**Job Function**: Finance **Job Sub Function**: Risk Management **Job Category**: Professional **All Job Posting Locations**: Bogotá Distrito Capital, Colombia For more than 130 years, diversity, equity & inclusion (DEI) has been a part of our cultural fabric at Johnson & Johnson and woven into how we do business every day. Rooted in Our Credo, the values of DEI fuel our pursuit to create a healthier, more equitable world. Our diverse workforce and culture of belonging accelerate innovation to solve the world’s most pressing healthcare challenges. We know that the success of our business - and our ability to deliver meaningful solutions - depends on how well we understand and meet the diverse needs of the communities we serve. Which is why we foster a culture of inclusion and belonging where all perspectives, abilities and experiences are valued and our people can reach their potential. At Johnson & Johnson, we all belong. We are looking for our next GAM IT Compliance Analyst in Bogotá. **Responsibilities**: - Review completeness and appropriateness of access/change/removal requests from business users. - Review access requests against the role matrix/library and ensure approvers are correct based on the approval matrix. - Perform Segregation of Duties (SOD) review to ensure the access requested does not conflict with existing access and manual job responsibilities. - Assigning/documenting appropriate mitigating controls on new/existing valid/accepted SOD conflicts. - Prepare weekly movement reports to ensure that the system access of transferred employees is up-to-date and the system access of terminated users is revoked on time. - Perform access and SOD recertifications periodically and ensure remediations are completed on time. - Perform accurate and on-time segregation of duties (SOD) assessments by establishing tools and guidelines to ensure that mitigating control libraries and SOD rulesets are up-to-date and complete. - Prepare and update SOPs and Work Instructions. - Support internal and external audits related to access management controls through the preparation of supporting documentation and conducting walkthroughs. - Conduct trainings on user access management controls and provide continuous support to business reviewers/approvers and related process owners. **Due Diligence and Projects** - Perform/ assist due diligence reviews (e.g., role mapping and SOD assessment) and manage access deployment to stakeholders in projects involving process migrations/transitions. - Support and understand the business by monitoring risks related to organization, technology, and process changes to ensure that the system roles remain appropriate.