Details
Job Description
Job Summary
We are seeking a highly experienced
Senior SAP Security & GRC Consultant to design, implement, and manage robust SAP security and governance frameworks across
SAP ECC and S/4HANA landscapes. The role involves leading access control initiatives, ensuring compliance, mitigating risks, and supporting audits while aligning with business and IT security strategies.
Key Responsibilities
SAP Security Administration
- Design, build, and maintain SAP security roles and authorizations in ECC and S/4HANA systems
- Perform user administration (user creation, role assignment, access reviews)
- Implement role-based access control (RBAC) and least privilege principles
- Support Fiori security (catalogs, groups, roles) and UI5 authorization concepts
GRC Access Control & Compliance
- Implement and support SAP GRC (Access Control modules - ARA, ARM, EAM, BRM)
- Conduct Segregation of Duties (SoD) analysis and remediation
- Manage firefighter IDs and emergency access processes
- Configure and maintain risk rulesets and mitigation controls
Audit & Risk Management
- Support internal/external audits (SOX, ISO, etc.)
- Perform periodic user access reviews and compliance reporting
- Identify security risks and implement corrective actions
S/4HANA Security & Migration
- Support security activities during ECC to S/4HANA transformation projects
- Redesign roles aligned with S/4HANA simplification and Fiori architecture
- Ensure compliance with SAP best practices in S/4HANA security
Integration & Technical Security
- Manage security for integrated systems (BW, CRM, SRM, SuccessFactors, etc.)
- Handle RFC, ALE, IDoc, and interface security
- Work with Basis team on transport management and system security parameters
Stakeholder Collaboration
- Work with business teams to define access requirements
- Collaborate with IT, audit, and compliance teams
- Mentor junior consultants and provide leadership in security governance
Job Requirements
Required Skills & Expertise
Core SAP Security
- Strong experience in SAP Security (roles, profiles, authorizations)
- Hands-on expertise in ECC and S/4HANA security architecture
- Knowledge of Fiori security, OData services, and gateway roles
SAP GRC
- Experience with SAP GRC Access Control (ARA, ARM, EAM, BRM)
- Strong understanding of SoD concepts and compliance frameworks
Technical Skills
- Knowledge of SAP tables (AGR_, USR_) and authorization objects
- Understanding of SAP Basis and transport management
- Experience with SU24, SU25, PFCG, SUIM, STAUTHTRACE
Compliance & Standards
- Experience in SOX compliance and audit support
- Understanding of ITGC controls and risk management
Preferred Skills
- Experience in SAP S/4HANA conversion or greenfield implementation
- Exposure to SAP Cloud (BTP, SuccessFactors, Ariba) security
- Knowledge of Identity Access Management (IAM) tools
- Certifications in SAP Security or GRC
