SAP GRC Technical Lead

An SAP Security Consultant specializing in S/4HANA, GRC AC 12.0, and Fiori designs, implements, and maintains secure user access, focusing on Segregation of Duties (SoD) compliance, Fiori app authorization, and GRC automation. Key tasks include creating PFCG roles, configuring GRC rulesets, and ensuring S/4HANA compliance.

Key Job Responsibilities

SAP S/4HANA Security: Design and maintain role-based access control, including complex derived, composite, and single roles in S/4HANA environments.

SAP Fiori Security: Implement Fiori security by configuring catalogs, groups, tiles, and catalogs, and assigning them to roles.

GRC AC 12.0 Access Control: Configure and support ARA (Access Risk Analysis), ARM (Access Request Management), BRM (Business Role Management), and EAM (Emergency Access Management/Firefighter).

SoD Compliance & Audits: Perform risk analysis (SoD), manage user provisioning, and support auditing activities.

Troubleshooting: Resolve authorization issues using SU53, ST01, and trace logs.

Required Technical Skills

Systems: SAP S/4HANA, SAP Fiori, GRC 12.0/10.1.

Authorization Tools: PFCG, SU24, SUIM, SUAU, Role Administration, Transport Management.

GRC Capabilities: Risk mitigation, rulebook customization, BRF+ (Business Rule Framework) for workflows.

Preferred Qualifications

Full-cycle SAP security implementation experience.

Strong understanding of SAP table security and authorization objects.

Ability to work with business stakeholders to define security requirements.