SAP GRC Security Consultant sr

Job Summary:

We are seeking a highly experienced Senior SAP Security & GRC Consultant to design, implement, and manage robust SAP security and governance frameworks across SAP ECC and S/4HANA landscapes. The role involves leading access control initiatives, ensuring compliance, mitigating risks, and supporting audits while aligning with business and IT security strategies.

Key Responsibilities:

SAP Security Administration

• Design, build, and maintain SAP security roles and authorizations in ECC and S/4HANA systems
• Perform user administration (user creation, role assignment, access reviews)
• Implement role-based access control (RBAC) and least privilege principles
• Support Fiori security (catalogs, groups, roles) and UI5 authorization concepts

GRC Access Control & Compliance

• Implement and support SAP GRC (Access Control modules - ARA, ARM, EAM, BRM)
• Conduct Segregation of Duties (SoD) analysis and remediation
• Manage firefighter IDs and emergency access processes
• Configure and maintain risk rulesets and mitigation controls

Audit & Risk Management

• Support internal/external audits (SOX, ISO, etc.)
• Perform periodic user access reviews and compliance reporting
• Identify security risks and implement corrective actions

S/4HANA Security & Migration

• Support security activities during ECC to S/4HANA transformation projects
• Redesign roles aligned with S/4HANA simplification and Fiori architecture
• Ensure compliance with SAP best practices in S/4HANA security

Integration & Technical Security

• Manage security for integrated systems (BW, CRM, SRM, SuccessFactors, etc.)
• Handle RFC, ALE, IDoc, and interface security
• Work with Basis team on transport management and system security parameters

Stakeholder Collaboration

• Work with business teams to define access requirements
• Collaborate with IT, audit, and compliance teams
• Mentor junior consultants and provide leadership in security governance

Required Skills & Expertise:

Core SAP Security

• Strong experience in SAP Security (roles, profiles, authorizations)
• Hands-on expertise in ECC and S/4HANA security architecture
• Knowledge of Fiori security, OData services, and gateway roles

SAP GRC

• Experience with SAP GRC Access Control (ARA, ARM, EAM, BRM)
• Strong understanding of SoD concepts and compliance frameworks

Technical Skills

• Knowledge of SAP tables (AGR_, USR_) and authorization objects
• Understanding of SAP Basis and transport management
• Experience with SU24, SU25, PFCG, SUIM, STAUTHTRACE

Compliance & Standards

• Experience in SOX compliance and audit support
• Understanding of ITGC controls and risk management

Preferred Skills:

• Experience in SAP S/4HANA conversion or greenfield implementation
• Exposure to SAP Cloud (BTP, SuccessFactors, Ariba) security
• Knowledge of Identity Access Management (IAM) tools
• Certifications in SAP Security or GRC