Full-Time

SAP Security Lead

Posted on 1/15/2025

BridgeBio

BridgeBio

501-1,000 employees

Develops medicines for genetic diseases

Compensation Overview

$160k - $220kAnnually

Senior, Expert

San Francisco, CA, USA

This is a hybrid position, which implies that the candidate will be required to work in-office for part of the week.

Category
Healthcare Administration & Support
Medical, Clinical & Veterinary
Required Skills
SAP Products
Requirements
  • Bachelor’s degree in Information Technology, Computer Science, or a related field
  • 8+ years of experience in SAP Security, with a strong background in S/4HANA Private Cloud Edition, Fiori, BTP, and Cloud IAG
  • Experienced in SAP GRC (Access Control and Process Control) design and implementation for Security
  • Experienced in running SAP vulnerability assessment tool used in CyberSecurity and audit and compliance activities
  • In-depth knowledge of SAP’s authorization concepts and security policies, focusing on role-based access, user administration, and compliance within private cloud environments
  • Proven experience in GxP or equivalent validated environments, with a commitment to maintaining compliance and security across SAP systems
  • Demonstrated capability to serve as a security solution architect, defining cloud security solutions and technical designs aligned with project needs and RFP requirements
  • Extensive experience with end-to-end SAP security project lifecycles, including workshops, UAT, regression testing, cutover, and hyper care
  • Familiarity with SAP’s Private Cloud Edition, along with the specific security and compliance nuances for cloud-hosted SAP systems
  • Strong understanding of SOX compliance, GXP compliance, and regulatory standards
  • Excellent communication and interpersonal skills to effectively collaborate with cross-functional teams and stakeholders
Responsibilities
  • Design and oversee the SAP authorization framework, emphasizing role-based access control, user and role types, and roles/activity groups across SAP S/4HANA Private Cloud, Fiori, BTP, and Cloud IAG
  • Advise and manage SAP Identity and Access Control and integration with overall IAM & SSO architecture
  • Apply advanced knowledge of SAP’s private cloud security model to manage user administration, ensuring appropriate levels of access while adhering to segregation of duties (SoD) standards
  • Collaborate with SAP and third-party vendors to ensure user access configurations align with SAP's best practices for Private Cloud Edition and are optimized for a cloud-based environment
  • Define, implement and maintain SAP security policies and procedures to support compliance with SOX, GxP, GDPR, and life sciences industry standards, ensuring all processes meet rigorous requirements for a validated environment
  • Develop metrics and dashboards, reporting on the effectiveness of policies, procedures and controls for all SAP Security platforms
  • Use SAP tools for access control, risk analysis, and remediation (RAR), applying SoD mitigation strategies specific to private cloud deployment
  • Advise supporting processes as the SAP security subject matter expert
  • Ensure audit readiness and establish protocols for continuous access review and regulatory compliance specific to SAP’s Private Cloud Edition, with a focus on GxP standards and validated environments
  • Serve as a security solution architect, defining SAP security strategies for a private cloud environment and supporting technical designs for cloud security functions
  • Assess and address security risks specific to SAP’s Private Cloud Edition, implementing scalable solutions that adhere to cloud security principles and meet complex business and regulatory requirements
  • Work closely with cloud operations teams to ensure secure configurations and compliance within the SAP private cloud infrastructure, proactively strengthening security postures
  • Deliver guidance, collaborate and partner with IT Security and Infrastructure team on SAP Cryptography, Key Management, and SAP Data Protection
  • Lead SAP security tasks across full lifecycle projects, from initial workshops and UAT to regression testing, cutover, and hypercare activities, ensuring projects meet both security and compliance needs in a validated environment
  • Establish governance processes for role-based access control and SAP’s Cloud IAG, driving periodic access reviews and certifications for continuous security monitoring
  • Partner with project teams and consultants to embed SAP security standards in new implementations, upgrades, and change management processes within a private cloud context
  • Implement a risk management framework for SAP private cloud security, identifying potential threats and defining response strategies to mitigate risks, especially in a validated GxP environment
  • Serve as the escalation point for SAP security incidents, conducting root-cause analysis, coordinating remediation, and refining protocols to strengthen security across SAP cloud environments
  • Actively monitor SAP security alerts and vulnerabilities, enhancing incident response processes tailored to cloud-based SAP architecture
  • Foster a security-first culture by engaging with cross-functional teams and embedding security best practices into daily operations
  • Act as a trusted advisor to business and IT stakeholders, guiding them on SAP security compliance in a cloud-based environment
  • Mentor and support team members, sharing expertise on SAP security and compliance best practices
Desired Qualifications
  • SAP Security certifications in S/4HANA Private Cloud, Fiori, and BTP
  • Experience with life sciences or pharmaceutical industry regulatory frameworks and security standards
  • Proficiency with SAP GRC and advanced SAP security tools, including experience with cloud-based identity governance

