Be an Early Applicant
We provide cutting-edge, seamless omnichannel experiences for customers—no matter when, where or how they choose to shop
The Role
Lead SAP Security, IAM, and GRC for the Retail Spine transformation. Manage role design, access controls, SoD, Firefighter, GRC Access Control, audit readiness (SOX/PCI/GDPR), IAM integration (SSO/MFA/Azure AD), SI vendor governance, and team development across S/4HANA, BTP, Fiori, and integrated systems.
Summary Generated by Built In
Category/Area of Expertise: IT & Technology
Job Requisition: 505391
Address: USA-NC-Salisbury-2110 Executive Drive
Store Code: IT Transformation (5171438)
Ahold Delhaize USA, a division of global food retailer Ahold Delhaize, is part of the U.S. family of brands, which includes five leading omnichannel grocery brands - Food Lion, Giant Food, The GIANT Company, Hannaford and Stop & Shop. Our associates support the brands with a wide range of services, including Finance, Legal, Sustainability, Commercial, Digital and E-commerce, Technology and more.
Primary Purspose:
The Manager III, SAP Security & GRC is responsible for leading SAP Security, Identity & Access Management (IAM), and Governance, Risk & Compliance (GRC) operations in support of the Retail Spine transformation, a business led, IT enabled modernization initiative aimed at strengthening long term competitiveness, improving operational efficiency, and establishing future state enterprise capabilities. This leader manages a team of SAP security analysts and GRC specialists responsible for role design, access controls, compliance, and audit readiness across all SAP S/4HANA and integrated systems. The Manager III partners closely with the SAP Functional teams, business process owners, Audit, InfoSec, Systems Integrator, and third party technology providers to ensure secure, compliant, and scalable SAP operations that enable Retail Spine program success.
Duties & Responsibilities:• Provide strategic and operational leadership across SAP Security and GRC functions, ensuring a secure, compliant, and well-governed technical landscape spanning S/4HANA, BTP, Fiori, and all integrated systems within the RISE with SAP environment.• Own the SAP role design standard, including role catalog governance, authorization concept, segregation of duties (SoD) frameworks, mitigation controls, and access request workflows ensuring designs are clean core aligned and sustainable across the programme lifecycle.• Define and govern identity and access management integration standards, including SSO, MFA, and Azure AD/Entra ID federation, in partnership with Enterprise Security and SI architects ensuring secure, scalable identity patterns are established and enforced across the SAP landscape.• Lead SAP GRC platform operations covering Access Control (AEM, ARM, BRM, EAM), Firefighter and Emergency Access Management processes, periodic access reviews, SoD conflict analysis, and continuous controls monitoring maintaining audit-ready posture at all times.• Own SOX, PCI, GDPR, and internal and external audit readiness for the SAP landscape, including access control evidence management, risk logs, mitigation plans, and remediation tracking in close partnership with Internal Audit, External Audit, and Enterprise InfoSec.• Ensure security is embedded across the full release lifecycle covering transport reviews, role change impact assessments, interface security validations, and landscape change controls operating consistently across agile, hybrid, and waterfall delivery models.• Govern the security obligations and deliverables of the SI and vendor partners, ensuring secure solution design, adherence to established standards, quality of security-related work products, and timely risk escalation and remediation.• Partner with SAP Technology leadership and Solution Architects to define and maintain secure solution patterns, hardening standards, and security architecture aligned to the RISE with SAP shared responsibility model and Retail Spine future state architecture.• Establish and maintain KPIs and operational metrics for SAP Security and GRC functions including role change cycle time, access request SLA adherence, SoD remediation velocity, and audit finding closure rates and drive continuous improvement through automation and process optimization across IAM and GRC workflows.• Provide security leadership during go-lives, cutovers, system refreshes, environment provisioning, and major Retail Spine transformation waves ensuring security controls are validated, access is appropriately provisioned, and risk is formally accepted or mitigated prior to each milestone.• Coach and develop SAP security analysts and GRC specialists, building capability in cloud-native SAP security, BTP security patterns, identity management, and emerging technology risk fostering a strong security engineering culture aligned to the demands of a modern SAP transformation.
Basic Qualifications:• Bachelor's degree in Information Technology, Cybersecurity, Computer Science, or related field.• 10+ years of experience in SAP Security and SAP GRC Access Control.• 3-5+ years leading security or technical teams in large, complex SAP landscapes.• Strong hands on experience with SAP role design, SoD, Firefighter, GRC Access Control, and audit/compliance frameworks.• Working knowledge of SAP S/4HANA, HANA, Fiori, SAP BTP, and integrated security architecture.• Experience partnering with System Integrators and managing multi vendor delivery models.• Strong understanding of SOX, PCI, GDPR, and enterprise security standards.• Excellent communication, stakeholder engagement, and leadership skills.
