SAP GRC Security Risk Analyst II

The SAP GRC Analyst II is responsible for leading and continuously enhancing McCormick’s SAP Governance, Risk & Compliance (GRC) capabilities across Process Controls (PC), Access Controls (AC), and Emergency Access Management (EAM). This role focuses on strengthening enterprise risk management, internal control effectiveness, segregation of duties (SoD) governance, and audit readiness across McCormick’s global SAP landscape (e.g., S/4HANA, ECC, BW, Fiori, and integrated applications).

This position requires a deep understanding of SAP GRC frameworks, risk management methodologies, SOX compliance requirements, and control monitoring best practices. The analyst partners closely with Internal Audit, IT Security, business process owners, and external auditors to proactively identify risk, monitor control effectiveness, and provide actionable reporting that supports regulatory compliance and enterprise risk mitigation.

The incumbent will take ownership of ...