Patek Philippe SAP Access & Authorizations Specialist

Patek Philippe is a prestigious Swiss haute horlogerie manufacturer headquartered in Geneva, renowned for artisanal craftsmanship, technical excellence and long-term stewardship of its legacy. As an employer it offers a disciplined, quality-driven environment where precision, confidentiality and cross-functional collaboration—particularly between business and IT—are highly valued.

1. Design, configure and maintain SAP roles and authorizations across SAP landscapes (S/4HANA, BW, Fiori, ECC, etc.) to meet business requirements while enforcing least-privilege principles.
2. Assess and validate user access requests and role assignments, ensuring compliance with internal security policies and regulatory requirements (e.g. GDPR).
3. Perform regular access audits, identify segregation-of-duties (SoD) conflicts and propose remediation actions.
4. Collaborate with IT security teams, business owners and internal/external auditors to demonstrate and improve access governance and controls.
5. Manage incidents and service requests related to SAP access and authorizations, including root-cause analysis and timely resolution.
6. Contribute security and authorization expertise to SAP implementation, migration and upgrade projects.
7. Document role designs, access processes and control procedures; maintain up-to-date knowledge base artifacts.
8. Train and raise awareness among end users, BPO teams and key users on proper access management and secure practices.

1. Higher education in computer science, information systems or cybersecurity (Bachelor's level or equivalent).
2. Minimum 3–5 years' experience in a similar SAP security/authorizations role within a complex SAP environment.
3. Professional working proficiency in French and English (minimum B2 level).
4. Familiarity with ServiceNow for incident/change/problem/knowledge management and practical knowledge of ITIL methodologies.
5. Solid understanding of SoD principles, compliance frameworks and regulatory requirements (e.g. GDPR).
6. Experience integrating SAP and non-SAP authentication mechanisms (SSO, LDAP, Azure AD / EntraID).
7. Proven ability to analyse access incidents, create SAP queries and interpret logs for anomaly detection.

1. SAP S/4HANA
2. SAP BW/4HANA
3. SAP Fiori
4. SAP ECC
5. SAP Solution Manager
6. SAP Identity & Access Management (IAM)
7. SAP access and authorization transactions
8. ServiceNow
9. ITIL
10. SSO
11. LDAP
12. Azure AD
13. EntraID
14. ISO 27001
15. NIST
16. RGPD
17. CISSP
18. SAP reporting and log analysis
19. SAP Certified Technology Associate – SAP S/4HANA Security
20. SAP Certified Technology Associate – SAP Identity & Access Management (IAM)

Minimum 3–5 years in an SAP security/authorizations role within a complex, multi-system SAP landscape; demonstrable experience in access governance, SoD analyses and SAP project support.

Bachelor's degree (or equivalent) in Computer Science, Information Systems, Cybersecurity or a closely related discipline.

The organisation cultivates a culture of meticulous craftsmanship and discretion, with high standards for quality and compliance. Teams operate in a collaborative, process-oriented environment where technical precision and respect for legacy systems coexist with targeted innovation.