Access Management Senior Manager

This Access Management Senior Manager is responsible for the overall execution, implementation, validation, testing and monitoring of the Jollibee Group’s Internal Control Framework and Policies and instrumental in creating portable control & governance solutions, processes, policies, and design, among JFC’s enterprise systems. The role also requires the ownership and maintenance of Internal Control decks, documentation, reports and is responsible for engaging with critical functional leaders and groups across regions to streamline governance strategies and implementations. The role will manage a team which will help carry out objectives and thus will have people management responsibilities.

Key Responsibilities:

System Security, Identity Access Management (IAM) and Controls Operations.

• Implement & sustain the Governance, Risk, and Compliance (GRC) platform to help JFC manage IAM review and assessment.

• Ensure that team / resource Maps, Establishes, Designs, Leads and Writes the Identity and Access Management (IAM) Governance Process for the entire Jollibee Group of Companies across all major Enterprise Systems.

• Review, deliberate, and manage exceptions from the baseline control operations related to access management processes upon escalation from the resource.

• Ensure all exceptions are regulated and monitored periodically.

• Supervise the Timely and accurate submission of Access-related requirements (New Master Role, Derived Role, T-code)

• Ensure resource’s timely and accurate turnaround for all System-User Requests across various identified and ad hoc scenarios

Identity & Access Management Governance Framework

• Overall governance owner, initiator, and reviewer of the Identity and Access Management Governance Framework

• Organize rationalization initiatives, documentation, and continuous assessment of the Kingsman Initiative which shall revolutionize the Access Assignment logic into a role-based, risk-based composition.

• Ensure the compliance of all System Administrators, System owners and Sponsors adhere to the IAM standards & framework set.

• Drive the periodic review and optimization of enterprise Security and Controls procedures and devise effective and efficient methods of tracking documentation and compliance.

• Establish and Lead a Collaborative channel across enterprise systems and regions to identify, deliberate, and address IAM Control Areas in close coordination with Business Technology and critical Business Leads

• Lead & establish the SAP CSA through automation of controls check which CSA framework may be reapplied to various JFC enterprise systems requiring Access controls.

• Review Compliance decks presented by direct reports to help assess internally the System and Controls compliance and partner with Business Technology experts.

• Regular review of SOD’s Matrix especially during Organization Changes across functions using SAP.

Identity & Access Management - Project Impact Assessment and Continuous Improvement

• Establish IAM Projects Governance Assessment playbook that shall be implemented across all JFC’s major initiatives.

• Ensure Governance requirements in all Critical JFC Projects involving IAM be timely and thoroughly deliberated, reviewed, & signed-off.

• Lead and advocate regular access risk assessment with the business - identifying Financial Risks and monitor the necessary resolution/action steps and timelines to mitigate impact especially related to New Projects & business developments that will have Access risks.

• Supervise on the cross-functional system security requirements with Data Analytics team and help in the Master data quality management rationalize and justify governance based on identified Access Management Principles

• Curate trainings, info-drive, and other continuous improvement & optimization interviews or dialogues to continuously find solution to strengthen access controls & system integration.

• Bolster partnership with Business Technology to further automate manual processes & controls solutions

JFC Audit Item Design Solutioning, SAFE Portal Ownership & Overall IAM Consulting & Advisory

• Lead & represent JFC in the IT & Access Management External Audit as orchestrator and moderator, ensuring compliance with audit deadlines, and committed actions both from GIC-driven and Function-owned initiatives progress year on year.

• Support Master data governance related to Access Controls and Regular review of existing policies and procedures.

• Initiate and coordinate discussion with IT IC and with Business IC Manager for areas that require Identity and Access Controls layer to help in fortifying systems and processes.

• Follow through with the businesses on system control related findings in Audit (work together with Internal Controls Manager)

• Overall accountable for the upkeep of JFC’s official Policy and Guidelines Site – SAFE Portal.

Others

• May performs other tasks and assignments related to this niche expertise to support JFC’s growth strategies or to develop oneself and share one’s expertise through internal trainings for operational efficiency.

Job Qualifications:

• Bachelor’s Degree graduate in Business Management, Finance, Computer Science, or any related course.
• Must have 8 to 12 years of Finance and Accounting experience (or a significant exposure thereof) with at least 3 to 4 years of relatively solid background in SAP FICO and SAP System Security and Controls preferably in a multinational environment with exposure to the Food and Beverage Industry or similar FMCG.
• Must have an experience in SOX controls performance / compliance, exposure to Master data is a plus.
• Must have good experience in stakeholder management and policy / guidelines implementation. Project Management background is a plus.
• Must have experience in workflow design and approval management (Approver experience a plus)
• Must be willing to work in Ortigas, Pasig (Hybrid Work Setup).

Jollibee Foods Corporation is the hiring entity for this requisition.