Senior SAP Security / GRC Consultant

• End-to-end delivery of SAP Security Notes and patches across complex landscapes both JAVA and ABAP based, including impact analysis, planning, execution and validation
• Perform deep-dive reviews of monthly SAP Security Advisories to identify applicable notes, assess technical prerequisites and evaluate landscape-wide impacts
• Good Presentation skills for customer interaction and if needed customer kick off calls.
• Embed an RCA-based approach into the delivery framework to identify underlying issues and prevent recurrence of security vulnerabilities
• SAP Security and GRC Access Control (AC) expertise
• Technical knowledge in SAP ECC / CRM / BW / BIBO / EP / CUA / HANA / BOBJ / S4HANA / Fiori security
• GRC Access Control Suite / Process Control Suite
• Strong understanding of SAP functional modules (FI/CO/MM/PP/PS/WM/QM)

• Defining business requirements and building security roles (composite and single roles)
• End-to-end delivery of SAP Security Notes and patches across complex landscapes both JAVA and ABAP based, including impact analysis, planning, execution and validation
• Should be able to support multiple customers
• Development, testing, and implementation of SAP Security roles and profiles
• Periodic review and revision of application security roles to accommodate business needs
• Design and coordination of application security testing activities
• Configuring and supporting the implementation of security controls within SAP
• Troubleshooting authorization issues and supporting daily security tasks
• Conduct GRC risk analysis at user and role level, along with risk mitigation and remediation
• Analyze and resolve GRC audit log issues and propose solutions
• Design and implement user administration solutions for new applications
• Support and manage SoD remediation activities and compliance with audit requirements
• Development of solutions for securing custom transactions, tables, and programs
• Documentation of project deliverables and security design

• Minimum 4 years of experience in support, maintenance, and implementation projects (role administration & user administration)
• 3 + Years of SAP Security Notes implementation
• Basic Basis knowledge understanding of Transport management, SAP Security Note analysis and implementation.
• 3+ years of experience in GRC 10.0 components (Access Control, Process Control)
• Minimum 2 years of experience in GRC Implementation and 2 years in GRC Support
• Good knowledge of HR authorization objects and user/role tables
• Understanding of SOX, Audit, Segregation of Duties (SoD) issues, and role remediation
• Sound knowledge of GRC Business Roles concept and custom transaction codes
• Strong analytical skills for access and authorization gap analysis
• Knowledge of SAP BI/BW, BPC, SCM, CRM, and SRM security
• Experience in automating processes through RPA (Automation Anywhere), Excel VBA, and Power BI will be an added advantage
• Identity and Access Management (IAM) support experience is a plus

• Experience in leading teams of 3-4 resources
• Ability to work independently without supervision
• Strong communication and documentation skills
• Problem-solving mindset and ability to handle pressure

NR Consulting