IBM SAP GRC Consultant - Europe CoC in MADRID, Spain

Job Description

The Consultant in the Global Security Services Practice helps to lead the growth and management of all facets of the business, primarily by using this global position and perspective to assist the local geographies. This requires demonstrating thought leadership, sales leadership and delivery leadership in one of the core domains: Identity Access Management (IAM), Data Security, Governance Risk Compliance (GRC), Application Security, or Security Operations Center / Security Incident Event Management (SOC/SIEM). Must be willing to travel 50-75%.

SAP Application Security and GRC Specialty :

The Consultant should have depth of knowledge and experience in the SAP Application Security, Governance Risk Compliance (GRC) toolset or SAP Identity Management (IDM) and should be able to speak across the landscape as well. The Consultant will provide subject matter expertise in the form of briefings, workshops, and/or consulting engagements within their domain that assess a client’s security capabilities as well as recommending solutions to enhance a client’s overall security capabilities. Such client security capabilities may involve policy, process, technology, or organizational areas. Consultants will provide thought leadership, identify gaps in the current environment and recommend best practices or solutions to reduce client risk and increase their ability to deal with emerging threats and risks to the organization. Should be passionate about providing leading practice solutions while leading and mentoring teams.

Skills :

• Demonstrate Depth of knowledge in GRC technology (SAP GRC Access Controls (AC), Process Controls (PC), Risk Management (RM), Assurance & Compliance technology (Fraud Management and Audit Management based on HANA) or in SAP Identity Management (IDM), to support Identity and Access Management (Single Sign ON (SSO), User life cycle management, etc.)

• Demonstrated understanding of information security management principles, SAP application security implementation methodologies, role-based access controls, distributed systems administration, and distributed system recovery

• Common IT governance, control and industry frameworks including Control Objectives for Business & Related Technology (COBIT), Risk IT, Information System Audit and Control Association (ISACA) leading practices, internal control principles and related regulations such as SOX

• Familiarity with regulatory compliance models (International Organization for Standardization (ISO) 27001, Statement on Standards for Attestation Engagements (SSAE 16), HIPPA, etc)

Marketing and Sales :

• Work with global solutions teams and across local geographies to provide content to drive deals

• Provide demonstration of IBM credentials in one of the core capability domains (GRC, IAM, Application Security, Data Security or SOC/SIEM)

• Work closely with the global and local solution design teams in developing client presentations and Statements of Work (SOW)

• Provide a focal point for geos to help understand capabilities, offerings, client references

• Become a recognized thought leader in one of the four core domains, utilizing conferences, white papers, client presentations to build awareness of IBM credentials

Delivery :

• Working with global and local teams, help organize project approaches and teams for client delivery

• Participate in project delivery, to varying degrees depending on project complexity and geography needs

• Help resolve project issues as they arise

• Establish demonstrated client relationships in key accounts to help progress the Security Services portfolio supported by the Associate Partner.

Practice :

• Provide global practice leadership by facilitating a community of likeminded practitioners to share and exchange ideas for practice growth and improvement

• Contribute content and advice to the offering development process

• Help shape the emerging model of the global Security practice

People :

•Help establish capability and skill models for the core domain

•Become a role model for global practitioners in the core domains under his responsibility

Required Technical and Professional Expertise

  • At least 8 years experience in management consulting and systems integration

  • At least 8 years experience in working in projects related to one of the core domains: IAM, Application Security, Data Security, GRC or SOC/SIEM

  • At least 8 years experience in working across diverse teams to facilitate solutions

  • At least 5 years experience in working with security consulting teams

  • Readiness to travel 75% travel annually

English: Fluent

Spanish: Fluent

Preferred Tech and Prof Experience

  • Master's Degree

  • At least 8 years experience in working with security consulting teams

  • At least 3 years experience in working in international deployment roles

  • At least 10 years experience in management consulting

EO Statement

IBM is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.