Information Protection Senior Advisor - Evernorth Health Services

Job Summary
The Information Protection Senior Advisor is responsible for designing, implementing, and maintaining robust security protocols across SAP and other IT systems to ensure compliance with internal policies and external regulations.

This role requires deep expertise in SAP security, GRC, and cloud-based solutions, along with strong analytical and communication skills to collaborate effectively with cross-functional teams.

The advisor will play a key role in safeguarding enterprise applications, managing access controls, and supporting audit and compliance efforts.

Key Responsibilities


* Research, analyze, and implement end-user and IT security solutions within SAP and broader IT landscape.


* Collaborate with business and IT teams to gather requirements for roles, interfaces, batch jobs, and troubleshoot security requests.


* Apply IT security and compliance policies to ensure adherence to established standards.


* Manage integrations with Active Directory, SSO, and other identity/access management tools.


* Provide security support for key applications including BTP, SAC, IBP, S4 HANA, HANA DB, and other cloud platforms.


* Develop custom security solutions to meet business needs using approved tools and utilities.


* Secure custom transactions, tables, and programs; promote security development standards and procedures.


* Periodically review and revise application security roles to align with business changes and audit requirements.


* Design and implement user administration solutions for new applications and transition processes to appropriate teams.


* Maintain GRC Segregation of Duties (SoD) and provide analytical support for SoD conflicts.


* Monitor SOX compliance related to security and access management.


* Review SAP security notes for risk assessment and coordinate implementation with Basis and functional teams.


* Support internal, external, and SOX audits; collaborate with compliance teams.


* Participate in SAP security patch reviews and provide on-call support as part of a team rotation.

Qualifications


* Bachelor's degree in Information Technology, Computer Science, or related field.


* Minimum of 10+ of professional experience, including 6+ years in SAP security.


* Experience with at least 1-2 SAP implementations.


* 2+ years of hands-on experience with SAP GRC 12.


* Proficiency in SAP applications including GRC 12, S4 HANA, Solution Manager, BI, ECC, and Fiori.


* Strong understanding of SSO integrations, Active Directory, and OKTA identity/security management.


* Excellent analytical, organizational, and problem-solving skills.


* Strong interpersonal and communication skills with the ability to manage cross-functional relationships.


* Experience in object-oriented design and implementation.


* Ability to work independently, manage multiple priorities, and meet deadlines in a dynamic environment.


* Willingnes...