Preferred Qualifications:• Master's degree in Cybersecurity, Technology Management, or related discipline.• SAP or security certifications (e.g., SAP Security, SAP GRC, CISM, CISSP, CISA).• Experience supporting large scale SAP transformations, including S/4HANA migrations or RISE with SAP models.• Knowledge of identity governance (IGA), privileged access management (PAM), and cloud security patterns.• Background in retail, consumer goods, or other high volume transaction environments.
At Ahold Delhaize USA, we provide services to one of the largest portfolios of grocery companies in the nation, and we're actively seeking top talent.
Our team shares a common motivation to drive change, take ownership and enable our brands to better care for their customers. We thrive on supporting great local grocery brands and their strategies.
Our associates are the heartbeat of our organization. We are committed to offering a welcoming work environment where all associates can succeed and thrive. Guided by our values of courage, care, teamwork, integrity (and even a little humor), we are dedicated to being a great place to work.
We believe in collaboration, curiosity, and continuous learning in all that we think, create and do. While building a culture where personal and professional growth are just as important as business growth, we invest in our people, empowering them to learn, grow and deliver at all levels of the business.
Job Requisition: 505391
Address: USA-NC-Salisbury-2110 Executive Drive
Store Code: IT Transformation (5171438)
Ahold Delhaize USA, a division of global food retailer Ahold Delhaize, is part of the U.S. family of brands, which includes five leading omnichannel grocery brands - Food Lion, Giant Food, The GIANT Company, Hannaford and Stop & Shop. Our associates support the brands with a wide range of services, including Finance, Legal, Sustainability, Commercial, Digital and E-commerce, Technology and more.
Primary Purspose:
The Manager III, SAP Security & GRC is responsible for leading SAP Security, Identity & Access Management (IAM), and Governance, Risk & Compliance (GRC) operations in support of the Retail Spine transformation, a business led, IT enabled modernization initiative aimed at strengthening long term competitiveness, improving operational efficiency, and establishing future state enterprise capabilities. This leader manages a team of SAP security analysts and GRC specialists responsible for role design, access controls, compliance, and audit readiness across all SAP S/4HANA and integrated systems. The Manager III partners closely with the SAP Functional teams, business process owners, Audit, InfoSec, Systems Integrator, and third party technology providers to ensure secure, compliant, and scalable SAP operations that enable Retail Spine program success.
Duties & Responsibilities:• Provide strategic and operational leadership across SAP Security and GRC functions, ensuring a secure, compliant, and well-governed technical landscape spanning S/4HANA, BTP, Fiori, and all integrated systems within the RISE with SAP environment.• Own the SAP role design standard, including role catalog governance, authorization concept, segregation of duties (SoD) frameworks, mitigation controls, and access request workflows ensuring designs are clean core aligned and sustainable across the programme lifecycle.• Define and govern identity and access management integration standards, including SSO, MFA, and Azure AD/Entra ID federation, in partnership with Enterprise Security and SI architects ensuring secure, scalable identity patterns are established and enforced across the SAP landscape.• Lead SAP GRC platform operations covering Access Control (AEM, ARM, BRM, EAM), Firefighter and Emergency Access Management processes, periodic access reviews, SoD conflict analysis, and continuous controls monitoring maintaining audit-ready posture at all times.• Own SOX, PCI, GDPR, and internal and external audit readiness for the SAP landscape, including access control evidence management, risk logs, mitigation plans, and remediation tracking in close partnership with Internal Audit, External Audit, and Enterprise InfoSec.• Ensure security is embedded across the full release lifecycle covering transport reviews, role change impact assessments, interface security validations, and landscape change controls operating consistently across agile, hybrid, and waterfall delivery models.• Govern the security obligations and deliverables of the SI and vendor partners, ensuring secure solution design, adherence to established standards, quality of security-related work products, and timely risk escalation and remediation.• Partner with SAP Technology leadership and Solution Architects to define and maintain secure solution patterns, hardening standards, and security architecture aligned to the RISE with SAP shared responsibility model and Retail Spine future state architecture.• Establish and maintain KPIs and operational metrics for SAP Security and GRC functions including role change cycle time, access request SLA adherence, SoD remediation velocity, and audit finding closure rates and drive continuous improvement through automation and process optimization across IAM and GRC workflows.• Provide security leadership during go-lives, cutovers, system refreshes, environment provisioning, and major Retail Spine transformation waves ensuring security controls are validated, access is appropriately provisioned, and risk is formally accepted or mitigated prior to each milestone.• Coach and develop SAP security analysts and GRC specialists, building capability in cloud-native SAP security, BTP security patterns, identity management, and emerging technology risk fostering a strong security engineering culture aligned to the demands of a modern SAP transformation.
Basic Qualifications:• Bachelor's degree in Information Technology, Cybersecurity, Computer Science, or related field.• 10+ years of experience in SAP Security and SAP GRC Access Control.• 3-5+ years leading security or technical teams in large, complex SAP landscapes.• Strong hands on experience with SAP role design, SoD, Firefighter, GRC Access Control, and audit/compliance frameworks.• Working knowledge of SAP S/4HANA, HANA, Fiori, SAP BTP, and integrated security architecture.• Experience partnering with System Integrators and managing multi vendor delivery models.• Strong understanding of SOX, PCI, GDPR, and enterprise security standards.• Excellent communication, stakeholder engagement, and leadership skills.
