IT Security Lead - Global SAP

The Security Lead – Global SAP is a critical member of the Owens Corning Global Information Services (GIS) Security team. The incumbent is responsible for driving the enterprise-wide SAP security strategy. This role ensures the protection and integrity of SAP systems—both on-premises and cloud-hosted applications, including SAP ECC, SAP S/4HANA, and related components—by overseeing access governance, compliance, and risk mitigation efforts.

This position plays a dual role: providing strategic direction for SAP security initiatives and managing the day-to-day execution of identity and access controls, with supervisory responsibility for external operations resources. The role involves close collaboration with IT, finance, audit, and business stakeholders to implement and maintain robust security frameworks, tools, and processes. The Security Lead – Global SAP also manages the performance of external partners delivering SAP Identity and Access Management (IAM) services globally. The ideal candidate is a proactive leader with a strong foundation in SAP security architecture, a deep understanding of compliance frameworks, and a passion for continuous improvement. Curiosity, motivation to learn, integrity, and honesty are essential traits for success in this role. The Global SAP Security Lead must be comfortable working in a dynamic environment with multiple tasks and deadlines and must be able to adjust priorities as needed. A thorough background check is required, and the candidate must be free of any technology-related crimes or violations of security policies.

Reports to:                          Leader, GIS – Governance Risk and Compliance

Span of Control:                Individual Contributor; will lead ~4 external resources

Knowing Our Businesses and their Strategies

• Create and manage conversations with key stakeholders that drive understanding, action, and follow-up of strategy.
• Provide guidance and have knowledge of cyber security processes, solutions, and results
• Understand the strategic direction of the company’s businesses; execute functional strategies to support and enhance business results and be knowledgeable of the project work that supports this direction and implications to the business.

Executing Strategy

• Design, implement and govern of SAP security architecture across ECC, S/4 HANA, and cloud platforms, aligning with enterprise risk management strategies and regulatory compliance (e.g., SOX, GDPR, NIST).
• Collaborate with cross-functional teams (Basis, Internal Audit, Finance and Business Process Owners) to proactively identify and mitigate security risks while enabling business agility.
• Lead SAP security through platform ownership and management of technical controls and processes, including access controls, standards, role administration, solution development, system changes, audit remediation, risk mitigation, segregation of duties (SoD), vulnerability management, and other related functions.

• Provide strategic and operational leadership for SAP security across both on-premises and cloud-based SAP environments, including SAP Business Technology Platform (BTP).
• Provide SAP security expertise for system implementations, upgrades, and enhancements.
• Partner with project teams to integrate security requirements into solution design and delivery.
• Design, implement, and maintain SAP role-based access controls, ensuring alignment with business needs and compliance requirements.
• Partner with GIS security leaders and business stakeholders to develop and execute a regular schedule of audits for SAP security technologies, processes, and controls.
• Provide oversight, direction, and prioritization of work for the SAP Security operations team.
• Develop and drive metrics, service levels, and management systems to ensure consistent application of SAP security standards by the SAP Security operations team.
• Work closely with the Internal Controls (SOX compliance) team, as well as internal and external auditors, to provide system data, process documentation, and security expertise to demonstrate compliance.
• Conduct ongoing audits based on OC's security policies, standards, and industry frameworks such as ISO 27001, NIST, GDPR, and SOX.
• Perform and review risk assessments, analyze the effectiveness of information security controls, and provide actionable recommendations.

Influencing in the Function

• Demonstrate strong attention to detail to ensure integrity, accuracy and consistency of SAP security configurations, user roles, and audit logs, ensuring alignment with compliance standards and minimizing risk to critical business operations.
• Identify areas of waste (process, time, etc.) and ideate and execute action plans to create productivity

• Lead or participate in special projects that support the long-term strategic goals of the business and/or organization.
• Identify opportunities to improve the effectiveness, value, and perception of the function.
• Continuously identify and implement improvements to SAP security access provisioning through automation and process optimization.
• Evaluate existing processes and assess the potential of new tools to enhance their efficiency and effectiveness

Developing Talent

• Provide impactful peer-to-peer leadership to others, contributing to their development
• Develop internal SAP security talent and guide the performance of global external partners delivering IAM services, fostering a culture of accountability, innovation, and continuous improvement aligned with enterprise goals.
• Capture the value of continuous learning and ongoing development opportunities

MINIMUM QUALIFICATIONS:

• Bachelor’s degree in computer science, Information Systems, Information Technology, or equivalent experience.
• 5+ years of experience in information systems with a strong background in access controls.
• 3+ years of experience in SAP security across both on prem and cloud SAP environments.

PREFERRED QUALIFICATIONS:

• Experience with SAP GRC Process Controls
• Experience with SAP BTP and SAP Cloud Identity Services

EXPERIENCE KNOWLEDGE, SKILLS AND ABILITIES:

• Strong Knowledge of SAP security tools, including SAP GRC or similar.
• Demonstrated ability to distinguish between essential security requirements and ideal practices and effectively communicate these to leaders and stakeholders.
• Competency in project management principles, tools, and techniques, with a proven ability to deliver large-scale projects from concept to deployment.

• Strong knowledge of SAP cloud security, including SAP BTP, SAP Cloud Identity Services, and integration with identity providers such as Azure AD.
• Proven ability to align and integrate information security strategy with business goals.
• Experience recommending and implementing security measures to protect against threats and privacy risks.
• Strong track record of developing processes and tools to support daily operations.
• Ability to build trust and engage effectively across GIS and Owens Corning’s business units.
• Demonstrated self-starter with curiosity and a continuous improvement mindset.
• Experience working in a highly matrixed, global organization across functional, geographic, and cultural boundaries.
• Strong organizational skills with the ability to manage multiple priorities and deliver results.
• Team player; ability to energize and engage others.
• Skilled in communicating with both technical and non-technical audiences to ensure mutual understanding of security requirements.
• Service-oriented with high personal standards and a hands-on work style.
• Ability to travel up to 10%, including international.

#LI-KW1

#LI-ONSITE