Job Summary
Key Responsibilities
Architecture & Design
•
Define and implement SAP Security Architecture aligned with enterprise security standards.
•
Design and architect SAP GRC solutions, including:
o
Access Control (AC)
o
Process Control (PC)
o
Risk Management (RM)
•
Lead role design strategy for SAP ECC, S/4HANA, and cloud environments.
•
Establish Segregation of Duties (SoD) frameworks and risk mitigation strategies.
SAP GRC Implementation & Governance
•
Lead end-to-end SAP GRC implementations and upgrades.
•
Configure and manage:
o
ARA (Access Risk Analysis)
o
ARM (Access Request Management)
o
EAM (Emergency Access Management)
o
BRM (Business Role Management)
•
Ensure compliance with internal policies and external regulations (SOX, GDPR, etc.).
•
Define governance models for user provisioning, role lifecycle, and access reviews.
Security Operations & Risk Management
Classification: Internal
•
Oversee user access management, role provisioning, and periodic access reviews.
•
Conduct risk analysis and remediation of access conflicts.
•
Define and implement controls for audit readiness.
•
Support internal and external audits and compliance checks.
Integration & Transformation
•
Integrate SAP GRC with SAP S/4HANA, Fiori, BTP, and third-party systems.
•
Drive security transformation initiatives during S/4HANA migrations.
•
Implement IAM integrations (e.g., Azure AD, Identity Access Management tools).
Stakeholder Management
•
Collaborate with business, audit, compliance, and IT teams to align security strategy.
•
Act as a trusted advisor for security and compliance across SAP programs.
•
Provide leadership to security and GRC functional teams.
Primary Skills (Must Have)
•
Strong experience in SAP GRC Access Control (AC 10.x/12.x).
•
Expertise in:
o
ARA, ARM, EAM, BRM
•
Deep knowledge of SAP Security & Authorization concepts in:
o
SAP ECC
o
SAP S/4HANA
•
Experience in SoD design, risk analysis, and remediation.
•
Proven experience in SAP role design and optimization.
•
Strong understanding of compliance frameworks (SOX, GDPR).
Secondary Skills (Good to Have)
•
Experience with SAP Process Control (PC) and Risk Management (RM).
•
Knowledge of SAP BTP security and cloud identity services.
Classification: Internal
•
Integration experience with IAM tools (e.g., Azure AD, SailPoint, Okta).
•
Exposure to Fiori security and UI authorizations.
•
Basic understanding of ABAP authorization objects.
•
Experience with audit tools and reporting dashboards.
Experience Required
•
12–18+ years of experience in SAP Security & GRC.
•
Minimum 3–5 end-to-end SAP GRC implementations.
•
Experience in S/4HANA transformation projects is highly preferred.
Educational Qualifications
•
Bachelor’s degree in Engineering, Computer Science, or related field.
•
SAP certifications in GRC / Security are preferred.
Key Competencies
•
Strong analytical and problem-solving skills.
•
Excellent stakeholder communication and leadership abilities.
•
Ability to drive governance and compliance initiatives.
•
Experience in working with global clients and distributed teams.
Skill Requirements
2. In-depth knowledge of sap security concepts, including role design, authorization objects, and user provisioning.
3. Experience with implementing and managing sap grc access control, process control, and risk management modules.
4. Strong analytical and problem-solving skills to identify security vulnerabilities and implement effective solutions.
5. Excellent communication and interpersonal skills to collaborate with teams and communicate security requirements effectively.