SAP Security & GRC Consultant
Quick Overview
Job Description
Position: SAP Security & GRC Consultant
Location: Charlotte, NC Onsite
Type of Employment: 12+ Months Contract
Role Description:
We are seeking a highly motivated and experienced Security Consultant with a strong understanding of SAP ECC best practices and implementation. The ideal candidate will possess a deep knowledge of SAP security concepts, including authorizations, roles, profiles, and risk management along with knowledge on SAP GRC Security. This role will be instrumental in ensuring the integrity and confidentiality of our critical business data within the ECC environment.
Responsibilities:
- Supports account setup and maintenance, role development, authorization management in SAP landscape (ECC, BW, HANA, Solution Manager)
- Performs on-going review, analysis and plans for improving SAP system security conforming to SAP documented best-practices and Shure s functional needs
- Documents issues, gaps, resolution activities with root-cause analysis
- Supports projects by translating functional security requirements into technical security role and authorization designs
- Collaborates with internal functional application management, solution and technical teams to streamline security related changes and has a customer focused mind set
- Experience with SOD, SOX and audit best practices. Maintains a best practice model for security design and deployment
- Maintains and develops Audit controls to ensure the governance and compliance of the systems is maintained
- Be the owner and performer of the controls, such as reviewing user access and critical roles, and perform annual control testing
- Works with Internal auditors and fulfil any data requests in a timely manner
- Remediate and mitigate any audit issues as needed
- Monitor, investigate, and report on security events and incidents
- Builds, maintain and communicates appropriate SAP security policies, processes and procedures
- Manage the change management process for SAP security related changes like role creation/changes
- Prioritize workload effectively in a fast-paced environment while balancing day-to-day support activities with project needs and timelines
- Collaborate with the IT project management office to provide the necessary inputs around demand, capacity and resource allocation
- Assists in the development and maintenance of SAP security policies, standards, and procedures; and assist in resolving security policy issues and implementing security procedures
- Maintains and updates Role-Matrix, Security Runbooks
- Knowledge of SAP Licensing reports
- Provides visibility and reporting into SLAs, trends, root cause and opportunities
- Research ERP security technologies and trends to maintain subject matter expertise and always seeks to improve Shure s posture, processes and approach to security
- Contributes to building competencies at the Shure India location and develop follow the sun model for global support
Must Have Skills:
- SAP Security Hands on Experience
- SAP GRC experience
Key Responsibilities:
- Security Assessments: Conduct comprehensive security assessments of S/4HANA systems, including risk analysis, vulnerability scans, and penetration testing.
- Authorization Concept Design: Develop and implement robust authorization concepts aligned with business requirements and segregation of duties principles.
- Role and Profile Management: Design, implement, and maintain user roles and profiles, ensuring appropriate access levels and minimizing security risks.
- User Provisioning: Manage user access requests, provisioning, and de-provisioning processes, ensuring compliance with internal policies and industry best practices.
- Security Monitoring and Auditing: Monitor system activity for suspicious behavior and security incidents. Conduct regular security audits and generate reports on findings and recommendations.
- Incident Response: Participate in incident response activities, including investigation, containment, and remediation of security breaches.
- Compliance: Ensure compliance with relevant security regulations and industry standards (e.g., SOX, GDPR).
- Training and Awareness: Conduct security awareness training for end-users on best practices for secure usage of S/4HANA systems.
- Stay Updated: Keep abreast of the latest security threats, vulnerabilities, and best practices related to S/4HANA and other SAP technologies.
Requirements:
- Bachelor s degree in computer science, Information Systems, or a related field.
- 8+ years of experience in SAP security administration and consulting.
- Strong understanding of SAP S/4HANA security architecture and best practices.
- Experience with SAP GRC, SAP Identity Management, or other relevant security tools.
- Proven ability to analyze complex security issues and develop effective mitigation strategies.
- Excellent communication, interpersonal, and documentation skills.
- Ability to work independently and as part of a team.
- Strong understanding of IT security concepts, including risk management, threat modeling, and vulnerability assessment.
- Proven track record in managing SAP Security within ECC, BW, Solution Manager modules and applications
- Strong desire to build, improve and maintain a pristine SAP landscape
- Demonstrated understanding of Segregation of Duties concepts and Sarbanes-Oxley framework
- Highly responsive with a strong sense of ownership in building and maintaining positive customer relationships
- Process-oriented with high attention to detail in exercising experience-based judgement to determine appropriate methods and actions
- Ability to collaborate and influence IT and business stakeholders
- Excellent written and verbal communication skills, as well as some project management skills
- Excellent problem solving and root cause analysis skills
Similar jobs
Systems Administrator (Windows) with Security Clearance
Astrion · Dahlgren, United States
3 minutes ago$100k - $110.7k/yrPing Security Analyst
Avance Consulting · Seattle, United States
3 minutes agoSpecialist, Electrical Engineering, Test with Security Clearance
L3Harris Technologies · San Diego, United States
4 minutes ago$92.5k - $171.5k/yrSIEM/SOAR Administrator with Security Clearance
Gridiron IT Solutions · Saint Louis, United States
4 minutes agoSpecialist Engineer, System Analysis with Security Clearance
L3Harris Technologies · West Palm Beach, United States
4 minutes agoSenior Associate, Quality (Technical Training) with Security Clearance
L3Harris Technologies · Greenville, United States
4 minutes ago