IT Controls and Compliance Analyst - SAP

Job ID:  518198

CRH's Americas Materials division is the leading integrated supplier of aggregates, asphalt, ready mixed concrete and paving and construction services in North America. Our operations span North America with over 29,000 employees at close to 1,660 locations in 45 US States and 2 Canadian provinces.

Position Overview

CRH Americas Materials is currently recruiting for the position of IT Controls & Compliance Analyst-SAP based in Atlanta, GA. The successful candidate will share their expertise in driving a culture that understands and appreciates the importance of a strong internal control environment.  The IT Controls & Compliance Analyst-SAP will be responsible for implementing IT risk mitigation controls, promoting SOX compliance and supporting an effective internal control framework over IT General controls.

This includes but is not limited to:

• Role focus and responsibilities: The analyst will lead the development and implementation of IT general controls (ITGC) for a new SAP ERP solution, promote SOX compliance, and support a strong internal control framework across IT workstreams. Responsibilities include control design, compliance monitoring, risk assessment, audit support, policy development, and incident management related to SAP systems.
• Stakeholder engagement and communication: The position requires building relationships with internal stakeholders, ensuring clear communication channels, and delivering training and awareness programs on SAP control requirements and compliance best practices.
• Continuous improvement and transformation: The analyst will monitor industry and regulatory changes, identify opportunities to enhance SOX compliance through data analytics and continuous monitoring, and drive transformational activities to add value beyond compliance in financial reporting controls.

Key Responsibilities (Essential Duties and Functions)

The key responsibilities described here are representative of those that must be met by an employee to successfully perform the essential functions of this job.

Risk Management, Internal Control and SOX Compliance

• Control Design & Implementation: Develop, implement, and maintain IT controls for SAP systems, including access management, change management, data integrity, and segregation of duties.
• Compliance Monitoring: Perform periodic reviews and testing of SAP controls to ensure effectiveness and ongoing compliance with SOX, GDPR, and other relevant regulations.
• Risk Assessment: Conduct risk assessments to identify vulnerabilities and recommend mitigation strategies related to SAP processes and configurations.
• Audit Support: Assist internal and external auditors by providing documentation, evidence, and explanations regarding SAP controls and compliance activities.
• Policy & Procedure Development: Create and update policies, procedures, and guidelines to support SAP compliance and control objectives.
• Incident Management: Investigate and report compliance breaches, control failures, or incidents related to SAP, and coordinate remediation efforts.

Stakeholder management, communication and influencing skills 

• Ensure clear, timely and efficient communication channels exist to provide status updates, identify, and resolve issues and report on any other matters as needed
• Build relationships with key internal stakeholders and promote the function as a trusted partner
• Training & Awareness: Deliver training and awareness programs for business and IT users on SAP control requirements and compliance best practices.

Change and transformation 

• Monitor industry trends, regulatory changes, and SAP system updates to enhance the control environment and compliance posture.
• Identify opportunities to make the SOX compliance process more effective and efficient through data analytics and continuous monitoring
• Apply knowledge of risk and controls best practices to promote transformational activities
• Drive the SOX compliance function to move beyond SOX compliance by adding value across the end-to-end financial reporting controls process
• Engage with relevant external stakeholders to align and optimize work practices

Qualifications

Education/Experience

• Bachelor’s degree in Information Technology, Computer Science, Accounting, or related field.
• 2+ years of experience in IT compliance, audit, or risk management, preferably with hands-on SAP experience.
• Strong knowledge and experience with SAP S/4 Hana modules, SAP Security & GRC and related control frameworks.
• Experience with the SAP GRC suite. Familiarity with SAP Fiori and SAP BTP
• Familiarity with SAP health check monitoring tools.
• Familiarity with regulatory standards such as SOX, GDPR, ISO 27001, etc.
• Understanding of IT general controls (ITGCs), application controls, and segregation of duties in SAP.
• Professional certifications such as CISA, CRISC, or SAP Security are a plus.
• Previous change and transformation experience a plus
• Experience implementing ongoing risk assessments and controls self-assessments/audits to highlight improvement observations
• Experience in security design and testing, with specific focus on privileged access
• Expertise in identifying and implementing best practice:
  • When developing a framework and process for ongoing Design
  • Implementing operational effectiveness and testing of key controls
  • Creating key IT process maps to identify control weaknesses

• Experience with project management including working within complex business environments for multi-national organizations collaborating and partnering with both with Internal auditors and External auditors
• Hands-on experience with SAP or part of another ERP implementation team; specifically, around managing compliance around use of multiple systems during the interim design state including design for newly acquired businesses

• Experience with SAP GRC modules Access Risk Analysis (ARA) and Emergency Access Management (EAM)
• Strong interpersonal and organizational influencing skills
  • Ability to communicate in a simple, articulate, thoughtful manner to varying audiences
  • Innovative spirit to work cross-functionally in developing improvement ideas
  • Conflict management and negotiation skills
  • A pleasant, likeable manner while accomplishing challenging results
  • Excellent analytical & organizational skills

Work Requirements

• Atlanta based position.  Hybrid mix of onsite and remote working.
• Must have proficiency in Microsoft Word, Excel, PowerPoint, Data and Analytic Tools (i.e., Tableau, Power BI, Alteryx, etc.,) and Outlook
• Must be 18 years in age or older
• Must pass pre-employment drug screen and criminal background check
• Strict adherence to safety requirements and procedures as outlined in the Employee Handbook
• Willingness to work independently within in a team environment and assist with other duties as required
• Moderate travel required

The statements included in this job description are not intended to be all-inclusive. They represent typical elements and criteria necessary to successfully perform the job. Other duties may be assigned as required. Requirements for this job are subject to modification by the Company and its designees, and reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

What CRH Offers You

• Highly competitive base pay
• Comprehensive medical, dental and disability benefits programs
• Group retirement savings program
• Health and wellness programs
• An inclusive culture that values opportunity for growth, development, and internal promotion

About CRH

CRH has a long and proud heritage. We are a collection of hundreds of family businesses, regional companies and large enterprises that together form the CRH family. CRH operates in a decentralized, diversified structure that allows you to work in a small company environment while having the career opportunities of a large international organization.

If you’re up for a rewarding challenge, we invite you to take the first step and apply today! Once you click apply now, you will be brought to our official employment application. Please complete your online profile and it will be sent to the hiring manager. Our system allows you to view and track your status 24 hours a day. Thank you for your interest!

CRH Americas Materials Inc. is an Affirmative Action and Equal Opportunity Employer.

EOE/Vet/Disability