SAP Fiori Security Consultant
About The Position
We are seeking an experienced SAP Fiori Security Consultant to support a large-scale ERP modernization initiative within a highly regulated federal environment. This role focuses on application security and identity access management (IAM) within an SAP S/4HANA environment, with a strong emphasis on Fiori authorization design and governance. The consultant will play a key role in ensuring secure, compliant access to SAP Fiori applications while aligning with the principle of least privilege and supporting modern, role-based user experiences. This is a 75% remote position with approximately 25% quarterly travel to the Washington, DC metro area. Per our Federal Government Contract, candidates must be U.S. Citizens with an Active Secret Clearance.
Requirements
- U.S. Citizenship required with an Active Secret Clearance or higher
- 5+ years of experience in SAP Security, including S/4HANA security and SAP GRC (10.x or 12.0)
- Hands-on experience designing and managing SAP Fiori security roles, including catalogs and groups
- Strong understanding of Fiori frontend and backend authorization integration (PFCG)
- Experience working with SAP GRC Access Control modules and SoD rule sets
- Ability to troubleshoot authorization issues using standard SAP tools (e.g., SU53, ST01)
- Familiarity with IAM concepts and security best practices, including least-privilege access
- Strong analytical, problem-solving, and communication skills
Nice To Haves
- Experience supporting audit and compliance activities preferred
- Experience in a federal or highly regulated environment preferred
- Bachelor’s degree or equivalent experience preferred
Responsibilities
- Design, build, and maintain SAP security roles with a focus on Fiori authorizations, catalogs, and groups
- Configure and support SAP GRC Access Control components (ARA, ARM, EAM) to enable compliant user provisioning and access governance
- Collaborate with Fiori and functional teams to align frontend (Fiori) and backend (PFCG) role structures, ensuring a secure and seamless “App-to-Action” authorization model
- Manage user provisioning processes and role design in compliance with established security and audit standards
- Support User Access Reviews (UARs) and certification processes to validate user entitlements
- Assist with internal and external audit requests by providing documentation, reports, and remediation support
- Monitor and report on Segregation of Duties (SoD) risks and high-risk access across the environment
- Troubleshoot authorization and access issues using tools such as SU53 and ST01, as well as GRC workflows
- Maintain detailed documentation of security roles, access controls, and mitigation strategies
- Partner with cross-functional teams to ensure security design supports business needs without compromising compliance
Benefits
- paid time off (PTO)
- medical
- dental
- vision coverage
- life insurance
- long-term disability insurance
- a 401(k) plan
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
Education Level
Associate degree
