Risk Consulting - Risk Technology - SAP GRC & Security - Senior Consultant

About The Position

Requirements

• 3–5+ years of experience supporting SAP Security and/or SAP GRC engagements
• A bachelor’s degree in computer science, information systems, information security, or a related field (preferred)
• Hands-on experience with Design, Build, Test, and Deploy activities for SAP Application Security across systems such as SAP ECC, S/4HANA, FIORI, ARIBA, HCM, or SuccessFactors
• Experience supporting SAP GRC Access Control (e.g., version 12.0 or similar technologies), including exposure to IAM integrations (e.g., Saviynt, SailPoint, SAP IAG)
• Experience supporting SoD and Critical Action rule sets, access provisioning, and emergency access processes
• Ability to manage multiple workstreams with guidance and supervision
• Willingness to travel based on client needs (estimated up to 80%); valid U.S. driver’s license and passport required
• Hands-on experience supporting SAP Security and SAP GRC Access Control implementations
• Understanding of SAP Application Security concepts across on‑premise, cloud, and SaaS SAP applications
• Ability to execute defined tasks independently while escalating risks and issues appropriately
• Strong analytical, problem-solving, and documentation skills
• Effective written and verbal communication skills, with the ability to work collaboratively across teams
• Comfort working in fast-paced environments with shifting priorities

Nice To Haves

• Progress toward or interest in obtaining relevant certifications (e.g., CISA, SAP Security, SAP GRC)
• Exposure to SAP audit processes and regulatory or compliance frameworks (e.g., SOX, GDPR)
• Familiarity with tools such as ServiceNow or HP ALM
• Awareness of emerging SAP technologies such as BTP, SAC, AI, or RPA

Responsibilities

• Supporting the design, configuration, and implementation of SAP Application Security and SAP GRC Access Control solutions across SAP environments
• Assisting with SAP transformation initiatives, including S/4HANA and cloud-based SAP solutions, under the guidance of managers and senior leaders
• Performing security role design, user provisioning, access reviews, and Segregation of Duties (SoD) analysis in alignment with defined risk frameworks
• Supporting SAP audit activities (internal and external), including evidence collection, issue remediation, and control documentation
• Collaborating with functional and technical stakeholders to gather requirements and document security-related processes
• Contributing to the development of deliverables, workpapers, and client-facing documentation
• Working effectively within onshore and offshore delivery models as part of a broader project team
• Staying current on SAP Security, GRC tools, and industry developments through training and on-the-job learning

Benefits

• We offer a comprehensive compensation and benefits package where you’ll be rewarded based on your performance and recognized for the value you bring to the business.
• The base salary range for this job in all geographic locations in the US is $102,500 to $187,900.
• The base salary range for New York City Metro Area, Washington State and California (excluding Sacramento) is $122,900 to $213,400.
• Individual salaries within those ranges are determined through a wide variety of factors including but not limited to education, experience, knowledge, skills and geography.
• In addition, our Total Rewards package includes medical and dental coverage, pension and 401(k) plans, and a wide range of paid time off options.
• Under our flexible vacation policy, you’ll decide how much vacation time you need based on your own personal circumstances.
• You’ll also be granted time off for designated EY Paid Holidays, Winter/Summer breaks, Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being.