IT Product Owner Security & Authorizations

About Olympus

We are an equal opportunities employer and we are committed to ensuring that no applicant or employee receives less favorable treatment on the grounds of gender, age, disability, religion, belief, sexual orientation, marital status, or race, or is disadvantaged by conditions or requirements which cannot be shown.

The job is conducted in line with our Core Values which are: Patient Focus, Integrity, Innovation, Impact and Empathy. Olympus is an equal opportunities employer championing a culture of equality, diversity and inclusion embedded throughout the organization and workforce.

Job Summary

We are looking for an experienced SAP Security & Authorization Consultant with over 10 years of experience in designing, implementing, and supporting SAP security solutions across complex landscapes. The ideal candidate will have strong expertise in S/4HANA, Fiori security, and SAP GRC, with a deep understanding of compliance, risk management, and access governance.

PRIMARY DUTIES AND RESPONSIBILITIES

• Design, implement, and maintain SAP security and authorization concepts across different SAP landscapes including SAP S/4HANA.
• Lead role design, user provisioning, and authorization strategy aligned with business and compliance requirements
• Support the SAP GRC Access Control including ARA, ARM, EAM.
• Perform Segregation of Duties (SoD) analysis, risk identification, and mitigation
• Design and manage Fiori security including catalogs, groups, spaces/pages, and role mapping
• Configure and troubleshoot SAP Fiori launchpad authorizations and OData services
• Manage user lifecycle processes including onboarding, role assignment, and deprovisioning and manage the related service providers
• Collaborate with audit and compliance teams to support internal/external audits
• Conduct periodic user access reviews and ensure compliance with security policies
• Troubleshoot authorization issues and perform root cause analysis

Technical Competencies:

• Strong hands-on experience in SAP role design (single, composite, derived roles) include legacy ECC, Fiori and S/4 environments
• Deep knowledge of authorization objects, profiles, and SU24/SU25 concepts and transport management
• Expertise in SAP GRC Access Control modules like Access Risk Analysis, Access Request Management and Emergency Access Management
• Strong understanding of SoD ruleset configuration and risk remediation
• Experience in firefighter ID setup , support process and monitoring
• Knowledge of Fiori-based authorization model and backend integration and S/4 HANA authorization concepts
• Understanding SSO mechanisms and Integration with Identity solutions
• Experience in handling SOX audits and compliance requirements
• Ability to prepare audit reports and documentation of audit controls
• Experience with role transport strategy across landscapes, ChaRm and ITSM tool for controlled changes would be appreciated.
• Strong skills in authorization trace analysis (ST01, SU53, SUIM) and root cause analysis of access issues across SAP across SAP modules

Other Competencies (Behavioral, Leadership)

• Strategic mindset - Seeing ahead to future possibilities and translating them into breakthrough strategies.
• Cultivates innovation - Creating new and better ways for the organization to be successful.
• Drives results - Consistently achieving results, even under tough circumstances.
• Decision quality - Making good and timely decisions that keep the organization moving forward.
• Balances stakeholders - Anticipating and balancing the needs of multiple stakeholders.
• Collaborates - Building partnerships and working collaboratively with others to meet shared objectives.
• Instills trust - Gaining the confidence and trust of others through honesty, integrity, and authenticity.
• Situational adaptability - Adapting approach and demeanor in real time to match the shifting demands of different situations.

MINIMUM QUALIFICATIONS

Education

• Bachelor's degree preferably in Computer Science, Information technology, Computer Engineering,
• Minimum 10 Year's experience
• Strong hands-on experience in SAP role design (single, composite, derived roles) include legacy ECC, Fiori and S/4 environments
• Deep knowledge of authorization objects, profiles, and SU24/SU25 concepts and transport management
• Expertise in SAP GRC Access Control modules like Access Risk Analysis, Access Request Management and Emergency Access Management
• Strong understanding of SoD ruleset configuration and risk remediation
• Experience in firefighter ID setup , support process and monitoring
• Knowledge of Fiori-based authorization model and backend integration and S/4 HANA authorization concepts
• Understanding SSO mechanisms and Integration with Identity solutions
• Demonstrable technical skills.
• Demonstrable business and tech acumen.

Skills

• Detail Oriented
• Demonstrable business and tech acumen.