In 1966, in Marseille, while the world was talking about Star Trek, Sodexo was serving its first customers, launching our journey in Quality-of-Life Services, led by the visionary Pierre Bellon.
Since then, we have continued to grow, providing essential everyday solutions and improving the lives of millions of users worldwide. Supported by 400,000 dedicated colleagues in 64 countries, we keep expanding and innovating.
About Sodexo Business Services (SBS)
Portugal is no exception 7 years ago, we established Sodexo Business Services (SBS), our shared service canter. Here, you will have the opportunity to join various Financial teams such as Record to Report, Order to Cash, Purchase to Pay, Financial Analysis, and Master Data, supporting European markets and ensuring business growth.
Join Us
We are looking for talented professionals to be part of our team, bringing unique skills and perspectives to help us grow even further.
Opportunity: HRIS Access Management & RBP Stream Lead
Sodexo have embarked on a significant digital transformation and growth program and the Human Resources will take an active part of it.
One element of this transformation is the set-up and deployment of a global HRIS landscape for all the employees in all Sodexo operating countries.
Therefore, Sodexo is recruiting a HRIS- Access Management & RBP lead reporting to the Senior Director HCM, Transformation and Technology.
Member of the design and integration team, the Access Management & RBP manager is responsible for defining guidelines & policies, and governing Role-Based Permissions (RBP) and overall security management within the SAP SuccessFactors platform.
As a core member of the HRIS Design and Implementation Team, this role ensures that system access aligns with organizational roles, compliance requirements, and data privacy regulations.
The RBP and Security Lead plays a critical role in safeguarding sensitive employee data, enabling appropriate access for end users, and supporting the secure, compliant deployment of SuccessFactors modules across the business.
Key Responsibilities:
1. Role-Based Permission (RBP) Design & Implementation
* Define and design the global RBP strategy & guidelines in alignment with HR, IT, compliance, and privacy teams.
* Design role hierarchies, permission groups, and target populations in SuccessFactors.
* Create and manage role matrices that map access levels to organizational roles.
* Work with functional leads to validate access needs across modules (e.g., EC, Recruitment, Performance, Compensation).
2. Security Configuration & Governance
* Manage the configuration of RBPs within SuccessFactors based on approved design specifications.
* Maintain the security framework, ensuring scalability, consistency, and auditability.
* Ensure segregation of duties (SoD) and least-privilege principles are applied.
* Collaborate with IT security and data privacy teams to meet internal security policies and external compliance standards (e.g., GDPR, SOC 2).
3. Access Control Management
* Manage access provisioning and de-provisioning processes for project and production environments.
* Support the user access review and certification process across stakeholders.
* Ensure access change requests follow proper controls, approvals, and documentation.
4. Testing & configuration
* Develop and execute security testing plans including unit testing, SIT, UAT support, and
* regression testing.
* Validate that all roles and permissions function correctly across modules.
* Assist with defect resolution related to RBP/security during testing cycles
5. Project Collaboration & Documentation
* Serve as the primary security point of contact in the design and implementation team.
* Provide guidance to country leads and system admins on local role mapping and requirements.
* Maintain detailed documentation for all RBP roles, configurations, changes, and decisions.
* Contribute to end-user training materials and FAQs relating to system access and security.
What You Need to Succeed:
* 5 to 7-year experience in HRIS Core HR or HRIS project at a global level.
* Experience in HRIS implementation projects (build and/or run), ideally in a global environment with whether at a consulting company or in an internal team.
* Certifications in Project Management such as PMP is a plus
* Operational HR experience on the field of Core HR in large companies is a plus
* Master's Degree in Computer Science / Information Technology, HR, C&B, Finance, Business Administration, or equivalent
* SAP SF knowledge is requested
* Proven experience configuring and managing RBP within SAP SuccessFactors.
* Strong understanding of SuccessFactors modules and how access is controlled across them.
* Hands-on experience in security governance, access controls, and audit readiness.
* Knowledge of data privacy, compliance, and IT security best practices.
* Strong analytical, documentation, and troubleshooting skills..
* Familiarity with global implementation methodologies and governance models.
* Adaptability and flexibility - Customer oriented
* Fluent in English.
* Strong interpersonal skills / ability to influence in transverse situations, ability to generate spirit of collaboration.
What We Offer:
* Hybrid work model and flexible working hours;
* Health & Life Insurance ;
* Meal allowance paid via card;
* Additional paid leave ( birthday, volunteering day, extra vacation day );
* Access to 6,000+ free online courses ;
* Professional growth opportunities within Sodexo;
* Participation in multicultural projects;
* Well-being initiatives to support our teams.
Apply now Send your CV to with the job title in the subject line. Explore all our career opportunities here: Sodexo Careers .
Learn more about Sodexo: YouTube - Sodexo .
Diversity & Inclusion Statement
Sodexo is committed to creating a diverse and inclusive environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment based on merit.
Data Privacy:
We respect your privacy. Your personal data will be used exclusively for recruitment purposes, processed under GDPR regulations, and treated confidentially. For further details, contact .