GAM Compliance Specialist

At Johnson & Johnson, we believe health is everything. Our strength in healthcare innovation empowers us to build a world where complex diseases are prevented, treated, and cured, where treatments are smarter and less invasive, and solutions are personal. Through our expertise in Innovative Medicine and MedTech, we are uniquely positioned to innovate across the full spectrum of healthcare solutions today to deliver the breakthroughs of tomorrow, and profoundly impact health for humanity. Learn more at https://www.jnj.com

Job Function

Legal & Compliance

Job Sub Function

Enterprise Compliance

Job Category

Professional

All Job Posting Locations:

Paranaque, National Capital Region (Manila), Philippines

Job Description

Key Responsibilities:

Access Management

• Review completeness and appropriateness of access/change/removal requests from business users.
• Review access requests against the role matrix/library and ensure approvers are correct based on the approval matrix.
• Perform Segregation of Duties (SOD) review to ensure the access requested does not conflict with existing access and manual job responsibilities.
• Assigning/documenting appropriate mitigating controls on new/existing valid/accepted SOD conflicts.
• Prepare weekly movement reports to ensure that the system access of transferred employees is up-to-date and the system access of terminated users is revoked on time.
• Perform access and SOD recertifications periodically and ensure remediations are completed on time.
• Perform accurate and on-time segregation of duties (SOD) assessments by establishing tools and guidelines to ensure that mitigating control libraries and SOD rulesets are up-to-date and complete.
• Prepare and update SOPs and Work Instructions documentation.
• Support internal and external audits related to access management controls through the preparation of supporting documentation and conducting walkthroughs.
• Lead /assist in IT access management controls and GAM refresher training and provide continuous support to business reviewers/approvers and related process owners.
  
  

Due Diligence and Projects

• Perform/ assist due diligence reviews (e.g., role mapping and SOD assessment) and manage access deployment to stakeholders in projects involving process migrations/transitions.
• Support and understand the business by monitoring risks related to organization, technology, and process changes to ensure that the system roles remain appropriate.
• Provide access management compliance insights and suggest best practices that are value-adding to the business.
• Identify, design, and execute process improvements/ solutions related to compliance domains.

At Johnson & Johnson, we believe health is everything. Our strength in healthcare innovation empowers us to build a world where complex diseases are prevented, treated, and cured, where treatments are smarter and less invasive, and solutions are personal. Through our expertise in Innovative Medicine and MedTech, we are uniquely positioned to innovate across the full spectrum of healthcare solutions today to deliver the breakthroughs of tomorrow, and profoundly impact health for humanity. Learn more at https://www.jnj.com

Job Function

Legal & Compliance

Job Sub Function

Enterprise Compliance

Job Category

Professional

All Job Posting Locations:

Paranaque, National Capital Region (Manila), Philippines

Job Description

Key Responsibilities:

Access Management

• Review completeness and appropriateness of access/change/removal requests from business users.
• Review access requests against the role matrix/library and ensure approvers are correct based on the approval matrix.
• Perform Segregation of Duties (SOD) review to ensure the access requested does not conflict with existing access and manual job responsibilities.
• Assigning/documenting appropriate mitigating controls on new/existing valid/accepted SOD conflicts.
• Prepare weekly movement reports to ensure that the system access of transferred employees is up-to-date and the system access of terminated users is revoked on time.
• Perform access and SOD recertifications periodically and ensure remediations are completed on time.
• Perform accurate and on-time segregation of duties (SOD) assessments by establishing tools and guidelines to ensure that mitigating control libraries and SOD rulesets are up-to-date and complete.
• Prepare and update SOPs and Work Instructions documentation.
• Support internal and external audits related to access management controls through the preparation of supporting documentation and conducting walkthroughs.
• Lead /assist in IT access management controls and GAM refresher training and provide continuous support to business reviewers/approvers and related process owners.
  
  

Due Diligence and Projects

• Perform/ assist due diligence reviews (e.g., role mapping and SOD assessment) and manage access deployment to stakeholders in projects involving process migrations/transitions.
• Support and understand the business by monitoring risks related to organization, technology, and process changes to ensure that the system roles remain appropriate.
• Provide access management compliance insights and suggest best practices that are value-adding to the business.
• Identify, design, and execute process improvements/ solutions related to compliance domains.