SAP ERP

Job Description

We are looking for the Access Control Experts for the assigned applications. We are looking for a Security Model Experts to design and implement an Access Control List (ACL) model for key objects in the application. This model will be deployed in third-party applications like Application Connectors. The ideal candidate should have the detailed knowledge on the access control mechanism exposed by the application. Candidate should have the good experience and skills set what are the different user/group access permissions. The ideal candidate will understand security models, APIs that expose permissions, and how permissions are stored in the applications data structure (ORM). This role ensures secure access and efficient management in dynamic environments. Key Responsibilities: Understanding the User Permission Model Should detailed out the User/Group Permission Model used in the application Do required configuration & setup of the application in terms of creating the test data for the different Permission Schemes and create test data around it ACL Model Design: Work with the JAVA development team to build a scalable ACL model for managing access to resources, documents, and services. Ensure it integrates with third-party systems through APIs. Security Implementation: Develop a security model following best practices and regulations. Set up role-based, policy-based, and attribute-based access control. API & Permissions: Use APIs to manage permissions and ensure secure access at both API and data layers. Data Model Management: Preferred to have understanding how permissions are stored in the back-end tables wherever the Application Database is exposed for the Admins. Access Control Policy: Maintain policies for roles, permissions, and access levels across the application. Conduct regular audits to improve security. Documentation & Training: Document ACL configurations and provide training for users. Qualifications: Bachelors degree in Computer Science, IT, or related field. Experience in designing ACL models and security frameworks. Knowledge of permission models, API management, and ORM systems. Familiar with cloud platforms (AWS, Azure, GCP) and microservices. Skills: Strong problem-solving and analytical skills. Good understanding of data models and permission storage. Clear communication with both technical and non-technical teams. Detail-oriented and security-focused.