SAP Security & GRC Specialist

Role Overview: As a SAP Security & GRC Specialist, you will be responsible for performing all User Management (UM) functions such as user role creations, changes, assignments, and activities within SAP environments. Your role will involve developing and implementing SAP security governance frameworks tailored to the organization's needs and ensuring compliance with corporate information security policies and local/international regulations. Key Responsibilities: - Develop and implement SAP security governance frameworks aligned with global IT and security best practices. - Ensure compliance with corporate information security policies and local/international regulations within SAP environments. - Regularly review and update SAP security policies, procedures, and standards. - Conduct periodic audits across SAP systems to ensure adherence to defined security controls, especially Segregation of Duties (SoD). - Implement corrective actions to address identified vulnerabilities or non-compliance issues. - Identify and assess SAP-related security risks and collaborate with stakeholders to define mitigation strategies. - Monitor and analyze SAP security performance indicators to identify improvement opportunities. - Lead or participate in the design, implementation, and maintenance of User Access Management processes for SAP systems. - Design, review, and maintain SAP roles and authorization objects in accordance with SoD principles. - Analyze, design, implement, and test SAP GRC components such as Access Control, ARA, EAM, BRM, and ARM. - Support automation of user provisioning and access control processes, including integration with Active Directory and IAM tools. - Work closely with project teams, auditors, information security, and compliance departments. - Stay current with evolving security threats, SAP security patches, and relevant technology developments. Qualifications Required: - Proven experience in SAP Security (ECC, S/4HANA, SAP B1, or SAP GRC). - In-depth understanding of SAP authorization concepts and architecture. - Hands-on experience with SAP GRC Access Control and SoD analysis. - Relevant certifications such as SAP Certified Technology Associate System Security Architect or SAP GRC certifications are a plus. - Familiarity with IT governance and security frameworks such as COBIT, ISO 27001, NIST, and SOX. - Strong analytical skills, attention to detail, and high sense of responsibility regarding security and compliance. Please note that this JD does not include any additional details about the company.,