**Drive secure, compliant, and resilient SAP environments that power the business.** In this role, you’ll lead the strategy and execution of SAP security, GRC governance, and controls across a dynamic IT landscape. Partnering closely with business and technical teams, you will ensure our systems remain protected, audit‑ready, and aligned with evolving compliance needs. If you're energized by solving complex problems, improving processes, and strengthening enterprise security, this is the impact‑driven role for you. **Responsibilities** **Strategic Security & Risk Management** + Lead end‑to‑end SAP security governance across the IT landscape, ensuring systems, instances, and applications are properly secured. + Collaborate with business stakeholders to identify, monitor, and mitigate Segregation of Duties (SoD) conflicts, ensuring alignment with financial and operational controls. + Partner with the SAP GRC team to update and optimize the GRC ruleset for accurate risk detection and effective remediation. + Evaluate SAP security notes and work with Basis and functional teams to assess risk, urgency, and implementation timing. **Compliance, Audit & Controls Leadership** + Serve as the primary lead for internal SAP Security Audits supporting Sarbanes‑Oxley (SOX) compliance. + Support external, internal, and SOX audits with strong knowledge of GRC rulesets, security configuration, and access controls. + Implement and maintain the User Access Review (UAR) process to ensure ongoing compliance and effective access governance. + Collaborate with controllers to establish mitigation controls and review SoD monitoring processes. + Identify gaps in business control processes and drive improvements to strengthen compliance posture. **Security Operations & Continuous Improvement** + Oversee user administration processes for new applications and ensure smooth transition of responsibilities to support teams. + Perform periodic reviews and redesign of SAP security roles to meet evolving business needs while maintaining audit integrity. + Provide analytical support for SoD risks—financial, sensitive, and system‑level—using SAP GRC 12. + Support configuration, maintenance, and operation of SAP GRC 12, ensuring continuous reliability and accuracy. + Lead and support SAP security patch reviews and related audit readiness activities. + Deliver training and guidance to process teams, project teams, development teams, and security stakeholders on SAP security policies, GRC functionality, and best practices. **Cross‑Functional Collaboration** + Act as the key liaison with project contractors to ensure deliverables meet Statement of Work requirements. + Troubleshoot issues, perform root‑cause analysis, and implement effective long‑term solutions. + Continuously evaluate processes and recommend improvements to enhance security, efficiency, and business alignment. **Required Qualifications** + 10+ years of overall professional experience. + 5+ years of SAP GRC (10.1+) experience. + 6+ years of SAP security experience, including 1–2 SAP implementations. + Hands‑on experience with S/4HANA security, Fiori, and SAP Security Concepts. + Strong analytical, organizational, and problem‑solving skills. + Excellent communication, relationship‑building, negotiation, and conflict‑resolution abilities. + Experience using JIRA. + Ability to work independently, manage multiple priorities, and thrive in a fast‑paced environment. + Understanding of object‑oriented concepts and design principles. + Bachelor's degree preferred. **Preferred Qualifications** + CISSP or CCSP certification. + Experience leading enterprise‑wide GRC security initiatives. + Exposure to large‑scale, cross‑functional project environments. If you will be working at home occasionally or permanently, the internet connection must be obtained through a cable broadband or fiber optic internet service provider with speeds of at least 10Mbps download/5Mbps upload. **About The Cigna Group** Doing something meaningful starts with a simple decision, a commitment to changing lives. At The Cigna Group, we’re dedicated to improving the health and vitality of those we serve. Through our divisions Cigna Healthcare and Evernorth Health Services, we are committed to enhancing the lives of our clients, customers and patients. Join us in driving growth and improving lives. _Qualified applicants will be considered without regard to race, color, age, disability, sex, childbirth (including pregnancy) or related medical conditions including but not limited to lactation, sexual orientation, gender identity or expression, veteran or military status, religion, national origin, ancestry, marital or familial status, genetic information, status with regard to public assistance, citizenship status or any other characteristic protected by applicable equal employment opportunity laws._ _If you require reasonable accommodation in completing the online application process, please email:_ _SeeYourself@cigna.com_ _for support. Do not email_ _SeeYourself@cigna.com_ _for an update on your application or to provide your resume as you will not receive a response._ _The Cigna Group has a tobacco-free policy and reserves the right not to hire tobacco/nicotine users in states where that is legally permissible. Candidates in such states who use tobacco/nicotine will not be considered for employment unless they enter a qualifying smoking cessation program prior to the start of their employment. These states include: Alabama, Alaska, Arizona, Arkansas, Delaware, Florida, Georgia, Hawaii, Idaho, Iowa, Kansas, Maryland, Massachusetts, Michigan, Nebraska, Ohio, Pennsylvania, Texas, Utah, Vermont, and Washington State._ _Qualified applicants with criminal histories will be considered for employment in a manner_ _consistent with all federal, state and local ordinances._