Create Alert
Apply now »

SAP Access Management Lead

Function:  Technology
Location: 

Warsaw, WN, PL

Work Arrangement:  Hybrid

A close-up of a logoDescription automatically generated with medium confidence

ABOUT THE WELLA COMPANY

Together, WE enable individuals to look, feel, and be their true selves.

Wella Company is one of the world’s leading beauty companies, comprised of a family of iconic brands such as Wella Professionals, Clairol, OPI, Nioxin and ghd. With 6,000 employees globally, presence in over 100 countries, Wella Company and its brands enable consumers to look, feel, and be their true selves. As innovators in the hair and nail industry, Wella Company empowers its people to delight consumers, inspire beauty professionals, engage communities, and deliver sustainable growth to its stakeholders.

For additional information about the Wella Company please visit www.wellacompany.com.

ABOUT THE ROLE

Job Title: SAP Access Management Lead

Department: IT / Technology - Functional Platform – SAP

Reports To: Platform Lead SAP

Location: Warsaw, Poland.

The SAP Access Management Lead is accountable for designing, governing, and operating SAP security and access management across Wella’s global SAP ecosystem, including ECC, S/4HANA, and connected platforms. This role ensures that the right people have the right access at the right time, safeguarding company data, IP, and operations while complying with regulatory frameworks (e.g. SOX, GDPR, ISO 27001).

The role combines strategic leadership and hands-on governance, owning the target operating model, segregation of duties (SoD) framework, access management processes, and vendor-delivered services. The SAP Access Management Lead partners closely with Cybersecurity, Audit, SAP Basis, and Business Owners to align access policies with enterprise architecture, drive transformation, and embed secure-by-design principles across SAP platforms.

KEY RESPONSIBILITIES

 

1. Governance & Strategy

  • Establish and own the SAP access management target operating model (business + IT)
  • Define and operate global SoD ruleset, partnering with access/risk owners to mitigate risks
  • Own all SAP access management controls, including SOX compliance
  • Develop SAP security and access management strategies, roadmaps, and transformation initiatives
  • Drive continuous service improvements in line with best practice and regulatory changes

2. Policy, Standards & Control

  • Own and enforce SAP access management policies, standards, and procedures
  • Ensure quarterly access recertifications, joiner/mover/leaver processes, and mitigating controls are executed
  • Monitor SAP license consumption and drive corrective actions
  • Ensure security controls are embedded in new and upgraded SAP applications
  • Act as point of contact for audits, owning remediation of findings

3. Provisioning & Operations

  • Oversee end-to-end provisioning, de-provisioning, and access lifecycle processes
  • Ensure automation, efficiency, and transparency in access workflows
  • Manage BAU vendor services for SAP access management, ensuring SLAs and performance targets are met
  • Oversee access-related incidents and breaches, ensuring swift resolution

4. Transformation & Documentation

  • Lead SAP security transformation initiatives in collaboration with Audit and Cybersecurity
  • Build repeatable processes, methods, and tools for access management across Wella
  • Ensure complete and current documentation for all SAP security processes and controls

5. Leadership & Collaboration

  • Provide strategic leadership, mentoring, and guidance to SAP access/security teams
  • Collaborate with Cybersecurity, Basis, Enterprise Architecture, and business stakeholders
  • Communicate complex technical concepts to non-technical stakeholders
  • Drive change and ensure alignment across diverse global teams

 

WHAT WE WANT YOU TO BRING ALONG

 

Deep knowledge of SAP roles, authorizations, and access conceptsExpertise in SoD frameworks, access certification, and GRC tools (SAP GRC, SailPoint ARM)Strong understanding of identity governance, compliance, and regulatory requirements (SOX, GDPR, ISO)Hands-on experience with ECC and S/4HANA SAP securityProven leadership in vendor management, audits, and change deliveryExcellent problem-solving, stakeholder engagement, and communication skillsBachelor’s degree in Computer Science, Information Systems, or related fieldSAP Security or GRC certification preferred10+ years in SAP security and access management within global organizationsExperience implementing access control in regulated industriesTechnical expertise in SAP GRC, SailPoint ARM, and SAP core securityFamiliarity with infrastructure security and modern identity governance tools

Key Performance Indicators (KPIs):

  • Access Risk KPIs: % of users with SoD violations, % mitigated risks, role recertification completion rate
  • Operational KPIs: Access provisioning SLA adherence, turnaround time for access requests, incident closure time
  • Audit & Compliance KPIs: Audit readiness score, % of roles reviewed quarterly, policy violation trends
  • Efficiency KPIs: % of access provisioning automated, # of access issues escalated, reduction in dormant users

Apply now »