SAP Security/GRC Consultant

We are seeking a seasoned SAP Security/GRC Consultant to join our dynamic team and embark on a rewarding career journey.We are seeking a highly skilled SAP Security/GRC Consultant to join our team. The successful candidate will be responsible for providing expertise in designing, implementing, and managing SAP security measures and GRC processes. This role requires a deep understanding of SAP security concepts, role design, access controls, and GRC solutions.

Roles And Responsibilities

• Monitoring and administration of existing SAP Systems in a 24X7 support model.
• Design and implement SAP security roles, authorizations, and access controls to maintain the confidentiality and integrity of SAP systems.
• Conduct regular security assessments, audits, and vulnerability assessments to identify and address security risks.
• Collaborate with SAP functional teams to translate business requirements into secure SAP configurations.
• Monitor and respond to security incidents, conducting investigations and implementing corrective actions.
• Implement and manage SAP Single Sign-On (SSO) solutions and enforce secure authentication mechanisms.
• Stay updated on SAP security best practices, patches, and advisories, ensuring timely application of updates.
• Collaborate with infrastructure and network teams to secure SAP system landscapes.
• Implement and configure SAP GRC solutions, including Access Control, Process Control, and Risk Management modules.
• Conduct risk assessments to identify and mitigate potential risks associated with SAP systems.
• Design and enforce GRC policies and controls to ensure compliance with internal policies, industry standards, and regulatory requirements.
• Lead SAP GRC implementation projects, ensuring alignment with business goals and industry best practices.
• Collaborate with internal and external audit teams, providing documentation and evidence for SAP-related audits.
• Provide expert guidance on GRC-related matters, including policy development and continuous improvement initiatives.
• Develop and maintain documentation for SAP security and GRC configurations, processes, and best practices.Conduct training sessions for end-users and IT teams on SAP security and GRC policies and procedures.
  
  

Must-Have Skills

• Must have 3-6 years of experience in SAP Security, SAP GRC 10.x/ 12.x Access Control modules and S/4 Hana
• SAP Security & GRC with Access control -having experience in Support or Implementation.
• Experience in full cycle SAP S/4 or ECC Security assessments, design, and implementations as well as understanding of leading practices as it relates to ERP security. Security experience with SAP Fiori, BI, SRM, CRM, SCM, MDG and HR a plus
• Understand leading practices as it relates to SAP Security, and provide recommendations to clients on security role design and implementation
• Strong understanding of Segregation of Duties frameworks
• Ability to design, implement, and test SAP automated, manual, security, and segregation of duty controls
• Hands-on experience in configuration and customization of Access request mgmt (ARM), Access Risk Analysis (ARA), Emergency Access mgmt (EAM), Business Role mgmt (BRM), Multi-Stage Multi-Path (MSMP) workflows, BRF Plus Rules. Hands-on experience in Rule Set Customizations. Experience with setting up security controls, FFID access, table logging and audit reporting for SAP GRC.
• Proficiency in the development, documentation and implementation of regulatory, information security, and business continuity solutions for the distributed environment.
• Experience in Data Administration, Identity Management, Information Security, Sarbanes-Oxley Regulatory Compliance and authorization conflict analysis/resolutions
• Good understanding of process of designing and maintaining authorization roles for SAP ECC, APO, GRC, BW, S/4Hana, Fiori, Java and BOBJ systems
• Experience with SAP Cloud/BTP platforms is a plus.
  
  

Good To Have Skills

• Certifications such as: CISSP, CISM, or CISA certification a plus
• Good interpersonal skills with the ability to present ideas in user-friendly language.
• Successful experience working in a team-oriented, collaborative environment.
• Proven analytical and problem-solving abilities.
• Should have excellent relationship and customer handling skills.
• Strategic thinker with strong influencing skills and the ability to build consensus.
• Strong action orientation; ability to make things happen.
• Facilitates team and stakeholder meetings effectively.
  
  

Skills: sap,grc,access control,design