Application Security & Access Control Operations Lead - Finance & Administration

Description & Requirements

The energy of a newsroom, the pace of a trading floor, the buzz of a recent tech breakthrough; we work hard, and we work fast - while keeping up the quality and accuracy we're known for. It's what keeps us inventing and reinventing, all the time. Our culture is wide open, just like our spaces. We bring out the best in each other through collaboration. Through our countless volunteer projects, we also help network with the communities around us, too. You can do amazing work here. Work you couldn't do anywhere else. It's up to you to make it happen.

Our team

The Finance Application Security & Access Control team is responsible for governing user access across the Finance application landscape, ensuring the right users have the right access at the right time. The team manages provisioning, access reviews, Segregation of Duties (SoD), privileged access, and compliance controls to protect financial data and support regulatory requirements.

What's the role?

As the Finance Application Security & Access Control Lead, you will be responsible for driving and governing access management processes across SAP, Oracle EPM, and cloud-based Finance applications. You will help strengthen the control environment by improving access governance practices, managing risk, and identifying opportunities to modernize the security and provisioning landscape.

We'll trust you to:

Drive the technology roadmap for access governance and provisioning, evaluating new tools and capabilities to improve security, compliance, and operational efficiency

Govern user provisioning and lifecycle management processes across Finance applications

Lead access governance activities including user access reviews, role recertifications, and privileged access reviews

Manage Segregation of Duties (SoD) risks, mitigation controls, and remediation efforts

Govern Firefighter/Emergency Access Management processes and monitoring

Oversee privileged and administrative access monitoring across cloud and on-prem applications

Partner with Finance, Technology, Risk, and Audit teams to maintain a strong and audit-ready control environment

Drive continuous improvement of security and access control standards across the Finance landscape

You'll need to have:

10+ years of experience in IAM, Application Security, Access Governance, or ERP Security

Strong experience with SAP and/or Oracle security models

Hands-on experience with SAP GRC Access Control, including SoD analysis, access requests, and emergency access management

Expertise in RBAC, role provisioning, user access reviews, and recertification processes

Experience implementing and governing cloud application provisioning frameworks

Experience supporting SOX compliance, audit activities, and access-related controls

Strong analytical and risk assessment skills with the ability to identify and remediate control gaps

Nice to Have Skills:

Experience with Pathlock, Saviynt, or similar IAM/GRC platforms

Experience supporting SAP BDC security and access controls

Exposure to multi-platform access governance across SAP, Oracle, and SaaS applications

Familiarity with privileged access management and continuous control monitoring solutions

Experience in Project Management

We'd love to see:

A fresh perspective and willingness to challenge existing processes and controls

A passion for simplifying and modernizing access governance through automation and technology

Strong stakeholder management skills with the ability to influence across business and technology teams

A continuous improvement mindset focused on balancing security, compliance, and user experience

Salary Range = 200,000 - 240,000 USD Annual + Benefits + Bonus

The referenced salary range is based on the Company's good faith belief at the time of posting. Actual compensation may vary based on factors such as geographic location, work experience, market conditions, education/training and skill level.

We offer one of the most comprehensive and generous benefits plans available and offer a range of total rewards that may include merit increases, incentive compensation (exempt roles only), paid holidays, paid time off, medical, dental, vision, short and long term disability benefits, 401(k) +match, life insurance, and various wellness programs, among others. The Company does not provide benefits directly to contingent workers/contractors and interns.

Discover what makes Bloomberg unique - watch our podcast series for an inside look at our culture, values, and the people behind our success.