Lead Specialist – IT SAP GRC/Security *

Energy Transfer

Full Time
Houston, TX
Posted 5 months ago

*Internal opportunities open. Please contact us for internal reference*

Are you interested in joining our team? Chat with our digital assistant to learn more about our company and apply right from your mobile device!

Text ETP to 25000 to get started or apply through this web posting if you prefer.

Energy Transfer, recognized by Forbes as one of America’s best large employers, is dedicated to responsibly and safely delivering America’s energy.  We are driven to inspire our employees to create superior value for our customers, our investors, a sustainable future and giving back to the community where we have long-standing commitments to causes including MD Anderson Children’s Cancer Hospital, The Salvation Army, American Heart Association, Ronald McDonald House and many more.

We value all of our employees who make our growth and success possible.  We are proud to offer industry leading compensation, comprehensive benefits, 401(k) match with additional profit sharing, PTO and abundant career opportunities.

Come join our award winning 11,000 strong organization as we fuel the world and each other!


IT SAP Security/GRC Lead Specialist: Responsible for managing and providing SAP support to Energy Transfer users within functional and technical areas of expertise. This includes interacting with users to understand requirements, evaluating alternative solutions, resolving problems/issues, developing training materials, providing user training, communicating status and documenting system changes (e.g. new reports and functionality) to the appropriate business levels in the organization.

Essential Duties and Responsibilities:

  • Project Management: 
    • Plans, directs and coordinates activities in order to ensure project goals are accomplished within defined constraints.
    • Identifies and schedules project deliverables, milestones, and required tasks.
  • Problem Resolution: 
    • Research production problems and/or enhancement issues and make appropriate configuration changes to the system.  Initiate action and evaluate issues to develop alternative solutions.  Apply expert knowledge and experience to resolve problems.
    • Conduct day-to-day troubleshooting and break-fix activities.  Provide telephone support to share in the 24×7 365-day support of SAP production system.
    • Act as the Subject Matter Expert (SME) lead for all SAP Security and GRC modules including but not limited to S4, Fiori, BPC 11.0, O-BPC, E HANA, Solman, GRC 12 components EAM, ARA, ARM and BRM
  • Continuous Improvement and Efficiency Projects:
    • Develop and implement SAP security policies, architecture and processes. This function includes identifying SAP security solutions, implementing standards and best practices, identifying and remediating vulnerabilities and other associated compliance activities.
    • Experience and strong understanding of internal controls, security practices and a working knowledge of S4 and Fiori configuration, functionality and SAP GRC for Controls and SOD resolution strategies to enable the business process transformation needs.
    • Understands and Applies Sarbanes Oxley compliance knowledge in internal controls/business process controls design, development, testing, implementation, support, and documentation of a Risk and Controls Matrix for the S4 SAP environment. 
    • Thinks strategically as the future internal controls/business process controls design is built
    • Translate business requirements into a robust security model for SAP S/4 HANA, BPC, E-HANA, Fiori, PO, GRC implementation in accordance with the overall business and IT strategy.
  • Knowledge Transfer/Mentor:
    • Develop and conduct SAP training and knowledge transfer to business clients.
    • Proactively train other IT resources further develop their understanding of SAP application configuration and business processes.
  • SOX Compliance: 
    • Ensure that changes/enhancements are completed using appropriate SOX control processes. Recommend/implement SOX change control process changes as necessary.





Education and/or Experience, Knowledge, Skills & Abilities:

To perform this job successfully, an individual must be able to perform each essential job duty satisfactorily. The requirements for this position are listed below: 

  • Bachelor’s degree in Computer Science or Accounting or equivalent work experience plus experience related to the applicable level.
  • Experience should include 2 SAP full project life cycle implementations, and SAP Security design and implementation experience with at least 1 SAP greenfield project implementation experience
  • 2-3 years of GRC 10.1/12 Access Control implementation experience with at least 1 new implementation experience
  • Administration/Troubleshooting complex security issues related to S4 HANA, BPC, O-BPC, ChaRM, E-HANA Security, Fiori catalogs, groups and configure security roles
  • Configure GRC SOD Rule Set and work with the compliance team to test, evaluate the effectiveness of SOD’s and mitigation controls.
  • Experience with Integrating SAP with SailPoint IdM is preferred
  • Should be well versed working with internal and external auditors and remediate gaps from IT/SAP audits
  • Should be able to lead Customer Workshops and Presentations Independently
  • Responsible for the effectiveness of SAP Security Controls (Emergency Access, SOD Compliance, etc.) and addressing audit findings in SAP environments
  • Deep expertise in implementing the various modules of GRC Access Control – ARA, ARM, EAM, BRM along with complex workflow layouts using MSMP and BRF+
  • Implementation experience with GRC Process Control module and integration with Access Control is preferred

Required experience is commensurate with the selected job level:

  • The Senior IT Specialist level requires a Bachelor’s degree or equivalent experience and 5-8 years of relevant job related experience
  • The Lead IT Specialist level requires a Bachelor’s degree or equivalent experience and 8+ years of relevant job related experience
  • The Principal IT Specialist level requires a Bachelor’s degree or equivalent experience and 10+ years of relevant job related experience.

Preferred Qualifications:

  • Knowledge of oil and gas industry is a plus
  • GRC certification is preferred   

Working Conditions:

The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job.

  • Usually, normal office working conditions.
  • Must be able to remain in a stationary position 50% of the time due to prolonged periods of sitting or standing.
  • Occasional overnight travel may be required.
  • Occasional visits to industrial/manufacturing settings, which may include exposure to various materials and chemicals, as well as extreme temperature conditions and loud machinery, and require appropriate personal protective equipment.

Equal Opportunity Employer/Disability/Vet

DISCLAIMER: The above statements, which are subject to change, are intended to describe the general nature and level of work being performed by people assigned to this job. They are not intended to be an exhaustive list of all responsibilities, duties and skills required of personnel so classified.



An equal opportunity employer/disability/vet

Energy Transfer is an equal opportunity employer and does not discriminate against qualified applicants on the basis of actual or perceived race, color, religion, sex, sexual orientation, gender identity, age, national origin, disability, pregnancy, veteran status, genetic information, citizenship status, or any other basis prohibited by law.

The nature and frequency of the above working conditions and requirements may vary depending on individual operational circumstances. Where feasible, the Partnership will make reasonable accommodations to qualified individuals with disabilities to enable them to perform the essential functions of the job.

DISCLAIMER: The statements listed in this job posting, which are subject to change, are intended to describe the general nature and level of work being performed by people assigned to this job. They are not intended to be an exhaustive list of all responsibilities, duties and skills required of personnel so classified.

Job Features

Job CategoryDevelopment Services - Planning, Admin & Clerical, Applied Mathematics, Business Administration, Communication, Customer Service, Document Control, Information Technology, Inventory Control, Management, Mathematical/Statistical Skills, Media Relations, Project Management, Quality Control, Research Development

Apply Online

A valid email address is required.
A valid phone number is required.