Consultant SAP Security & Controls (S&C) – The Americas
Reports to: Manager SAP Security & Controls – The Americas
Business Unit: IT Solutions – SAP
Role Type: Permanent – Hybrid
Location: Mexico
Smurfit Westrock (NYSE: SW) is a global leader in sustainable paper and packaging solutions. Our teams of materials scientists, packaging designers, engineers, and manufacturing experts are united by a shared purpose: Innovate Boldly. Package Sustainably. Guided by our values of integrity, respect, accountability, and excellence, we use science and technology to advance fiber-based packaging solutions worldwide.
Our Technology organization is undergoing a major transformation. At the center of this transformation is the Global SAP Centre of Excellence (CoE), which drives SAP strategy, governance, and alignment with business objectives across the company. The CoE oversees the global SAP ecosystem, ensuring the effective integration of technology and business processes while enabling innovation, operational excellence, and continuous improvement across SAP functions worldwide.
We are looking for forward-thinking technologists who can help strengthen foundational technology capabilities, reduce complexity, and support the digital transformation of our global SAP landscape.
The Consultant SAP Security & Controls (S&C) – The Americas is responsible for supporting the security and authorization framework across Smurfit Westrock’s SAP environment. This role ensures the effective implementation of security standards, access controls, and governance processes across SAP systems while safeguarding the integrity and compliance of the SAP landscape.
Working closely with security teams, auditors, compliance functions, and technical architects, this role helps maintain robust SAP security controls and ensures alignment with internal policies and regulatory requirements.
The role operates within a global environment and may require occasional travel to the Global SAP CoE hubs located in France or Mexico.
Support SAP security governance processes and ensure adherence to security standards and best practices.
Assist in the development and implementation of security policies and controls across SAP systems.
Ensure compliance with internal policies and regulatory frameworks related to IT security.
Support security monitoring and risk mitigation activities within the SAP landscape.
Manage SAP user provisioning, de-provisioning, and role assignments in line with security policies.
Maintain SAP GRC controls and monitor Segregation of Duties (SoD) risks.
Review and process critical access requests while ensuring appropriate risk mitigation.
Enforce security access policies for SAP cloud platforms such as SAP BTP, Ariba, Concur, and C4C.
Implement and maintain security controls to protect SAP systems from threats and vulnerabilities.
Conduct periodic security reviews and support internal and external audits.
Monitor security incidents and support remediation activities.
Contribute to continuous improvement initiatives for SAP security processes and controls.
Work with internal teams, external partners, auditors, and compliance functions to manage SAP security requirements.
Collaborate with the GIS CISO organization to ensure security measures align with enterprise standards.
Provide guidance and support to functional teams on SAP security best practices.
Deliver training and support to promote awareness of SAP security standards.
The role is part of the SAP Platforms organization within the Global SAP CoE, which provides the technical foundation for Smurfit Westrock’s global SAP environment. This team manages core SAP infrastructure across on-premise and cloud environments, including Basis administration, security, release management, data management, integration, and technical development.
The SAP Platforms organization ensures the performance, reliability, scalability, and compliance of the SAP landscape while supporting regulatory frameworks such as SOX and other governance standards. By maintaining a secure and scalable SAP technology foundation, the team enables innovation and operational agility across the business.
5+ years of experience in SAP security, IT security, or Governance, Risk & Compliance within SAP environments.
Strong experience with SAP security, authorizations, and access management across SAP systems such as S/4HANA, ECC, and cloud platforms.
Hands-on experience with SAP GRC Access Control and Segregation of Duties management.
Solid understanding of SAP platforms architecture, operations, and integration in complex environments.
Knowledge of security frameworks and compliance standards such as GDPR, SOX, NIST, and ISO 27001.
Experience supporting security audits, risk assessments, and remediation activities.
Strong analytical and problem-solving skills with the ability to troubleshoot SAP security issues.
Bachelor’s degree in Computer Science, Information Systems, Engineering, Business Administration, or a related field (or equivalent experience).
Fluent business English (written and verbal). Additional languages such as Spanish or French are considered a plus.
The Americas
0000