SAP Security / GRC - Roles, Authorizations, Compliance

About The Position

Requirements

• 3-7 years of SAP security and authorization experience.
• 3+ years of direct SAP GRC experience.
• Proven experience supporting enterprise SAP security and compliance initiatives.
• Strong understanding of SAP authorization concepts and governance frameworks.
• SAP role design and authorization management.
• SAP GRC Access Control.
• Segregation of duties (SoD) analysis.
• SAP Fiori and cloud security.
• Security audits and compliance processes.
• SAP authorization objects.
• Security architecture principles.
• IAM and SSO technologies.
• Audit and regulatory compliance requirements.
• SAP transport and change management processes.
• SAP S/4HANA.
• SAP BTP.
• SAP BRIM.
• SAP HCM/SuccessFactors.
• Identity federation and MFA solutions.
• Strong analytical and security troubleshooting abilities.

Nice To Haves

• Experience with: Azure Active Directory, Okta or enterprise IAM platforms, SAP Cloud Identity Services, SAP Solution Manager or SAP Cloud ALM, Cloud-native SAP environments.
• Experience in utilities, transportation, finance, manufacturing, public sector, or large enterprise environments.
• Experience supporting Agile and DevOps delivery methodologies.
• Prior consulting or contractor experience in enterprise SAP environments.
• SAP GRC certifications preferred.
• SAP S/4HANA security certifications preferred.
• Identity and access management certifications are preferred.

Responsibilities

• SAP Security Administration & Architecture.
• Design, configure, and maintain SAP security roles, profiles, and authorizations across SAP environments.
• Ensure secure and scalable access management aligned with enterprise policies and business requirements.
• Role Design & Authorization Management.
• Support user provisioning, access requests, and role lifecycle management processes.
• Troubleshoot authorization issues and perform root cause analysis for access-related incidents.
• SAP GRC Administration & Compliance.
• Segregation of duties (SoD).
• Sensitive access controls.
• Audit readiness.
• Regulatory compliance.
• Develop and maintain SoD rulesets and mitigation controls.
• Audit & Regulatory Compliance Support.
• Ensure compliance with enterprise policies, cybersecurity standards, and regulatory frameworks.
• Support remediation activities related to audit findings and access risks.
• SAP Security Monitoring & Risk Management.
• Monitor SAP environments for security and authorization-related risks.
• Support security assessments, vulnerability management, and remediation initiatives.
• Participate in incident response and security investigations involving SAP systems.
• Assist with implementation of security best practices and operational controls.
• Integration & Cross-Functional Collaboration.
• Support integrations between SAP security frameworks and enterprise IAM platforms.
• Assist with SSO, MFA, and identity federation implementations.
• SAP Fiori & Cloud Security Support.
• Configure and maintain security for APIs, OData services, and cloud integrations.
• Testing & Validation.
• Validate role changes, authorization updates, and compliance controls.
• Support user acceptance testing (UAT) and production deployment validation.
• Documentation & Governance.
• Support governance, change management, and release management activities.
• Ensure adherence to enterprise security and compliance standards.
• Training & Knowledge Transfer.
• Provide guidance and training related to SAP security and compliance processes.
• Support business users and technical teams with access management processes.
• Mentor junior security analysts and support personnel as needed.