We're looking for an Assistant Manager (Risk, Controls & Compliance) for a pharmaceutical company headquartered in Mandaluyong City.

• Performs Segregation of Duty (SoD) conflicts review in SAP ECC and other related subsystems of the company, by reviewing the user authorization profile prior to access provisioning for new account creation or modification and remediation of existing accounts, working closely with business users, functional teams and technical teams.
• Leads SAP Segregation of Duty (SoD) remediation projects in UI Finance, other UI divisions and other subholds that are using SAP as the ERP system, providing overall project management, identifying and analyzing SOD risks, recommending SOD risks management improvement and/or mitigation strategies, and working closely with the Project Team to ensure the successful delivery of the project.
• Spearheads periodic Non-Finance Users SAP ECC Access Health Checks for assigned company divisions and other subholds with the use of the developed Finance Access Universe of roles and transactions, identifies and analyzes SOD risks, recommends SOD risks management improvement and/or mitigation strategies, and reports the results to the FRCP - Division Vice President and the Group Chief Finance Officers.
• Defines data quality and business rules by maintaining and updating object specific data governance policies related to SAP Vendor Master Data. Reviews and provides insights as one of the process subject master experts to any Vendor Master Data-related inquiries, VMD process and guidelines compliance reviews, system integration process impact assessments, and policy-related consultations.
• Performs business partnering with business units and enabler groups in their periodic control self-assessment exercise and assists in the development of appropriate metrics and indicators to monitor and review existing or emerging risks and review the effectiveness of the controls in place.
• Plans and leads the risk assessment sessions for the assigned department/division/group in the company, develops the risk management tools, methodologies, and processes, and deploys the dissemination and implementation across different Business Units and Enablers within the company, and monitors the implementation of the risk management strategies and action plans for each of the identified critical risks.
• Facilitates the annual risk reporting, risks and controls self-assessments, and risk monitoring for the assigned department/division/group/account for RADAR (Risk Assessment, Documentation, and reporting), develops the risk management tools and mechanics, reviews all the reports for endorsement to the FRCP - Division Vice President and Group Chief Finance Officers.

• Monday to Friday; 8:00AM to 5:00PM
• Work on-site: Mandaluyong City

Educational Requirement:

• Bachelor's Degree holder of any Business and Management-related, or Industrial Engineering courses such as but not limited to: Accountancy, Management Accounting, Applied Mathematics, Industrial Engineering

Qualifications:

• Has trainings in Fundamentals of Operational Excellence, Governance, Internal Controls, Audit and Risk Management
• Preferably a Certified Internal Auditor (CIA) and/or any equivalent operational excellence certification (i.e., CPA, PMP, etc.)
• Has excellent business writing skills and basic knowledge of Philippine business regulations (e.g., taxation, compliance)

Technology/Skills:

• With deep knowledge and experience in SAP GRC Access Control and SAP Cloud Identity Access Governance

Job Type: Full-time

Pay: Php90,000.00 - Php100,000.00 per month

Schedule:

• 8 hour shift

Application Deadline: 11/30/2024

Expected Start Date: 12/16/2024