IT background), with and without in depth risk management background on information risk topics
• Excellent written and verbal communication and presentation skills; interpersonal and collaborative skills.
• Excellent understanding and knowledge of general IT infrastructure technology, systems and management processes
• Experience of sourcing complex IT services, working closely with vendors and making full use of their capabilities
• Proven experience to initiate and manage projects that will affect other divisions, departments and functions, as well as the corporate environment.
• Hands-on experience with the following related SAP tools, technologies: SAP ECC, SAP ABAP and Java stacks, plus SAP IDP; SAP Security (users, roles, authorizations, access reviews), GRC access and process controls, LDAP, SSO, Databases (Hana, SQL, Oracle)
• Hands-on experience with the following SAP applications: ERP, BW, GRC, SolMan, NetWeaver Gateway, SAP PI, Fiori, Hana Cloud; O/S and Application – patches, OSS notes, upgrades; SAP Cloud
  
  
  
  

Desirable

• CSSLP, GSSP, ECCSP, CASS
  
  
  
  

Why consider Novartis? :

743 million. That’s how many lives our products touched in 2022. And while we’re proud of that fact, in this world of digital and technological transformation, we must also ask ourselves this: how can we continue to improve and extend even more people’s lives?

We believe the answers are found when curious, courageous and collaborative people like you are brought together in an inspiring environment. Where you’re given opportunities to explore the power of digital and data. Where you’re empowered to risk failure by taking smart risks, and where you’re surrounded by people who share your determination to tackle the world’s toughest medical challenges.

Imagine what you could do at Novartis! :

Join our Novartis Network: If this role is not suitable to your experience or career goals but you wish to stay connected to learn more about Novartis and our career opportunities, join the Novartis Network here: https://talentnetwork.novartis.com/network

We are Novartis. Join us and help reimagine medicine.

COMMITMENT TO DIVERSITY & INCLUSION:

Novartis embraces diversity, equal opportunity and inclusion. We are committed to building diverse teams, representative of the patients and communities we serve, and we strive to create an inclusive workplace that cultivates bold innovation through collaboration, and empowers our people to unleash their full potential.

Division

Operations

Business Unit

DATA, DIGITAL & IT

Work Location

Tel Aviv

Company/Legal Entity

Novartis Israel

Alternative Country 1

Spain

Functional Area

Technology Transformation

Job Type

Full Time

Employment Type

Regular

Shift Work

No

Early Talent

No