SAP Security Role Design Engineer

Headquartered in Dublin, Ohio, Cardinal Health, Inc. (NYSE: CAH) is a global, integrated healthcare services and products company connecting patients, providers, payers, pharmacists and manufacturers for integrated care coordination and better patient management. Backed by nearly 100 years of experience, with more than 40,000 employees in nearly 60 countries, Cardinal Health ranks among the top 25 on the Fortune 500.

We currently have a full time career position for a SAP Security Role Design Engineer.

Accountabilities in this role

  • Establish strong reporting and metrics to support the program and influence behaviors.
  • Partner with SAP implementation teams to design an appropriate SAP IT control structure that addresses information security and IT regulatory risks
  • Perform analysis of existing role structure, provisioning processes and security designs in place and ensure new systems/enhancements support the design
  • Partner closely with business leads, process owners and IT development teams to design and build SAP security roles to meet the business needs and the controls structure needed to meet company and compliance policies.
  • Produce all supporting documentation related to the security design
  • Troubleshoot SAP security role defects during and after the implementation effort
  • Review existing Cardinal Health SAP implementations to identify short & long term recommendations to improve security & controls

What is expected of you for success in your role

  • Drives major information security initiatives through the system development lifecycle
  • Define comprehensive solutions that balance information security requirements against business needs 

What is expected of you and others at this level in IT - Center of Expertise for functional success

  • Uses deep subject matter/functional expertise, influence and process skills to help internal/external customers and stakeholders identify and meet their high priority needs while considering cultural and diversity implications.
  • Jointly develops practical implementation plans that consider cultural sensitivities with other accountable parties.
  • Encourages informed Risk-taking and acts as a catalyst for innovation at Cardinal Health; generates practical, sustainable and creative options to solve problems and create business opportunities, while maximizing existing resources.
  • Proactively develops and maintains technical knowledge in specialized area(s), remaining up-to-date on current trends and best practices;


  • Proven experience with SAP role design and administration
  • Completion of two life cycle SAP security implementation including SAP role maintenance skills, design, build, troubleshooting
  • Ability to analyze segregation of duty violations and provide recommendations for remediation
  • Understanding of controls (SOX/ Audit/ FDA) as related to SAP Security.
  • Experience with SAP GRC 10 Access Controls, or Fiori or HANA/S4 is a plus.
  • Experience with requirements gathering, design, development, testing and implementation required.
  • Experience in SAP security implementations and configuration of ECC, SRM, BI/BOBJ
  • Experience with PI Security, Solution Manager ChaRM,  SAP CRM, APO, SAP Portal Security, IDM, LDAP, SSO
  • Understanding of HANA Security & integration with BI/BOBJ
  • Strong understanding of SAP t-codes, authorization objects and SU24 maintenance
  • Creating, releasing and tracking of SAP Transport Management process
  • Strong analytical, problem solving, organizational, and planning skills
  • Knowledge of manufacturing, sales, or finance business process controls.
  • Excellent communication skills, both oral and written, to effectively transfer knowledge to key stakeholders with the ability tailor messages to the audience
  • Excellent interpersonal skills with demonstrated ability to drive results through influence.
  • Team player with the ability to multitask in a fast paced project environment
  • Motivated self-starter with the ability to work well with all levels of the corporate structure.
  • Proficient PC skills; including working knowledge of Microsoft Office products