Job Summary
Define and deliver SAP security architecture, access-control design and compliance enablement for AD initiatives, transformation work and strategic SAP security improvements.
SAP security strategy, GRC, SoD controls, role architecture, audit readiness, access design for SAP core, add-ons and future ERP transformation releases.
Key Responsibilities
Lead SAP security design for application development, transformation initiatives, role redesign and access-control improvements.
Define and govern SAP authorization concepts, role architecture, composite/single/derived role strategy, organisational level design and control standards.
Lead access risk analysis, SoD control design, mitigation control alignment and audit evidence preparation in SAP GRC or equivalent tools.
Partner with IAM, IT Security, BASIS, functional teams and business process owners to ensure secure-by-design access for Finance, Operations, OTC and MM/PP processes.
Drive automation and self-service opportunities for role-based access control, access analysis, provisioning/de-provisioning and audit reporting.
Provide expert guidance for emergency access, privileged access, critical transaction review and SAP_ALL/SAP_NEW risk remediation.
Review security impacts of releases, integrations, SAP upgrades, HR/compliance changes and cloud-connected components such as EWM and SuccessFactors connectivity.
Define security acceptance criteria, test scenarios and implementation plans for new roles, role changes and security remediation projects.
Support transition and KT by shaping security runbooks, access-control design documents and audit playbooks.
Coach ASM security administrators on sustainable administration processes, control adherence and escalation handling.
Skill Requirements
Mendatory skills:
SAP Security architecture
SAP GRC Access Control
Role design and authorization objects
SoD analysis and remediation
Audit and compliance controls
Emergency/privileged access management
User provisioning/de-provisioning design
Cross-module SAP business process understanding
Stakeholder and governance leadership
Optional skills
IAM integration
SAP Fiori/Gateway security
S/4HANA security conversion
GRC process control
Security automation/self-service design
Regulated industry audit experience