BridgeBio Pharma develops medicines specifically for genetic diseases, focusing on conditions with well-understood genetic causes. The company uses a decentralized subsidiary model, allowing each subsidiary to concentrate on therapies for specific diseases while sharing central resources. This structure enhances efficiency and enables the advancement of multiple drug programs at once. BridgeBio utilizes advancements in genome sequencing and molecular biology to identify and develop effective treatments. Their goal is to create significant therapeutic improvements by targeting diseases at their genetic source. With over 15 drug programs aimed at 20 different genetic diseases, BridgeBio aims to reduce the time it takes to bring treatments to market through a diversified approach. The company promotes a culture of independent thinking and transparency, which supports quick, data-driven decision-making.

Company Size

501-1,000

Company Stage

IPO

Headquarters

Palo Alto, California

Founded

2014

Simplify Jobs

Simplify's Take

What believers are saying

  • Increased focus on RNA-based therapies aligns with BridgeBio's genetic disease mission.
  • Decentralized clinical trials enhance data collection, benefiting BridgeBio's model.
  • Growing personalized medicine demand supports BridgeBio's targeted genetic therapies.

What critics are saying

  • Alnylam's RNAi therapy Amvuttra poses competition to BridgeBio's ATTR-CM treatment.
  • Strategic shifts from new leadership may impact genetic disease program focus.
  • Norges Bank's investment may pressure BridgeBio for short-term financial performance.

What makes BridgeBio unique

  • BridgeBio employs a decentralized subsidiary model for efficient drug development.
  • Focuses on genetic diseases with well-understood underlying causes for targeted therapies.
  • Leverages genome sequencing and molecular biology for innovative treatment solutions.

Help us improve and share your feedback! Did you find this helpful?

Benefits

Health Insurance

Performance Bonus

Company Equity

Unlimited Paid Time Off

Growth & Insights and Company News

Headcount

6 month growth

5%

1 year growth

3%

2 year growth

2%
GlobeNewswire
Feb 26th, 2025
BridgeBio Prices Offering of $500 Million Convertible Senior Notes due 2031 to Refinance Senior Secured Debt

Refinancing term debt facility lowers interest expense, eliminates near-term amortization payments, and significantly extends debt maturityOffering priced...

The Manila Times
Jan 8th, 2025
BridgeBio Pharma to Participate in the J.P. Morgan Healthcare Conference

PALO ALTO, Calif., Jan. 08, 2025 (GLOBE NEWSWIRE) - BridgeBio Pharma, Inc. (Nasdaq: BBIO) ("BridgeBio" or the "Company"), a new type of biopharmaceutical company focused on genetic diseases, today announced that co-founder and CEO, Neil Kumar, Ph.D., will present at the 43rd Annual J.P. Morgan Healthcare Conference in San Francisco, CA on Monday, January 13 at 7:30 am PT.

Access Market Intelligence
Dec 6th, 2024
Orsini and PANTHERx Rare Selected by BridgeBio as Pharmacy Partners for ATTRUBY

PANTHERx Rare, a leader in rare disease product patient access and support services in the United States, also announced that it was selected by BridgeBio for the distribution of Attruby (acoramidis).

PR Newswire
Nov 26th, 2024
Bridgebio Selects Pantherx® Rare Specialty Pharmacy For Distribution Of Attruby™ (Acoramidis)

PITTSBURGH, Nov. 26, 2024 /PRNewswire/ -- PANTHERx® Rare, a leader in rare disease product patient access and support services in the United States, is pleased to announce that it was selected by BridgeBio for the distribution of Attruby™ (acoramidis), a high-affinity transthyretin (TTR) stabilizer for twice daily oral administration, approved for the treatment of transthyretin amyloid cardiomyopathy (ATTR-CM).2,5. Attruby is the first and only approved product with a label specifying near-complete stabilization of TTR. Attruby was designed to mimic a naturally occurring "rescue mutation" of the TTR gene (T119M) that targets the root cause of ATTR-CM, destabilization of the native TTR tetramer. Through near-complete TTR stabilization, Attruby has been shown to preserve the native function of TTR as a transport protein of thyroxine and vitamin A and to demonstrate benefit on cardiovascular outcomes. "Panther is committed to providing tailored solutions for people living with rare and devastating conditions and we look forward to the partnership with BridgeBio and serving the needs of patients suffering from transthyretin amyloid cardiomyopathy," said Rob Snyder, Executive Chair, PANTHERx® Rare Pharmacy

MarketBeat
Nov 24th, 2024
Jennison Associates LLC Invests $767,000 in BridgeBio Pharma, Inc. (NASDAQ:BBIO)

Jennison Associates LLC invests $767,000 in BridgeBio Pharma, Inc. (NASDAQ:BBIO).

INACTIVE