Preferred Qualifications:• Master's degree in Cybersecurity, Technology Management, or related discipline.• SAP or security certifications (e.g., SAP Security, SAP GRC, CISM, CISSP, CISA).• Experience supporting large scale SAP transformations, including S/4HANA migrations or RISE with SAP models.• Knowledge of identity governance (IGA), privileged access management (PAM), and cloud security patterns.• Background in retail, consumer goods, or other high volume transaction environments.
At Ahold Delhaize USA, we provide services to one of the largest portfolios of grocery companies in the nation, and we're actively seeking top talent.
Our team shares a common motivation to drive change, take ownership and enable our brands to better care for their customers. We thrive on supporting great local grocery brands and their strategies.
Our associates are the heartbeat of our organization. We are committed to offering a welcoming work environment where all associates can succeed and thrive. Guided by our values of courage, care, teamwork, integrity (and even a little humor), we are dedicated to being a great place to work.
We believe in collaboration, curiosity, and continuous learning in all that we think, create and do. While building a culture where personal and professional growth are just as important as business growth, we invest in our people, empowering them to learn, grow and deliver at all levels of the business.
Skills Required
- Bachelor's degree in IT, Cybersecurity, Computer Science, or related field
- 10+ years experience in SAP Security and SAP GRC Access Control
- 3-5+ years leading security or technical teams in large, complex SAP landscapes
- Hands-on experience with SAP role design, SoD frameworks, Firefighter, and GRC Access Control
- Working knowledge of SAP S/4HANA, SAP HANA, SAP Fiori, and SAP BTP
- Define and govern IAM integration standards including SSO, MFA, and Azure AD/Entra ID federation
- Experience partnering with System Integrators and managing multi-vendor delivery models
- Strong understanding of SOX, PCI, GDPR, and enterprise security standards for audit readiness
- Excellent communication, stakeholder engagement, and leadership skills
- Master's degree in Cybersecurity, Technology Management, or related discipline
- SAP or security certifications (e.g., SAP Security, SAP GRC, CISM, CISSP, CISA)
- Experience supporting large-scale SAP transformations, S/4HANA migrations or RISE with SAP
- Knowledge of identity governance (IGA), privileged access management (PAM), and cloud security patterns
- Background in retail, consumer goods, or high-volume transaction environments
Ahold Delhaize USA Compensation & Benefits Highlights
-
Healthcare Strength — Benefits include medical, dental, and vision coverage with HSAs/FSAs, mental health resources, and voluntary options like critical illness and pet insurance administered via an ADUSA portal. Feedback suggests wellness programs and inclusive health coverage (e.g., transgender care) are part of the offering.
-
Retirement Support — Corporate roles commonly feature a 401(k) with company match, and some union-represented associates (e.g., Stop & Shop) retain defined-benefit pensions. Feedback suggests brands also participate in single- or multi-employer retirement arrangements that vary by banner and bargaining unit.
-
Parental & Family Support — Paid parental leave, adoption assistance, fertility benefits, and onsite Mother’s Rooms are highlighted for eligible roles. Feedback suggests generous PTO/holidays and hybrid/flexible options further support family needs in many corporate positions.
Ahold Delhaize USA Insights
Am I A Good Fit?
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.
Success! Refresh the page to see how your skills align with this role.
The Company
What We Do
Ahold Delhaize USA, a division of global food retailer Ahold Delhaize, is part of the U.S. family of brands, which includes five leading omnichannel grocery brands – Food Lion, Giant Food, The GIANT Company, Hannaford and Stop & Shop. Our associates support the brands with a wide range of services, including Finance, Legal, Sustainability, Commercial, Digital and E-commerce, Technology and more. Our team includes some of the best and brightest talent from a variety of backgrounds, ranging from decades-long careers in retail to fresh perspectives from outside our industry. With a purpose-driven culture grounded in our values of courage, care, integrity, teamwork and humor, we are committed to fostering a culture of belonging where everyone is valued. Our team shares a common motivation to drive change, take ownership and enable the brands we support to nourish their customers and communities. We thrive on supporting great local grocery brands and their strategies. As part of the largest grocery retail group on the East Coast, we understand our vital role in enabling healthier people and a healthier planet and have an ongoing commitment to driving sustainable change that leads to a thriving food system, nourishes local communities, and creates a better world.
Why Work With Us
We love fresh perspectives, not just fresh produce. We believe that an inclusive workplace fosters creativity, accelerates innovation, and helps us create an even better product. At Ahold Delhaize USA, you’ll find coworkers who are caring and committed, and who focus on dreaming big and getting things done.
Gallery
Ahold Delhaize USA Offices
Hybrid Workspace
Employees engage in a combination of remote and on-site work.
Typical time on-site:
3 days a week
