The Estee Lauder Companies Manager, BI/HANA Security Architect in Long Island City, New York

Manager, BI/HANA Security Architect

Brand: Estée Lauder Companies


The Estée Lauder Companies (ELC) Inc. is a Fortune 500, multinational manufacturer and marketer of prestige skincare, makeup, fragrance and hair care products, headquartered in New York City. As the global leader in prestige beauty, we touch over half a billion consumers a year. The company owns a diverse portfolio of brands, distributed internationally through both digital commerce and retail channels.

ELC prizes the confidentiality of its consumers and therefore places a premium on cybersecurity. As the business world becomes increasingly digital and cyber threats grow in number and in sophistication, ELC will continue to invest and develop a proactive people-centered, cybersecurity program. The Global Information Risk and Security (GIRS) team spearheads these efforts.

The GIRS Identity Security Manager focused on SAP BI security architecture will be a SAP Security Subject Matter Expert and be responsible for supporting end users. The individual will gather and analyze information, design overall SAP security architecture and strategy, build role and maintain authorization, perform SAP security tools management, and collaborate closely with Compliance and Internal Audit. This individual is expected to be a strong leader that can ensure a comprehensive strategy for role-based access is in place and followed across ELC.

This individual will also serve as a technical and design advisor for new SAP applications and will provide direct oversight of service providers to insure integrity of the implemented design.

This role necessarily deals with highly confidential and sensitive information, and the role is expected to confirm to best handling practices.

The Global Information Risk and Security (GIRS) Identity Security Manager focused on SAP BI security architecture will work closely with internal stakeholders, including Legal, Compliance, IT, Brands, Regions, and Functions to architect cross-organizational solutions.

Specifically, the individual will:

  • Serve as an SAP BI systems and business architect influencing design decisions, including assisting brand, regional, and functional IT teams to design and develop robust, high-efficiency SAP and BI security applications, to meet business requirements, and to enable long-term maintainability. Collaborate with process teams to gather security-specific requirements, translate those requirements into designs, and implement solutions that comply with ELC’s architecture and standards.

  • Liaise with support organizations for day-to-day operations, including providing technical assistance and acting as an escalation point incidents.

  • Maintain SAP Security Policies and Procedures for all aspects of security in both production and non-production environments.

  • Build relationships across IT and ELC to understand requirements, trends, and strategies to ensure successful execution and integration. Review business requirements and translate into technical specifications. Recommend new practices, processes, metrics, or models for the business intelligence environment.

  • Analyze business requirements, create matrices/documents, and implement SAP Security technical requirements.

  • Design authorizations for HANA DB objects. Configure system privileges, object privileges, analytic privileges, application and package privileges, user management, and transports; troubleshoot authorization issues. Configure security design and roles on NetWeaver Business Objects Planning and Consolidation (BPC). Configure authentication, authorization, and user management in SAP BOBj.

  • Perform security implementation, version upgrades, and rollouts, including user administration, role administration, and configurating/troubleshooting in a CUA environment across various systems.

  • Research new solutions to meet current and future security requirements.

  • Assist in documenting, maintaining, and updating user and role administration-related security controls and procedures.

  • Keep abreast of industry technical trends and new developments to grow skills and remain current with industry standards.

  • Successfully complete multiple concurrent projects, and balance project commitments with support needs of brands, regions, and functions. Report actions taken in a timely and understandable manner.

  • Meet project budget, scope, schedule, and quality goals. Make major contributions to assure deliverables meet objectives.

  • Provide guidance to other team members, as necessary.

  • Embrace and accept changes, achieving objectives and remaining flexible when priorities evolve.

  • Lead security discussion across multiple support organizations and review dashboards to ensure SLAs are met.

  • Independently create written deliverables and participate in presentations.


Experience in SAP BI, identity security, architecture, information technology, risk management, development, networking, business processes, privileged access control, and compliance. Experience with compliance requirements (e.g. SOX, CSV, E-compliance, Records Management, Privacy). Security design, configuration and implementation experience in Fiori, HANA, BI, BOBj, BPC, ECC, EP, SCM/APO, Solution Manager, SRM, XI/PI, CUA, and/or Security Weaver. Strong hands on experience in SAP HANA, BPC, SAP BW/BI, BOBj, SSO security, and related portals. Knowledge and proficiency in internal controls and segregation of duties.

Excellent track record and proven ability to produce effective, innovative solutions on an enterprise scale. Constantly evaluating the evolving IT industry to be on top of the latest innovations in IT and performing fit-analysis of new technologies, sharing the same with key stakeholders. Experience self-starting and independently completing complex security-related tasks, and working within global teams.

Strong oral and written communication skills, influence/negotiation skills, analytical/diagnostic/problem solving skills, business development experience, and conflict management experience. Ability to problem-solve, think creatively, work under pressure, challenge the status quo, meet strict deadlines, and manage ambiguity.

Strong leadership skills, including the ability to set goals and provide positive and constructive feedback respectfully to build positive relationships and improve business results.

Ability to work during evenings or on weekends to support special tasks or projects. Adaptability to work in a global culture that includes a 24/7 support model. Potentially need to travel to support critical projects.

Experience with IT project management concepts and reporting. Proficient (oral and written) in English as a business language.

Experience handling, securing, and communicating highly confidential and sensitive information.

Job: Information Technology

Primary Location: Americas-US-NY-Long Island City

Job Type: Standard

Schedule: Full-time

Shift: 1st (Day) Shift

We are an equal opportunity employer. Minorities, women, veterans, and individuals with disabilities are encouraged to apply.

Job Number: 192127